Mock Version: 1.3.4
Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target i686 --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455099-747358/root'nspawn_args=[]uid=1000printOutput=Falseuser='mockbuild'gid=425env={'LANG': 'en_US.UTF-8', 'HOME': '/builddir', 'SHELL': '/bin/bash', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'}timeout=172800logger=<mockbuild.trace_decorator.getLog object at 0x7f9efec22438>shell=False)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target i686 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.UTF-8', 'HOME': '/builddir', 'SHELL': '/bin/bash', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'} and shell False
Building target platforms: i686
Building for target i686
Wrote: /builddir/build/SRPMS/nss-3.29.1-2.1.module_7e01f122.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target i686 --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455099-747358/root'nspawn_args=[]uid=1000printOutput=Falseuser='mockbuild'gid=425env={'LANG': 'en_US.UTF-8', 'HOME': '/builddir', 'SHELL': '/bin/bash', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'}timeout=172800logger=<mockbuild.trace_decorator.getLog object at 0x7f9efec22438>shell=False)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target i686 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.UTF-8', 'HOME': '/builddir', 'SHELL': '/bin/bash', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'} and shell False
Building target platforms: i686
Building for target i686
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.dDF2pw
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.29.1
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.29.1.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 179 (offset 5 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .transitional --fuzz=0
patching file ./nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .539183 --fuzz=0
patching file ./nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 969 (offset 16 lines).
patching file ./nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1678 (offset -33 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skipthem --fuzz=0
patching file ./nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certcgi/Makefile
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/pk11_gtest/Makefile
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 50 (offset 7 lines).
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pk11wrap/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):
+ echo 'Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .1185708_3des --fuzz=0
patching file ./nss/lib/ssl/ssl3con.c
Hunk #1 succeeded at 108 (offset -10 lines).
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
+ pushd nss
+ echo 'Patch #59 (nss-check-policy-file.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .check_policy_file --fuzz=0
Patch #59 (nss-check-policy-file.patch):
patching file lib/pk11wrap/pk11pars.c
Patch #62 (nss-skip-util-gtest.patch):
+ echo 'Patch #62 (nss-skip-util-gtest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skip_util_gtest --fuzz=0
patching file ./gtests/manifest.mn
Patch #63 (nss-gcc7.patch):
+ echo 'Patch #63 (nss-gcc7.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .gcc7 --fuzz=0
patching file lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c
Patch #64 (nss-1334976-1336487.patch):
+ echo 'Patch #64 (nss-1334976-1336487.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .1334976-1336487 --fuzz=0
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/nss/nss.def
+ popd
~/build/BUILD/nss-3.29.1
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
+ /usr/bin/rm -rf ./nss/external_tests/util_gtests
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.DuEy7E
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ NSS_NO_PKCS11_BYPASS=1
+ export NSS_NO_PKCS11_BYPASS
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ sed s/-I//
++ /usr/bin/pkg-config --cflags-only-I nspr
+ NSPR_INCLUDE_DIR='/usr/include/nspr4 '
+ NSPR_LIB_DIR=/usr/lib
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export NSSUTIL_LIB_DIR=/usr/lib
+ NSSUTIL_LIB_DIR=/usr/lib
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export FREEBL_LIB_DIR=/usr/lib
+ FREEBL_LIB_DIR=/usr/lib
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ FREEBL_LIBS='-L/usr/lib -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ export SOFTOKEN_LIB_DIR=/usr/lib
+ SOFTOKEN_LIB_DIR=/usr/lib
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nsinstall.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pathsub.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pathsub.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pathsub.o  -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[1]: Nothing to be done for 'libs'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/db.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables db.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_bigkey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables h_bigkey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_func.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables h_func.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_log2.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables h_log2.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_page.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables h_page.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables hash.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash_buf.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables hash_buf.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mktemp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables mktemp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dirent.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dirent.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/db.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_bigkey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_func.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_log2.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/h_page.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash_buf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mktemp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dirent.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
+ export POLICY_FILE=nss.config
+ POLICY_FILE=nss.config
+ export POLICY_PATH=/etc/crypto-policies/back-ends
+ POLICY_PATH=/etc/crypto-policies/back-ends
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/arena.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables arena.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/error.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables error.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/errorval.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables errorval.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hashops.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables hashops.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libc.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables libc.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tracker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tracker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/item.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables item.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utf8.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables utf8.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/list.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables list.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables hash.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssb.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssb.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/arena.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/error.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/errorval.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hashops.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libc.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tracker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/item.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utf8.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/list.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssb.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devslot.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables devslot.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devtoken.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables devtoken.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables devutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ckhelper.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ckhelper.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssdev.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssdev.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devslot.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devtoken.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ckhelper.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssdev.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/asymmkey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables asymmkey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certificate.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certificate.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cryptocontext.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cryptocontext.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symmkey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables symmkey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/trustdomain.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables trustdomain.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tdcache.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tdcache.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdecode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certdecode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkistore.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkistore.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkibase.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkibase.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pki3hack.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pki3hack.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsspki.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsspki.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/asymmkey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certificate.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cryptocontext.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symmkey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/trustdomain.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tdcache.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdecode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkistore.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkibase.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pki3hack.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsspki.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_certselector.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_comcertselparams.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_crlselector.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_comcrlselparams.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_basicconstraintschecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_certchainchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_crlchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_ekuchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_expirationchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_namechainingchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_nameconstraintschecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_ocspchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_revocationmethod.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_revocationchecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_policychecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_signaturechecker.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_targetcertchecker.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_trustanchor.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_procparams.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_valparams.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_resourcelimits.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixparams.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_buildresult.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_policynode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_valresult.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_verifynode.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixresults.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_store.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_store.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixstore.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_store.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_validate.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_validate.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_lifecycle.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_build.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_build.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixtop.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_validate.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_build.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_tools.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_tools.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_error.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_error.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_logger.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_logger.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_list.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_list.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_errpaths.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixutil.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_tools.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_error.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_logger.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_list.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_basicconstraints.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_cert.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_certpolicyinfo.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_certpolicymap.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_certpolicyqualifier.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_crl.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_crldp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_crlentry.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_date.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_generalname.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_infoaccess.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_nameconstraints.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ocsprequest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ocspresponse.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_publickey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_x500name.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ocspcertid.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixpki.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_bigint.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_bytearray.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_common.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_error.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_hashtable.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_lifecycle.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_mem.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_monitorlock.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_mutex.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_object.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_oid.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_primhash.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_rwlock.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_string.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_aiamgr.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_colcertstore.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_httpcertstore.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_httpdefaultclient.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ldaptemplates.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ldapcertstore.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ldapresponse.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ldaprequest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_ldapdefaultclient.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_nsscontext.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_pk11certstore.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix_pl_socket.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/alg1485.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables alg1485.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdb.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certdb.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certv3.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certv3.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certxutl.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certxutl.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crl.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crl.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/genname.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables genname.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables stanpcertdb.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/polcyxtn.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables polcyxtn.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secname.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secname.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xauthkid.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables xauthkid.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xbsconst.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables xbsconst.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xconst.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables xconst.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcertdb.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcertdb.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/alg1485.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdb.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certv3.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certxutl.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crl.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/genname.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/polcyxtn.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secname.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xauthkid.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xbsconst.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xconst.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcertdb.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhtml.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certhtml.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certreq.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certreq.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlv2.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crlv2.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocsp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ocsp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspsig.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ocspsig.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhigh.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certhigh.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfy.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certvfy.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfypkix.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certvfypkix.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xcrldist.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables xcrldist.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcerthi.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcerthi.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhtml.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certreq.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlv2.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocsp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspsig.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhigh.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfy.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfypkix.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xcrldist.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcerthi.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dev3hack.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dev3hack.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11akey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11akey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11auth.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11auth.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cert.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11cert.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cxt.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11cxt.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11err.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11err.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11kea.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11kea.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11list.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11list.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11load.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11load.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mech.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11mech.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11merge.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11merge.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11nobj.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11nobj.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11obj.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11obj.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pars.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11pars.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pbe.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11pbe.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pk12.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11pk12.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pqg.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11pqg.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11sdr.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11sdr.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11skey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11skey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11slot.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11slot.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11util.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11util.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dev3hack.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11akey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11auth.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cxt.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11err.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11kea.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11list.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11load.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mech.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11merge.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11nobj.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11obj.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pars.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pbe.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pk12.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pqg.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11sdr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11skey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11slot.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11util.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sechash.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sechash.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/seckey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables seckey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secsign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secsign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secvfy.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secvfy.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dsautil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dsautil.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcryptohi.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sechash.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/seckey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secsign.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secvfy.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dsautil.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssinit.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nssinit.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssoptions.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nssoptions.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssver.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nssver.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utilwrap.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables utilwrap.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssinit.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssoptions.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utilwrap.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss.def
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss.def -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss3.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssinit.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssoptions.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utilwrap.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhtml.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certreq.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlv2.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocsp.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspsig.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certhigh.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfy.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sechash.o ../cryptohi/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/seckey.o ../cryptohi/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secsign.o ../cryptohi/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secvfy.o ../cryptohi/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11util.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/alg1485.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdb.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certv3.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certxutl.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crl.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/genname.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/polcyxtn.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secname.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xauthkid.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xbsconst.o ../certdb/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/xconst.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/asymmkey.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certificate.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cryptocontext.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symmkey.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/trustdomain.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tdcache.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdecode.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkistore.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkibase.o ../pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pki3hack.o ../dev/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devslot.o ../dev/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devtoken.o ../dev/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/devutil.o ../dev/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ckhelper.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/arena.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/error.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/errorval.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hashops.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libc.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tracker.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/item.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/utf8.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/list.o ../base/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnss3.so ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dtlscon.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dtlscon.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/prelib.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables prelib.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3con.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssl3con.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssl3gthr.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslauth.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslauth.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcon.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslcon.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssldef.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssldef.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslenum.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslenum.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerr.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslerr.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslerrstrs.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinit.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslinit.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ext.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssl3ext.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssl3exthandle.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslmutex.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslmutex.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslnonce.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslnonce.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslreveal.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslreveal.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsecur.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslsecur.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsnce.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslsnce.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsock.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslsock.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltrace.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssltrace.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslver.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslver.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/authcert.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables authcert.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmpcert.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmpcert.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinfo.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslinfo.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssl3ecc.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13con.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tls13con.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tls13exthandle.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tls13hkdf.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcert.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslcert.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslgrp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sslgrp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/unix_err.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables unix_err.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dtlscon.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/prelib.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3con.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslauth.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcon.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssldef.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslenum.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinit.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ext.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslmutex.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslnonce.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslreveal.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsecur.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsnce.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsock.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltrace.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/authcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmpcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13con.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslgrp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/unix_err.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl.def
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl.def -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl3.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dtlscon.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/prelib.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3con.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslauth.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcon.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssldef.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslenum.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinit.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ext.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslmutex.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslnonce.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslreveal.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsecur.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsnce.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslsock.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltrace.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/authcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmpcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13con.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslcert.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sslgrp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libssl3.so ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certread.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certread.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7common.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7common.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7create.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7create.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7decode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7decode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7encode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7encode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7local.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7local.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmime.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secmime.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs7.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certread.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7common.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7create.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7decode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7encode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7local.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmime.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12local.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12local.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12creat.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12creat.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12dec.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12dec.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12plcy.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12plcy.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12tmpl.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12tmpl.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12e.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12e.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12d.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p12d.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs12.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12local.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12creat.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12dec.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12plcy.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12tmpl.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12e.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12d.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsarray.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsarray.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsasn1.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsasn1.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsattr.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsattr.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscinfo.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmscinfo.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscipher.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmscipher.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdecode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsdecode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsdigdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsdigest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencdata.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsencdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsencode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsenvdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsmessage.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsmessage.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmspubkey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmspubkey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsrecinfo.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsreclist.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsreclist.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssigdata.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmssigdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmssiginfo.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsudf.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsudf.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimemessage.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables smimemessage.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimeutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables smimeutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimever.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables smimever.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsarray.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsasn1.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsattr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscipher.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdecode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigest.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsmessage.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmspubkey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsreclist.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssigdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsudf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimemessage.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimeutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimever.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smime.def
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smime.def -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime3.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsarray.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsasn1.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsattr.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmscipher.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdecode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsdigest.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsencode.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsmessage.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmspubkey.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsreclist.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssigdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsudf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimemessage.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimeutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/smimever.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12local.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12creat.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12dec.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12e.o ../pkcs12/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p12d.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certread.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7common.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7create.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7decode.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7encode.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7local.o ../pkcs7/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmime.o   -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsmime3.so ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfenc.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfenc.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmftmpl.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmftmpl.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfreq.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfreq.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfpop.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfpop.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfdec.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfdec.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfget.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfget.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfcont.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crmfcont.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmmfasn1.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfresp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmmfresp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfrec.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmmfrec.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfchal.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmmfchal.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/servget.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables servget.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables encutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/respcli.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables respcli.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/respcmn.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables respcmn.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/challcli.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables challcli.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/asn1cmn.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables asn1cmn.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcrmf.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcrmf.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfenc.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmftmpl.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfreq.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfpop.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfdec.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfget.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmfcont.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfasn1.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfresp.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfrec.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmmfchal.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/servget.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/respcli.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/respcmn.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/challcli.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/asn1cmn.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcrmf.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libcrmf.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarver.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jarver.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarsign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jarsign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jar.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jar.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jar-ds.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jar-ds.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarfile.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jarfile.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarint.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X86 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables jarint.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libjar.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libjar.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarsign.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jar.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jar-ds.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarfile.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/jarint.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libjar.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libjar.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crypto.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crypto.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/find.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables find.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables hash.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/instance.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables instance.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mutex.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables mutex.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/object.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables object.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/session.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables session.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sessobj.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sessobj.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/slot.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables slot.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/token.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables token.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/wrap.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables wrap.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mechanism.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables mechanism.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckfw.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crypto.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/find.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/hash.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/instance.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mutex.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/object.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/session.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sessobj.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/slot.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/token.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/wrap.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mechanism.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/anchor.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables anchor.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/constants.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables constants.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bfind.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables bfind.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/binst.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables binst.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bobject.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables bobject.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bsession.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables bsession.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bslot.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables bslot.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoken.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables btoken.c
perl certdata.perl certdata.txt Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdata.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdata.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ckbiver.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssckbi.def
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckbi.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nssckbi.def -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckbi.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/anchor.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/constants.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bfind.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/binst.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bobject.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bsession.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bslot.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoken.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certdata.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsssysinit.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nsssysinit.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsssysinit.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/basicutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables basicutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secpwd.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secpwd.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derprint.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables derprint.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/moreoids.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables moreoids.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pppolicy.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pppolicy.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ffs.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ffs.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11table.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11table.c
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsectool.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsectool.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/basicutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secpwd.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derprint.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/moreoids.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pppolicy.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ffs.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11table.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsectool.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libsectool.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/shlibsign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables shlibsign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/shlibsign -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/shlibsign.o  -Wl,-z,relro  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/shlibsign ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mangle.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables mangle.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mangle -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mangle.o  -Wl,-z,relro  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/mangle ../../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/addbuiltin.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables addbuiltin.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/addbuiltin -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/addbuiltin.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/addbuiltin ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/atob.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables atob.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/atob -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/atob.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/atob ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoa.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables btoa.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoa -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoa.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/btoa ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certcgi.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certcgi.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certcgi -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certcgi.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certcgi ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certext.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certext.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/keystuff.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables keystuff.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certutil -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certext.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/keystuff.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certutil ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/chktest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables chktest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/chktest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/chktest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/chktest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crlgen_lex.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlgen.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crlgen.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables crlutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlutil -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlgen_lex.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlgen.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlutil.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crlutil ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/testcrmf.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables testcrmf.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmftest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/testcrmf.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/crmftest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dbtest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dbtest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dbtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dbtest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dbtest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derdump.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables derdump.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derdump -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derdump.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/derdump ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/digest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables digest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/digest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/digest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/digest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/httpserv.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables httpserv.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/httpserv -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/httpserv.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/httpserv ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/listsuites.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables listsuites.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/listsuites -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/listsuites.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/listsuites ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/makepqg.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables makepqg.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/makepqg -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/makepqg.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/makepqg ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/multinit.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables multinit.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/multinit -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/multinit.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/multinit ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspclnt.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ocspclnt.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspclnt -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspclnt ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspresp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ocspresp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspresp -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspresp.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ocspresp ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/oidcalc.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables oidcalc.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/oidcalc -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/oidcalc.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/oidcalc ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7content.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7content.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7content -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7content.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7content ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7env.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7env.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7env -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7env.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7env ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7sign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7sign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7sign -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7sign.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7sign ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7verify.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables p7verify.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7verify -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7verify.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/p7verify ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk12util.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk12util.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk12util -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk12util.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk12util ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11ectest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11ectest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11ectest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11ectest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11ectest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11gcmtest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11gcmtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11gcmtest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mode.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11mode.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mode -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mode.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11mode ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk1sign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk1sign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk1sign -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk1sign.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk1sign ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pp.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pp.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pp -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pp.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pp ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pwdecrypt.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pwdecrypt -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pwdecrypt.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pwdecrypt ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/rsaperf.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables rsaperf.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/defkey.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables defkey.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/rsaperf -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/rsaperf.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/defkey.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/rsaperf ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sdrtest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sdrtest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sdrtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sdrtest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sdrtest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/selfserv.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables selfserv.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/selfserv -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/selfserv.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/selfserv ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signtool.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables signtool.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certgen.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables certgen.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/javascript.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables javascript.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/list.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables list.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sign.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables sign.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/util.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables util.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/verify.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables verify.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/zip.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables zip.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signtool -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signtool.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/certgen.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/javascript.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/list.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/sign.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/util.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/verify.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/zip.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signtool ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signver.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables signver.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk7print.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk7print.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signver -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signver.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk7print.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/signver ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables cmsutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/cmsutil ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltap.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables ssltap.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltap -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltap.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/ssltap ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/strsclnt.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables strsclnt.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/strsclnt -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/strsclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/strsclnt ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symkeyutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables symkeyutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symkeyutil -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symkeyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/symkeyutil ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/baddbdir.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables baddbdir.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/baddbdir -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/baddbdir.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/conflict.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables conflict.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/conflict -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/conflict.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dertimetest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables dertimetest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dertimetest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dertimetest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encodeinttest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables encodeinttest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encodeinttest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encodeinttest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nonspr10.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables nonspr10.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nonspr10 -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nonspr10.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/remtest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables remtest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/remtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/remtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmodtest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables secmodtest.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmodtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmodtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/baddbdir Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/conflict Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/dertimetest Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/encodeinttest Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nonspr10 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/remtest Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/secmodtest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tstclnt.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables tstclnt.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tstclnt -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tstclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/tstclnt ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfychain.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables vfychain.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfychain -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfychain.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfychain ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyserv.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables vfyserv.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables vfyutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyserv -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyserv.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/vfyserv ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/modutil.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables modutil.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pk11.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/instsec.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables instsec.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/install.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables install.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/installparse.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables installparse.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/install-ds.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables install-ds.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables lex.Pk11Install_yy.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/modutil -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/modutil.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pk11.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/instsec.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/install.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/installparse.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/install-ds.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lex.Pk11Install_yy.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/modutil ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables pkix-errcodes.c
cc -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix-errcodes -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix-errcodes.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest.a
ar cr Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest.a Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest.a
Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest.a
rm -f Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest1.so
g++ -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest1.so Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/libgtest1.so ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtests.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -std=c++0x gtests.cc
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtests -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtests.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtests ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_gtest -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_getint_unittest.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_private_key_import_unittest.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a  ../common/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/gtests.o ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/der_gtest ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/config.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsskeys.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.10_x86_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim -O2 -fPIC -Di386  -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m32 -march=i686 -fasynchronous-unwind-tables -I../../lib/ssl Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/config.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsskeys.o Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim.o  -Wl,-z,relro ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
~/build/BUILD/nss-3.29.1
+ popd
+ /usr/bin/mkdir -p ./dist/docs/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/docs/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.29.1,g -e s,%NSPR_VERSION%,4.13.0,g -e s,%NSSUTIL_VERSION%,3.29.1,g -e s,%SOFTOKEN_VERSION%,3.29.1,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=29
++ cat nss/lib/nss/nss.h
++ awk '{print $3}'
++ grep '#define.*NSS_VPATCH'
+ NSS_VPATCH=1
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,29,g -e s,@MOD_PATCH_VERSION@,1,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.29.1
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.AqGY0p
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
++ dirname /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/pkgconfig
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/doc/nss-tools
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/nss/unsupported-tools
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/lib/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/setup-nsssysinit.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/certutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/cmsutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/crlutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/derdump.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/modutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/pk12util.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/signtool.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/signver.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/ssltap.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/vfychain.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man1/vfyserv.1
+ install -c -m 644 ./dist/docs/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/doc/nss-tools/pp.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/man/man5/secmod.db.5
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 /builddir/build/BUILD/nss-3.29.1
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/lib/libssl3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/bin/certutil
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.29.1/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.29.1/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25228 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/brp-python-hardlink
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.ICBRxx
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ '[' 0 -eq 1 ']'
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ export SOFTOKEN_LIB_DIR=/usr/lib
+ SOFTOKEN_LIB_DIR=/usr/lib
+ export NSS_IGNORE_SYSTEM_POLICY=1
+ NSS_IGNORE_SYSTEM_POLICY=1
++ grep -c ' '
++ find ./nss/tests
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
+ MYRAND=9122
+ echo 9122
9122
selfserv_9122
+ RANDSERV=selfserv_9122
+ echo selfserv_9122
++ ls -d ./dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
+ echo ./dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
./dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.29.1 ~/build/BUILD/nss-3.29.1
+ pushd /builddir/build/BUILD/nss-3.29.1
+ cd ./dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin
+ ln -s selfserv selfserv_9122
~/build/BUILD/nss-3.29.1
+ popd
+ find ./nss/tests -type f
+ grep -v '\.crl$'
+ grep -v '\.db$'
+ grep -v '\.crt$'
+ grep -vw CVS
+ xargs grep -lw selfserv
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9122/g'
+ killall selfserv_9122
selfserv_9122: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.29.1/nss/tests ~/build/BUILD/nss-3.29.1
+ pushd ./nss/tests/
++ echo
+ SKIP_NSS_TEST_SUITE=
+ '[' x == x ']'
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9122
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.29.1/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.29.1/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin)
********************************************
   Platform: Linux4.10_x86_cc_glibc_PTH_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin against LIB /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:15:47 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:15:47 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:15:47 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #70: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #72: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #73: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #76: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #77: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #99: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #100: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #101: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #105: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #106: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #107: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:93
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:03 2017
            Not After : Wed Aug 02 15:16:03 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:40:96:2f:8c:c0:83:2f:e7:01:b9:35:9f:87:ef:fd:
                    3d:90:cc:52:b7:7a:74:f8:2d:60:ec:8f:f3:d7:65:c6:
                    51:64:9c:21:14:c2:d3:9c:24:ca:1e:4c:4c:ae:3a:f7:
                    ee:83:25:52:22:4a:0a:13:e9:ad:e2:94:35:f6:95:b9:
                    3c:5e:87:77:71:23:31:6e:04:8f:06:ec:58:7c:c1:fd:
                    1d:aa:6d:8d:cd:f8:ab:14:6a:ac:84:e4:42:85:b9:d2:
                    b9:e0:2c:48:f5:99:45:a9:70:d1:a4:2c:eb:72:e3:27:
                    c8:89:cb:a9:29:f5:df:0f:10:59:f0:85:63:08:e8:c4:
                    39:b6:bd:ff:67:94:49:07:01:7f:d7:dc:15:10:ab:05:
                    13:c2:18:f3:f5:cf:d4:32:82:eb:93:6c:78:08:d6:a9:
                    fb:7a:37:b1:58:1f:e5:fd:7d:99:dd:84:e3:0c:65:67:
                    f8:b7:80:f9:e0:82:f8:4d:09:ad:12:c0:96:9c:79:13:
                    15:60:af:c7:5e:17:78:20:d1:98:df:4b:f7:8d:56:90:
                    67:86:3a:28:9f:9b:ce:9f:a8:ae:09:55:7a:2a:95:ad:
                    a0:38:3e:cc:1e:a7:f2:09:5e:04:00:c7:2e:5e:47:9f:
                    2a:e8:26:37:24:ce:4b:01:6f:c9:12:70:35:17:f9:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:f8:bd:62:f9:fd:8e:4c:44:9b:f9:e9:be:27:ec:68:
        55:99:ad:4a:cd:30:5d:b9:70:77:a2:d9:ed:68:78:e3:
        e4:82:e6:47:3a:d1:1d:a7:d2:dc:a6:61:9b:6a:68:7c:
        2c:18:b9:3f:c7:fd:6e:6e:f3:64:32:fd:f8:7b:c8:83:
        87:c9:62:4f:aa:13:55:ea:65:22:07:30:ee:32:6a:e9:
        5b:1e:bf:ca:c4:1e:1a:60:ab:46:b7:5e:9d:f5:fb:f5:
        a5:f7:a9:1a:52:ea:05:73:5b:d5:e1:54:5b:12:3f:19:
        ea:09:46:e2:aa:09:3c:0a:cf:84:34:07:c8:9e:3c:f4:
        05:79:8b:d7:70:c9:f8:91:8b:b8:4c:f1:7b:99:b7:f1:
        36:fe:5e:55:78:8d:c0:3d:9d:e3:15:b3:c2:44:0d:8d:
        53:74:22:c9:a9:d9:67:11:01:b1:94:f2:89:56:2f:90:
        28:48:a9:07:b3:2f:60:8c:dd:92:ac:d9:f2:7f:17:4f:
        be:32:42:19:22:fc:78:27:1f:90:61:30:19:b7:45:c6:
        f4:fd:9b:7d:1b:0f:ca:30:10:43:b6:e9:05:07:10:09:
        69:2f:61:2e:6e:b0:67:04:b5:68:39:45:05:5c:15:7c:
        ef:da:ec:63:6d:59:85:b3:a4:28:57:ae:fa:e5:2c:fe
    Fingerprint (SHA-256):
        FC:B8:96:F7:4B:5A:BC:7A:BF:D2:E1:61:5E:FC:18:22:17:7B:97:AA:E6:EC:D3:FA:9B:F3:FB:4D:4A:EB:34:E4
    Fingerprint (SHA1):
        AB:B8:64:7A:73:4A:F0:2F:DF:9A:4B:2D:F6:30:D7:DD:9F:DA:AA:BB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:94
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:04 2017
            Not After : Wed Aug 02 15:16:04 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:af:14:f4:b1:0c:4a:20:c3:81:e6:71:6a:22:75:24:
                    84:6a:37:f8:e3:d2:92:8e:cc:d6:23:1c:30:7c:9a:eb:
                    f5:18:21:ec:3d:d0:72:8b:c7:24:83:78:34:9e:67:4d:
                    24:02:43:0a:04:0d:e3:6b:16:07:18:75:51:31:13:c9:
                    46:1c:20:02:51:c5:ea:c2:e5:2f:82:1b:22:5d:b1:0f:
                    f7:bd:12:5f:7b:c2:1e:dc:62:bf:b5:7c:b3:09:98:d6:
                    65:b6:b3:4c:37:5d:4d:33:84:28:54:92:35:01:f4:e8:
                    44:99:49:44:27:2a:ee:3d:e5:c5:29:0b:5d:5a:66:9e:
                    c7:61:6b:a3:6e:b7:07:31:13:5f:9d:11:29:ec:e7:a6:
                    77:62:b5:6f:21:09:20:a3:6c:b1:af:96:36:7a:3c:02:
                    37:79:e2:4a:3e:5c:67:6c:6d:6c:fd:f2:6e:71:95:fd:
                    a4:d2:c7:e3:8f:e0:87:79:78:03:8f:04:25:15:50:bf:
                    7f:a9:6a:3e:9b:a0:0e:1a:b6:63:16:c1:7a:b9:bb:00:
                    79:c4:3d:bc:48:e0:f5:c6:4e:65:0d:10:ba:ae:d4:2f:
                    ee:b2:20:89:8b:70:5e:e5:d1:79:bc:38:71:22:1a:be:
                    19:4c:8f:e1:d6:6e:d7:26:31:92:ba:02:07:70:54:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:c9:52:5f:14:9a:17:32:15:ef:13:58:1e:7f:cd:3d:
        a6:87:8f:0d:99:74:ce:7e:ee:46:22:f8:e4:86:c8:3c:
        00:a1:3c:89:00:19:89:3c:53:6a:55:84:47:66:9d:93:
        55:6d:f6:c5:17:db:fb:5e:30:70:49:07:78:12:a6:73:
        ea:4d:a2:9d:fe:33:0a:c4:8f:e9:d2:7c:c8:29:7d:a1:
        1e:6d:1e:b8:11:3f:5f:a7:ed:cf:7e:d0:87:cd:f2:45:
        96:64:ec:3b:14:26:d9:47:3b:56:95:68:45:11:0b:cb:
        b2:ad:60:20:df:8a:80:9b:04:b8:11:c0:df:26:b0:65:
        44:f7:08:b1:c9:fd:ed:24:15:16:28:d5:17:57:18:aa:
        2c:54:7b:3b:26:bd:18:52:3f:12:f3:7f:88:8b:04:6b:
        d4:7a:1b:2b:d5:65:eb:ab:50:99:7a:75:2f:ee:0b:f6:
        ab:c7:d3:34:64:f8:0c:3f:e4:0e:e8:26:9b:47:7f:c3:
        c5:5e:2a:b3:03:99:5c:db:e4:bf:c4:16:0f:93:d6:84:
        91:1f:cb:bd:e0:99:95:d6:81:92:20:89:78:09:74:3c:
        83:23:66:ab:84:54:0b:89:d7:ea:90:56:78:fc:10:21:
        f4:95:08:68:12:38:e0:5f:cf:c2:cd:3b:19:18:53:7f
    Fingerprint (SHA-256):
        AB:E9:A7:2E:9B:DE:14:D8:DB:AB:7E:C1:FF:5E:59:4D:32:CE:B0:BF:82:F5:74:81:1C:48:9A:59:49:FD:83:19
    Fingerprint (SHA1):
        48:6A:B0:29:74:AA:A8:B5:67:37:81:61:54:27:B4:F7:09:F5:FD:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:95
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:04 2017
            Not After : Wed Aug 02 15:16:04 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:56:ed:a1:b6:17:80:2d:97:6d:ae:1e:00:4c:af:d9:
                    e0:70:75:db:55:55:19:a9:df:71:a7:03:ce:29:61:b6:
                    35:44:87:a4:d9:b4:d0:cf:ff:a1:28:e2:6b:56:6a:ad:
                    e5:b8:ce:fc:9d:d4:e8:c6:1c:f9:10:36:2b:a1:4f:1e:
                    ee:a9:77:fc:ca:53:c3:d4:b9:1a:65:44:9a:27:4b:5c:
                    cb:eb:cc:47:9f:50:d3:df:d3:54:d4:52:9d:f9:3d:ad:
                    88:58:70:c3:d1:9c:65:95:87:f1:5a:d7:b5:83:c3:5a:
                    8e:9c:45:61:a0:e2:0f:20:b9:e5:d7:c7:18:c3:cd:d1:
                    49:db:23:89:92:a8:1d:85:dc:94:76:e2:00:6c:e2:f4:
                    58:6f:4d:ba:91:8e:aa:37:db:80:e7:96:e2:62:7f:7b:
                    e5:f5:da:4d:46:55:e3:92:86:12:1f:59:7b:88:11:b5:
                    75:5f:c3:d3:0c:00:c0:46:fa:1e:fe:fb:14:0c:43:89:
                    80:34:97:ab:4d:d1:da:5c:fa:97:14:5b:95:86:69:d4:
                    c7:42:fa:18:ef:c1:6b:ae:ea:a7:08:cd:47:88:05:45:
                    98:c0:6c:53:ab:ad:07:42:ac:68:b2:0a:f0:67:9c:71:
                    8f:95:7f:82:7b:79:08:fd:78:dc:10:36:7a:68:08:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:6a:87:48:63:5f:b4:4c:c5:62:92:40:f3:00:ec:f5:
        f5:0b:4f:18:a9:0d:bc:7c:03:d1:17:1d:82:73:cf:e0:
        74:c8:2c:77:43:75:14:a6:87:a8:7c:c9:14:06:95:a2:
        29:fc:a6:72:d9:9b:e5:25:8f:f4:a6:a5:d7:a0:36:16:
        89:bb:fb:5d:2c:6c:63:32:5d:60:c4:a7:be:24:54:53:
        f9:e3:1a:7f:24:46:ab:6c:24:27:0d:2e:2e:69:3d:81:
        f5:44:3b:53:08:6f:63:36:8c:f0:0d:d6:42:bc:e9:c7:
        32:40:5d:5d:ba:13:d7:a8:02:ee:ae:ff:02:5d:5b:bf:
        5c:81:64:c8:99:b7:0e:93:a0:bd:51:af:7c:39:93:79:
        ab:9b:0b:cf:6e:ee:04:9a:e6:30:69:dd:53:3c:97:87:
        21:ae:8c:19:e0:de:65:fb:07:4f:ff:dc:de:44:4c:ef:
        4a:f4:9a:4a:8f:bd:90:9f:4b:4d:56:45:18:d1:95:6b:
        a2:4a:0b:3f:4c:be:e2:72:9f:16:c6:4e:21:4b:2b:87:
        0e:5b:86:19:dd:b0:9d:89:97:3b:87:dd:fd:17:45:9a:
        ab:7d:56:9e:57:60:fa:09:ca:cc:e4:50:cb:c2:d3:7c:
        98:74:82:83:67:b9:82:07:54:41:54:00:8c:7a:78:ab
    Fingerprint (SHA-256):
        7E:6B:72:F6:FE:BC:22:0E:AB:46:F8:B7:7E:1E:5D:5E:2E:37:1A:27:C8:85:67:68:F9:52:1E:FB:58:3A:B2:D3
    Fingerprint (SHA1):
        DF:66:12:97:24:84:4B:09:68:F2:EC:38:BF:27:38:E3:4F:E0:5D:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:96
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:05 2017
            Not After : Wed Aug 02 15:16:05 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:fd:e6:0c:11:c9:4b:fa:6d:06:26:09:a0:9b:d1:eb:
                    df:89:0b:71:0f:f1:6e:3c:39:08:35:72:23:a5:d8:48:
                    0f:ab:cb:4e:82:95:aa:eb:54:4c:10:33:ae:ae:c3:85:
                    0f:66:a9:f5:e0:23:3f:7a:68:25:1b:a7:a0:1f:7f:2b:
                    0e:af:80:b4:1e:4c:d2:16:5c:61:16:71:48:bf:d2:07:
                    4e:31:9d:e0:d7:d1:f8:eb:5a:c1:18:77:50:c2:63:5a:
                    fb:20:65:01:2b:2b:b1:e5:12:1a:17:3d:63:55:37:9d:
                    94:4a:a0:a9:27:b3:03:8d:9b:52:b6:de:b0:5f:c7:d8:
                    20:c5:fb:51:16:60:26:7d:c6:f8:eb:16:25:c6:91:06:
                    18:1f:8b:28:13:ef:0b:a0:4d:a7:23:3e:ba:55:96:9c:
                    bd:b4:6a:ba:46:8d:f4:82:a8:33:94:32:eb:bf:33:eb:
                    7d:09:dc:0a:53:c1:6e:11:ed:2b:0c:1e:7f:04:80:64:
                    7e:ce:ae:98:1e:e9:63:c2:b3:1f:72:ff:86:97:78:5d:
                    4f:8e:0e:49:9d:36:4a:ef:ca:7d:86:53:8c:70:76:3e:
                    46:2d:07:fa:cc:91:df:96:d5:b3:98:03:f7:d4:b4:91:
                    cc:45:0c:c0:9e:e3:05:66:e0:75:87:77:31:b4:97:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:a7:b5:d2:94:8d:1a:79:84:78:3b:e8:b0:39:6a:41:
        c0:bb:41:1d:97:82:88:ac:db:0a:f5:b8:47:ef:28:fa:
        21:52:d8:c9:a9:b5:24:df:b1:27:41:c7:24:63:c2:0a:
        a1:65:d5:6c:d3:8e:8f:1b:d5:03:95:ba:a7:5b:6d:94:
        ee:56:9b:5c:61:cd:02:88:c9:bf:f9:ca:60:81:d0:03:
        f9:1f:5a:00:f1:0e:6c:09:f1:ad:55:dc:bc:dd:1a:05:
        a9:36:f4:42:2f:4f:ac:4d:f2:be:97:7f:da:96:8d:25:
        3f:d8:2e:0c:4e:40:65:fc:c4:60:85:8b:66:35:23:91:
        32:05:c2:c4:81:d2:c8:b1:2f:7b:83:f4:1c:c4:b4:ef:
        b3:1a:71:11:bb:78:03:2a:2a:60:8e:1b:62:88:f8:8e:
        47:35:63:a9:e8:85:e7:15:6c:62:8e:c0:5e:1e:9e:a5:
        d0:1e:59:18:00:a8:4b:19:fc:1d:ff:fa:b2:5c:28:3d:
        5f:30:a7:c9:62:17:47:32:c4:c3:52:9b:dd:00:02:50:
        46:1d:bf:4d:1b:ff:9c:7a:7c:95:ad:90:70:5b:11:af:
        7c:b0:80:f5:fe:3c:91:64:c7:49:bc:88:2a:06:08:76:
        a3:ef:f9:12:92:aa:a6:cd:fa:b4:a0:b7:79:68:f8:0f
    Fingerprint (SHA-256):
        3D:8F:83:F1:CD:F4:53:18:5A:71:4D:9D:BB:46:B1:99:BD:9D:F0:EB:4F:AD:5D:D6:34:71:78:19:4E:07:A8:D2
    Fingerprint (SHA1):
        9D:93:0A:98:23:46:CF:06:1D:E2:17:96:25:CD:53:FA:B4:C8:A4:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:97
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:05 2017
            Not After : Wed Aug 02 15:16:05 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:b6:28:57:86:3f:eb:43:f6:68:dd:d8:a4:54:05:2e:
                    23:6d:50:c8:5d:d9:de:d7:76:ac:65:0a:66:aa:06:b2:
                    9c:97:a0:88:5a:ee:b9:41:ce:7a:44:d4:67:81:c0:b1:
                    7f:6b:1c:33:81:7f:8b:6c:54:d6:bd:32:0d:ad:1d:a2:
                    38:50:d9:5a:3c:af:c8:b2:2f:95:9a:80:38:8a:c7:a4:
                    e1:12:60:e4:fb:6a:9f:6b:c4:0b:ef:c7:9f:19:c7:2f:
                    f1:87:8e:17:dc:56:15:d8:7c:bf:50:93:46:53:4a:39:
                    d1:ac:91:47:4d:84:49:67:d7:94:9a:9e:24:e5:a9:6f:
                    eb:8b:33:d7:0c:74:12:5d:fa:87:bf:aa:69:a6:4a:a1:
                    89:11:58:be:98:2c:eb:03:1c:15:5f:08:bb:b1:dd:45:
                    23:20:ac:32:88:a2:5b:45:ee:d7:4e:74:ad:fd:a0:34:
                    05:b4:b6:f0:dd:0b:0b:6d:b4:2c:91:9e:19:37:92:b1:
                    76:30:c5:c6:80:24:91:3c:c9:8c:42:89:b4:47:e5:9a:
                    3e:dc:0a:2e:65:00:91:8e:fc:ac:4c:09:21:9d:d5:d6:
                    3b:ed:60:5a:a6:5f:8f:36:13:0d:d5:9a:1b:47:db:1b:
                    a3:3e:55:c3:7c:70:29:72:ce:e1:43:72:96:7c:81:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:f1:49:f0:3a:30:0d:00:4e:be:14:d9:85:a8:bd:b5:
        5a:c2:c2:63:9e:ac:69:6d:99:df:65:67:00:c0:90:e1:
        7f:b0:8c:c1:77:ec:f3:7d:d9:09:59:13:14:28:e9:0b:
        d5:ee:67:e9:38:77:c4:9d:30:7b:57:97:bf:7e:75:3a:
        a5:86:c9:88:f9:c7:74:bc:0c:dd:94:2d:d0:e4:e6:7c:
        e0:10:ed:60:88:82:f1:68:b7:4a:2d:bf:a1:1c:c7:b4:
        5b:7f:65:eb:67:43:d8:c6:08:7f:b5:53:72:6f:1e:25:
        27:41:9c:36:1f:e6:c2:eb:79:3b:0d:7f:3d:b6:47:2a:
        fb:9b:73:25:67:dd:22:1b:d2:c9:74:54:af:ae:34:fa:
        e7:38:e4:2c:cc:39:86:68:6b:ab:5a:bd:2d:52:b3:73:
        21:d5:b3:69:a4:d3:1e:c0:43:d7:dc:50:7d:50:02:df:
        02:1c:c6:e0:32:50:ad:a4:9e:2a:ba:d1:b4:86:dc:33:
        10:a6:0c:4c:be:7d:8c:da:01:a6:5d:9a:c7:08:9f:6f:
        4b:69:1c:3d:14:1f:d7:46:d9:d7:97:71:c7:5a:b2:d5:
        0c:06:b8:41:9b:38:8e:bd:1a:57:b1:ea:4b:b2:21:35:
        d7:cf:4c:66:91:b6:e1:9c:4d:d4:7b:8e:51:b5:e4:cf
    Fingerprint (SHA-256):
        FE:5A:34:69:6F:9C:46:8E:98:84:58:38:A6:39:AD:FA:2E:11:2E:29:45:6E:35:B9:E4:E6:F6:26:B1:BB:7E:DB
    Fingerprint (SHA1):
        70:9F:74:C6:0C:0D:1B:75:A7:D1:C5:10:56:73:27:5B:93:9B:A0:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:97
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:05 2017
            Not After : Wed Aug 02 15:16:05 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:b9:1f:29:75:54:10:1f:99:55:f9:f5:77:d1:d6:f1:
                    dd:33:14:13:5c:68:1e:a7:59:47:56:7e:2f:5c:7b:0b:
                    7e:27:49:14:62:1b:34:92:64:84:00:e2:27:06:12:7c:
                    96:cc:c6:be:58:4f:d8:f6:83:39:ec:e1:89:6c:ef:49:
                    bd:c5:63:65:25:50:7d:4f:f4:cb:d8:bd:ac:4c:95:ac:
                    a4:ed:8e:d8:ec:30:55:5c:01:a6:53:c6:64:aa:4d:fd:
                    4b:51:40:b0:91:0c:40:3b:61:da:a9:ce:4a:3d:e0:98:
                    7e:92:08:38:da:07:55:ac:84:7d:5e:ef:ed:8c:88:c5:
                    92:56:05:c6:5a:c0:66:ee:4c:7a:ae:57:c9:f2:f7:14:
                    82:37:e7:de:8f:db:9a:fe:0c:90:f6:1e:35:f1:19:4f:
                    8a:d6:e5:db:c9:79:a0:5b:4d:93:15:60:e7:ae:58:63:
                    d3:6b:45:5d:e1:b1:44:8e:e1:8e:b6:14:44:e0:d2:9f:
                    e6:f6:c8:f3:6f:0e:4b:6f:91:3d:e1:6b:72:df:25:4d:
                    e0:ed:47:60:1a:61:bb:50:dd:15:34:c9:18:ff:48:1a:
                    21:c6:bd:b0:56:15:99:45:af:fa:95:52:85:58:0a:84:
                    f8:83:7c:3f:0b:11:56:d2:67:69:b5:ff:d6:b8:a6:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:74:c1:d6:0a:06:d5:5d:fd:e1:3a:48:b9:ff:2b:6f:
        15:b4:b6:84:67:08:75:74:dd:61:54:66:0f:0b:14:f6:
        93:0b:f7:02:22:2e:ef:20:5b:ee:01:44:9d:8c:b2:b0:
        b7:79:cd:d9:bc:10:34:ed:2c:20:93:f8:f9:ae:d4:45:
        35:29:ae:da:b8:37:f3:a1:2d:64:10:9a:8e:04:6c:76:
        bc:e1:60:45:17:8d:39:30:5a:f1:a6:a3:c0:13:0c:0d:
        cf:29:e9:be:bc:1e:e2:1a:01:1d:2e:c0:66:22:1d:11:
        fc:28:8b:f4:d0:f9:c3:45:26:44:c8:26:da:59:5f:5f:
        03:de:41:3e:be:fe:fc:7e:7e:af:ab:0f:05:d8:b2:ae:
        38:f4:26:71:42:d8:5a:28:09:fe:87:b3:c6:aa:a9:e4:
        1c:aa:60:d7:ce:8b:26:9e:38:04:79:37:bb:a2:a8:5f:
        54:33:e3:e8:be:89:ff:ae:24:c7:e6:f0:2f:37:93:c6:
        43:f3:4b:fa:e9:98:92:2f:12:e6:73:0e:da:3a:52:7b:
        ca:f2:35:be:ae:7e:85:61:cf:08:a2:0e:bf:f8:f6:0e:
        43:bc:29:90:b9:ce:a7:18:33:5d:94:dc:a4:37:c4:8f:
        aa:a4:fd:e6:85:90:f7:ad:c9:9a:81:ca:ae:db:7d:70
    Fingerprint (SHA-256):
        58:AC:61:0C:19:04:68:17:D3:F5:08:21:AB:D3:1A:B7:CA:BC:5E:C1:EB:C0:9B:9A:AC:BF:75:C9:70:42:4F:5C
    Fingerprint (SHA1):
        B9:A1:EB:70:DD:BB:E1:A5:B3:95:0D:FF:7F:25:24:05:BA:50:3B:56
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:98
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:06 2017
            Not After : Wed Aug 02 15:16:06 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:76:2c:9f:77:6c:3d:be:f9:3e:48:72:d2:06:6a:40:
                    79:1c:9e:b0:27:fd:f3:a8:80:df:0b:9a:b3:9b:c8:ba:
                    c7:31:21:55:09:2d:75:c8:2d:27:f0:1f:ed:27:b1:9b:
                    58:74:6a:e8:95:d3:90:1f:ee:55:5e:71:58:e1:8d:6f:
                    8d:4a:48:cf:bc:35:16:7e:28:86:91:12:9a:b0:a6:fb:
                    1a:db:35:ee:73:39:09:f5:46:48:97:54:70:01:04:a8:
                    36:e9:57:fa:e4:4f:85:a1:b3:ec:58:1c:c4:73:93:a2:
                    0e:b1:f1:95:77:8a:c1:70:68:f4:28:f5:2c:54:24:12:
                    c4:23:43:35:fc:10:52:a6:44:a7:e1:a9:bb:9e:43:be:
                    0c:ef:0b:bb:c7:d3:85:f5:7b:8e:6f:e8:46:4d:fd:5f:
                    cb:1f:56:0c:80:f2:d2:a7:27:d0:44:f9:b2:37:8f:54:
                    50:d2:f2:af:ef:40:a7:ff:2d:7e:be:b7:7f:e0:c1:82:
                    9b:6a:48:fe:31:f7:fc:1b:50:33:43:d6:bd:d5:72:0c:
                    94:25:7f:ce:9b:47:22:ab:12:a7:30:9a:df:6b:86:72:
                    73:01:ab:63:d5:3e:ab:68:1c:cc:27:09:40:3d:37:ac:
                    c1:8b:29:a9:b2:cb:c4:fa:fc:d8:b2:e9:52:1f:fb:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:dd:ad:ba:67:40:4b:ba:fa:e2:02:ad:5c:0a:fa:a8:
        e0:0b:c0:df:5f:45:74:ed:2c:1e:db:bb:62:ba:f7:b2:
        e4:9f:eb:3f:2c:ed:74:7c:75:53:68:aa:d4:8b:3d:bb:
        c5:75:41:b7:51:39:b7:95:51:1c:e3:a3:0c:02:83:ff:
        4c:2f:ab:cd:4d:dd:b2:aa:b8:bf:ad:ab:80:85:63:fe:
        36:7a:1c:e5:6d:8c:6e:c5:0f:a2:36:fa:11:db:77:51:
        fd:e6:7b:ea:5b:d6:19:96:6c:e3:06:c1:42:2c:e7:31:
        ea:95:d4:2a:90:20:b6:d7:ec:de:5a:2c:de:0e:31:11:
        e3:8a:ce:09:01:e2:4d:3b:2c:35:34:bf:f1:e2:65:ab:
        00:4b:3f:0d:d4:6f:3a:18:2b:31:ca:ac:38:33:73:2a:
        be:05:cf:09:a7:95:6d:1d:e0:56:31:14:4e:03:80:1f:
        c2:d7:4b:a1:65:12:57:93:cc:f3:de:ec:7d:3a:02:ea:
        00:39:08:17:15:ee:fd:d3:70:31:c2:3d:75:af:14:9a:
        98:e5:e0:42:ff:5a:1f:f8:f4:9d:1f:96:43:bb:80:be:
        af:b4:07:90:fd:ed:73:06:e3:df:3e:9a:23:af:3d:a6:
        da:28:d4:1d:a6:94:e2:da:0c:2f:04:66:ae:3c:9e:7b
    Fingerprint (SHA-256):
        78:0E:AA:B9:BB:0F:F5:10:2B:AC:D2:2B:48:CA:1F:0D:D3:2E:04:3B:D3:96:EC:8C:8D:CB:35:2A:C0:4F:38:85
    Fingerprint (SHA1):
        02:89:2C:88:E9:4F:91:70:4B:02:0C:1F:C3:BB:07:41:2B:15:34:78
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:99
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:07 2017
            Not After : Wed Aug 02 15:16:07 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ba:01:73:bf:a0:18:30:c3:10:f5:18:0f:38:3c:18:
                    de:09:5f:67:79:27:91:fd:b0:21:86:63:45:17:3e:3d:
                    40:43:86:0a:6b:fd:f5:b1:82:03:52:6a:6a:a6:37:72:
                    f9:e7:fc:a2:a6:7d:a0:c8:50:7a:52:5d:30:cd:88:3d:
                    d9:a3:a5:c3:b4:90:01:30:ae:73:ae:69:6c:57:a0:f7:
                    0e:ba:d7:2e:5f:0d:39:40:1f:11:aa:b5:45:8f:18:c4:
                    15:51:08:e5:da:23:7e:9f:b2:35:ac:17:22:c7:c0:83:
                    8b:3f:bf:1d:a1:bf:3c:e8:7a:6a:a6:b8:40:64:84:d6:
                    f5:2b:83:f8:cd:00:a7:d6:ac:1a:00:a4:43:41:76:4c:
                    8d:2c:09:6f:12:65:7e:b0:35:df:cd:94:00:89:b5:17:
                    f3:a4:29:3b:1c:49:87:bd:f3:4d:88:54:c4:dd:d7:b6:
                    f8:93:c7:0d:46:bb:5f:fe:c6:02:d1:42:8e:46:a8:69:
                    bc:88:98:cc:3a:91:3b:c8:63:5d:d6:2f:5c:04:9f:ce:
                    64:3e:0a:c1:81:2c:67:2b:e2:f2:5f:1d:25:e7:9b:7c:
                    5f:c9:87:45:4c:98:14:79:0e:8e:a1:fb:19:a7:1c:de:
                    f9:83:b4:19:9b:ec:d2:f5:3c:27:56:bb:88:b3:5a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:8f:88:2b:f6:c6:4f:6c:ef:7e:c5:9f:0a:cb:8d:87:
        71:65:eb:c0:af:65:8e:7f:99:e7:79:ac:9d:37:ec:59:
        b4:9c:a7:cb:95:59:f4:3f:bb:93:f0:5b:d7:38:2a:d6:
        81:b7:77:de:ac:05:eb:1e:45:4e:ea:c5:5f:1d:68:82:
        b3:64:10:75:8f:9b:44:ca:54:32:c6:64:20:59:fa:17:
        6c:89:fd:38:bb:71:d6:28:d2:47:d4:c3:07:4b:e7:f9:
        69:fe:2b:8d:1e:f7:c8:51:cd:00:74:f9:38:2c:85:e1:
        3f:c8:15:64:16:25:ef:dc:6b:13:ee:7d:96:e5:ae:ac:
        5f:ae:b6:74:bb:3c:a7:a2:e1:bc:d2:92:cf:32:b2:ed:
        dd:6d:a4:2a:8a:df:51:d8:72:4c:13:c6:46:11:11:1d:
        a4:05:76:e6:9a:d7:98:99:41:dd:05:1d:0a:82:b5:ec:
        d7:58:6f:57:37:31:c0:b0:6b:30:40:27:68:a7:de:68:
        c2:62:56:8f:bb:31:2f:23:c6:5d:70:b4:10:44:aa:a5:
        6f:52:e3:f7:7b:ab:bb:f4:02:cb:67:40:2a:0b:41:18:
        9e:45:c4:11:56:3a:c7:89:09:72:f6:83:ec:6c:4b:8b:
        e5:82:66:ee:8a:ee:bc:27:fe:56:7d:84:b1:42:90:f0
    Fingerprint (SHA-256):
        7C:EA:03:61:07:38:CA:B2:B0:28:97:BB:DB:1B:57:A1:2C:50:79:54:FB:AF:48:35:C0:03:E7:9A:7E:31:46:E1
    Fingerprint (SHA1):
        EA:7C:5F:26:04:0B:B7:44:76:0A:DD:55:9F:43:FA:EF:58:DC:4E:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:9a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:07 2017
            Not After : Wed Aug 02 15:16:07 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:8f:12:6c:ff:4c:33:ad:68:f7:b8:36:49:e0:24:b3:
                    81:d6:8d:f3:a7:20:48:46:b2:53:57:3d:12:a1:44:25:
                    ce:da:7b:4e:e6:9f:32:8c:d9:9e:4c:3b:5e:a7:86:16:
                    d6:39:95:9e:02:aa:c9:fd:e2:4b:d1:27:e5:08:07:c1:
                    58:fa:bd:f6:02:82:c6:3d:65:db:0a:b1:17:b9:29:b9:
                    8c:8c:1d:98:18:86:2d:f6:57:8b:47:1d:b2:7a:af:69:
                    c1:a5:45:61:94:bb:14:be:b3:d7:d5:29:76:e1:d8:15:
                    48:a0:40:5d:98:b2:8e:79:81:8f:62:f1:7f:54:da:f3:
                    1c:02:9a:2d:bb:ab:a1:9e:dd:72:a9:06:be:89:16:44:
                    08:bf:88:cf:08:28:a4:e6:13:64:18:d7:cd:d4:34:cd:
                    e2:8c:77:9a:4d:7b:59:9b:d6:1f:ff:94:07:4f:80:b5:
                    3a:8c:41:c0:c3:6e:31:4b:a3:d1:b0:a7:f4:7f:4f:89:
                    4b:53:13:43:ee:2c:44:e6:ac:fc:14:4b:cd:ef:e9:97:
                    41:1e:e9:e3:0a:d7:5b:01:a6:c0:0f:c2:c0:c4:38:bc:
                    b3:18:e8:67:09:4d:69:bd:ae:fc:8a:3c:11:d2:05:22:
                    23:65:14:ac:ef:8a:38:65:0d:a4:8b:c3:22:c7:f8:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:f7:39:dc:92:80:aa:c5:3f:a9:8d:31:7d:17:79:b2:
        27:5f:1a:4f:ca:1f:19:6b:9a:56:82:8d:a3:d4:75:08:
        f8:99:08:14:d9:73:d5:c0:3e:43:03:ec:87:a0:dc:ac:
        ac:06:31:08:d3:c5:b8:29:d5:28:5f:b2:a1:9c:6d:48:
        97:c8:76:f6:65:6a:af:41:16:36:57:30:e1:9c:58:e4:
        ab:8a:be:04:f1:e7:3c:0e:e5:c8:4c:4d:c4:fa:25:83:
        32:f4:61:f7:93:0b:6a:c9:07:b1:ef:a0:be:f8:4c:de:
        4c:b1:0d:6e:23:8c:52:79:cf:c6:b5:0d:ef:ee:28:27:
        d4:1c:fa:60:75:1b:1e:71:20:e3:0f:1b:3d:dc:56:12:
        16:37:1c:b6:1c:84:c5:38:39:56:fa:f8:e1:ad:1a:e6:
        e7:a6:6f:08:a2:bc:8f:ed:37:59:a6:ce:7a:32:1c:08:
        80:2b:24:de:22:c4:23:b9:7f:64:71:69:4c:e5:1f:24:
        82:37:6d:e6:8a:4c:9d:b7:fb:9a:01:18:9e:a6:d1:fb:
        90:0f:df:3e:bd:32:99:e0:00:7a:91:3f:7b:57:a2:fc:
        d8:89:c8:ba:29:cf:6f:50:87:31:af:0e:db:a3:47:fd:
        4a:60:dc:83:61:4e:d0:f4:5e:0c:37:e6:58:6a:17:3d
    Fingerprint (SHA-256):
        8C:8B:8F:A8:F4:CE:A5:DE:73:71:F8:00:5D:3B:E7:FD:12:04:D8:68:73:1E:E8:A0:30:0D:65:D3:B0:9D:8A:28
    Fingerprint (SHA1):
        CA:C8:9E:9C:44:92:F3:22:50:6C:A4:CD:C7:71:8B:81:BB:3F:51:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:9b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Wed Aug 02 15:16:08 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:62:09:81:a7:ff:98:af:e4:a0:3d:35:18:85:02:30:
                    c1:b5:0e:b3:e1:b1:c9:9a:d2:ef:1d:1d:b6:17:77:18:
                    6b:0f:d7:fc:45:3e:1f:cb:86:4c:dd:be:c6:b7:98:92:
                    0c:9c:65:71:ca:bd:1c:2f:82:94:fa:89:0a:22:35:35:
                    14:50:40:7d:9f:cd:8f:c5:3c:c0:59:49:eb:1c:a4:19:
                    86:d1:96:d1:af:0b:de:9c:26:1e:f4:62:d8:cd:50:89:
                    c2:48:2a:33:d9:3f:8b:7e:e5:2e:1c:49:80:e6:fd:02:
                    a7:b4:90:5a:e8:c4:9e:e7:52:9c:3e:fd:ba:1d:43:19:
                    05:6c:79:7e:b6:56:fa:41:e2:27:9e:ae:a3:3f:ff:bd:
                    71:f6:85:9e:0b:c0:18:19:53:66:ef:a4:71:39:8b:5d:
                    21:af:53:dd:a8:a6:39:0b:3b:f7:7e:15:7b:68:b9:2b:
                    a1:86:a8:8f:78:e9:29:49:83:7e:1b:ae:37:9a:70:61:
                    6b:e5:63:1f:19:85:cc:93:3a:02:e2:bf:6f:91:41:bf:
                    e6:9f:f2:28:ed:fc:d7:ab:0e:49:fc:d1:fc:46:51:d6:
                    7b:21:50:78:c8:70:a5:c5:f9:03:b9:67:02:aa:e9:4b:
                    77:6f:c7:72:d3:15:ae:4c:07:dd:dd:9c:ea:9d:34:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:82:8f:ed:69:1b:d3:d4:ab:cb:cd:b8:d6:59:e3:ea:
        7f:ec:ba:2d:43:79:5a:f9:9b:fc:e1:7d:70:d4:30:cd:
        81:ce:26:ac:33:b4:d7:ef:ee:fd:87:32:49:24:f3:df:
        f7:4e:36:91:3a:1d:e0:7d:d0:70:a4:a4:d1:4d:36:9d:
        94:93:1a:e4:d5:61:32:58:a9:4c:75:e5:c2:0f:6b:70:
        f0:fd:6e:cf:55:89:bb:5d:83:38:04:d3:d5:7e:bc:b9:
        a0:ae:e6:6c:49:3f:1e:6d:91:f7:bf:5e:d5:83:0e:c8:
        48:2b:1d:9f:35:24:ed:34:4d:04:d6:43:3b:90:a6:08:
        0d:6e:4a:ab:ad:92:26:fc:2b:bb:b9:1d:0e:9b:bb:a4:
        e9:39:1c:9f:00:86:60:b6:40:4f:b7:52:50:ad:b3:2e:
        f2:27:e7:7b:93:f5:65:df:91:64:5e:f6:4a:a7:76:b7:
        8d:a3:a7:c8:bc:69:d6:6c:21:03:e8:44:56:d6:c0:10:
        99:ff:e1:bc:6e:a9:fa:89:c6:07:39:cf:30:e1:b6:eb:
        8f:cc:17:f6:0d:e5:7d:16:4c:7a:34:fd:6c:34:e4:55:
        dc:01:2c:24:9a:a4:3c:22:7d:fd:1d:11:0a:18:bd:82:
        4e:e0:94:fd:de:bf:54:18:e3:ad:86:39:7b:0d:ee:2e
    Fingerprint (SHA-256):
        AC:F5:41:C8:40:48:4F:A4:4E:08:C7:BD:A9:61:F0:B5:B6:7D:A4:83:33:41:BC:AE:94:FD:69:D7:CE:1C:3E:88
    Fingerprint (SHA1):
        42:A4:DB:12:15:4E:9F:F9:78:D5:4B:71:9E:09:29:8B:46:62:14:D0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:9d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:16:08 2017
            Not After : Wed Aug 02 15:16:08 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:7a:6d:dc:d8:48:38:4f:57:c0:b7:c4:c0:5d:fd:0a:
                    42:08:74:27:92:dd:0d:93:2d:c5:14:fd:60:00:d2:69:
                    ad:20:b9:41:fa:8c:e0:7e:7a:cd:84:22:62:a0:99:66:
                    c1:01:b0:bb:27:a3:fc:4c:23:e1:64:ed:cf:3e:89:92:
                    8b:16:f1:25:40:de:22:96:1b:54:a1:db:33:40:ca:ab:
                    28:9d:04:82:d0:b9:36:5b:5c:a0:a9:28:0f:a3:f4:0a:
                    49:a4:85:34:be:12:f6:53:52:db:64:45:a9:17:f4:2f:
                    17:8f:51:db:ca:0d:30:11:76:d2:53:9c:d0:93:04:76:
                    d4:26:71:e1:b0:0a:b2:de:18:0b:7f:8d:6e:8b:2b:f0:
                    29:de:d7:06:27:87:54:26:23:65:66:18:99:99:53:8c:
                    b6:01:24:f8:61:37:47:0b:43:e2:48:18:13:bc:fe:96:
                    bd:12:f8:d7:5e:5e:38:9d:da:ab:40:20:1d:fb:8e:6c:
                    bd:09:73:b3:ea:71:0e:a5:bb:75:99:58:9b:d4:76:46:
                    e0:55:53:be:b7:c5:c4:40:a7:25:8a:03:67:3d:25:32:
                    ad:8c:70:68:a9:a5:db:a0:93:c4:a2:19:28:af:14:58:
                    24:d4:a8:85:30:59:d0:a8:e5:25:e5:da:cd:9f:d1:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:a5:89:d1:ab:c5:61:01:6a:0d:4d:b6:b4:fd:1b:f4:
        79:25:e1:7d:a0:95:e7:43:14:83:ed:9b:13:8e:a3:54:
        ed:1c:d2:4b:29:f6:90:fd:af:48:1e:10:e2:6f:80:63:
        b7:a9:45:c6:d6:25:26:f8:e5:32:29:04:5c:e2:c2:29:
        8e:9c:6b:a5:a2:9d:e4:29:36:6a:eb:c9:10:3d:40:de:
        0c:cb:8d:9d:44:06:49:71:d4:a4:67:80:63:90:d1:72:
        1b:b9:bc:d9:92:3b:08:e0:3f:70:48:92:74:21:2d:89:
        16:ee:85:09:5a:71:3b:c1:94:30:13:6c:c9:61:03:3a:
        f2:21:08:9e:10:36:bb:33:90:bb:8b:66:51:54:88:71:
        21:4a:ea:ec:fb:4b:0d:16:b2:b1:3e:69:25:48:35:0d:
        9b:7d:b2:4a:76:7b:01:4b:96:4d:2f:97:3e:25:74:d4:
        de:25:02:ac:06:77:34:97:5b:f8:0b:e6:0d:b3:04:86:
        79:cd:2a:9d:52:03:e8:7b:7b:4e:1d:20:0f:c9:37:bd:
        2d:a4:2b:a9:a6:c0:d6:30:ae:36:fe:1a:08:83:0f:ac:
        ed:c5:51:73:86:37:15:09:57:d9:be:25:c6:a3:e6:57:
        56:54:38:94:f9:6f:4c:46:04:a5:89:0f:0b:30:ae:a5
    Fingerprint (SHA-256):
        64:28:39:EA:A9:7D:8D:D9:31:5D:67:43:49:72:A7:0D:93:3E:F6:44:05:04:E3:DA:6E:1B:E6:24:12:F9:CE:BD
    Fingerprint (SHA1):
        00:21:F1:67:E9:D9:81:24:F3:0D:26:C0:CD:B9:B8:CA:E8:B1:59:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:a0
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:16:10 2017
            Not After : Wed Aug 02 15:16:10 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:31:aa:0d:93:74:65:c3:83:73:a5:54:23:72:3c:87:
                    2d:1b:ef:0f:a4:44:fa:bb:16:5c:0e:69:f1:c2:11:41:
                    26:d4:f6:41:e5:c6:f3:68:95:db:5a:f0:02:d5:65:56:
                    56:83:73:17:68:cc:40:50:97:72:e5:f0:66:ae:1e:82:
                    e2:96:1d:f1:13:56:40:83:51:cc:fe:76:ef:74:6d:4e:
                    c7:ed:9b:6d:5c:dd:d4:f3:6d:e2:1c:d8:d6:62:8d:85:
                    8b:95:27:b8:0f:96:1b:80:aa:a2:4c:e1:3b:e1:2a:9f:
                    6a:a8:1a:89:34:b8:a3:7e:21:b8:03:89:89:92:18:d3:
                    60:2a:e7:45:cc:d6:7a:c1:32:04:fb:60:1c:e8:61:ee:
                    87:04:d6:1c:07:3f:d2:c8:46:99:41:ff:93:47:01:3d:
                    8a:72:46:44:8b:02:10:a3:13:39:2d:9a:ea:b1:ee:53:
                    0c:f8:88:60:7a:2c:ce:4a:a0:60:26:d2:13:3f:72:3a:
                    61:a4:86:cd:dd:9e:8a:84:55:99:d2:a2:58:48:f6:52:
                    e1:39:95:c2:7d:fb:6c:c8:a3:0b:a8:8b:bd:2a:6d:8c:
                    23:eb:40:f4:53:00:75:67:ff:1b:b1:e0:82:49:58:53:
                    31:92:c3:8a:da:21:9d:60:d6:be:0d:03:28:24:1b:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:bb:62:59:9c:f1:50:a1:94:1d:dd:a7:00:e7:00:72:
        36:c5:e3:f6:6c:38:cc:f9:82:4c:3c:20:38:ed:c5:16:
        5b:ec:88:5b:6f:b6:4d:e6:3c:9e:78:c7:4f:5f:64:31:
        a8:20:8d:f2:c4:53:8b:25:7c:f0:03:d3:6e:dc:a1:60:
        ce:09:e0:4e:12:fe:5c:d9:a7:05:d1:84:d2:2a:dc:83:
        b7:81:d4:46:2c:66:94:b8:10:cc:51:62:29:21:c2:eb:
        b0:38:a4:01:62:5e:2b:1c:6a:d8:47:ba:c5:66:f1:66:
        26:1b:25:66:e7:03:d1:16:14:bb:e7:43:e7:3b:ff:9c:
        a0:ca:3a:99:be:e4:2a:07:18:73:95:7e:0c:78:ce:af:
        a5:ea:c1:4d:14:5a:98:14:12:f4:93:91:ee:b9:42:68:
        b5:7f:0c:ad:37:1b:7a:cb:cb:df:39:33:7b:19:0e:a0:
        eb:67:b9:00:6f:92:7f:b9:5f:ed:45:01:a6:1f:82:d1:
        7d:6c:29:72:e4:a0:b3:2d:14:e5:39:e4:be:0d:64:04:
        91:bb:3e:06:95:f2:06:59:bc:93:e4:e0:3d:f0:5a:19:
        c8:87:b8:16:4f:1f:e1:1b:7f:61:11:74:e8:d5:bf:b1:
        bf:65:98:45:e4:a5:28:8e:65:a1:16:b7:ea:f0:8a:cc
    Fingerprint (SHA-256):
        86:49:A5:EF:D6:21:2B:F0:50:36:2E:C1:AF:7A:73:84:7F:09:31:78:E8:80:54:24:4E:B6:21:94:9A:3B:DD:C6
    Fingerprint (SHA1):
        90:CF:98:AB:8C:17:B1:25:F7:03:82:9A:CD:C3:E8:1B:CD:D2:B2:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:80:a2
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:16:11 2017
            Not After : Wed Aug 02 15:16:11 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:bb:cc:e5:04:24:e8:7c:12:fa:20:7b:96:80:7f:8a:
                    65:a4:dd:c4:6c:f0:2e:c5:c7:fb:e4:f7:c2:1d:2a:a0:
                    ea:4a:f7:b5:4d:d0:a0:f2:da:16:88:0d:61:94:f6:74:
                    f6:34:d4:84:7c:e1:16:fa:1d:85:ca:9d:4c:a1:23:dd:
                    2b:e1:f9:53:96:98:31:ab:f8:cc:a7:c0:fb:05:cf:a2:
                    5b:a3:e4:c7:fe:78:71:6a:7b:0a:93:a3:10:5d:07:b7:
                    e1:c0:4b:1b:08:bd:2d:0c:42:3a:62:4d:fa:3a:28:ac:
                    9b:b4:39:34:23:50:90:47:f1:7f:54:33:17:55:9a:eb:
                    96:b5:e7:d2:ae:ea:c7:7f:e5:55:66:d2:0f:b5:66:94:
                    00:b1:ab:73:1a:d2:9c:23:57:4f:4b:6e:dd:e9:5d:72:
                    e1:a2:f7:65:e7:f0:87:0a:66:52:19:80:5c:f4:d6:ad:
                    5e:69:16:58:fc:db:c9:5e:e0:76:ad:e3:e2:fe:b2:f8:
                    a7:6a:f7:9f:d1:1c:b4:fe:b0:de:b9:68:84:fe:a1:b9:
                    2b:b4:6d:1b:84:5e:09:ee:70:fa:44:f9:03:da:b5:65:
                    69:26:68:99:dc:b6:ef:ef:e9:1f:b8:ca:d9:9c:f5:1a:
                    70:81:15:a7:6a:7a:02:d2:92:52:e5:75:3f:c1:3f:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:d2:0d:82:b4:fd:98:a2:27:e7:d3:a3:86:65:17:b5:
        81:83:90:e6:40:6c:a8:a6:d4:80:c0:55:d4:78:82:3d:
        d4:84:73:4c:0b:27:e8:9d:07:30:3f:e6:a7:e7:3b:96:
        40:c1:32:b1:00:c8:8b:d2:fa:05:20:09:3d:a0:58:67:
        d7:dc:07:15:9a:33:46:66:56:c9:0b:91:1a:15:69:ae:
        82:7a:63:21:c9:3f:d9:08:f8:1f:e5:18:51:ad:62:65:
        f6:b6:ff:a1:70:c2:23:9f:c1:6e:68:be:8a:8f:44:e9:
        8a:5d:b1:a3:35:19:08:e2:17:bb:c8:b9:a5:f9:19:90:
        a3:b7:7a:71:a0:2d:9f:fb:14:cf:cf:f4:c2:a9:29:c0:
        64:7e:f6:85:84:2b:4b:d8:87:30:06:af:ce:b4:fa:a0:
        20:a6:5b:6f:bd:13:dd:d2:0b:80:3b:ee:8c:7f:ca:5c:
        9f:68:85:fa:fe:5a:72:44:f5:ae:f5:b3:6e:ad:0b:3e:
        fb:ab:a6:61:dc:fe:60:5d:45:4b:a7:f8:0e:b6:1d:39:
        23:ff:43:64:2e:4c:ab:2a:48:23:f1:6a:d6:2e:5d:18:
        b7:8a:8f:3c:c6:92:ab:0b:0e:e0:44:7c:d2:47:73:13:
        78:58:a0:3c:61:af:a0:73:60:1f:c2:90:fe:17:82:6a
    Fingerprint (SHA-256):
        7E:F5:8E:F0:4E:97:1D:00:17:94:00:5A:F5:AB:A5:8E:02:42:94:19:CC:37:40:35:58:25:AB:97:B2:63:3A:04
    Fingerprint (SHA1):
        F4:8A:E9:18:A9:DE:D9:75:F7:73:1C:C9:F2:D7:EB:4F:82:80:D3:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:16:38 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 15:16:38 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1220 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    578 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 118784 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    394 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 May  2 15:16 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:c2:54:23:33:2a:3f:62:80:e0:80:6d:d8:ab:4a:11:
                    34:8b:bc:74:f2:7d:20:25:b2:4e:2f:ce:c6:8f:d1:76:
                    21:58:34:77:80:35:2c:05:05:d0:70:0a:b6:51:a6:10:
                    e8:ac:c4:54:8f:95:bb:09:20:87:5d:0b:83:c6:09:f5:
                    e6:3d:5f:8d:4c:b6:1b:dc:39:11:10:65:ba:eb:32:7e:
                    80:be:a9:bc:3d:aa:c9:85:1d:85:75:58:17:eb:96:b9:
                    6f:5e:13:98:97:d5:bb:50:64:21:51:22:d5:c1:70:af:
                    24:43:2d:ba:9c:a7:bc:fd:97:3d:9c:63:fd:ef:37:80:
                    dc:da:48:06:6c:3e:9f:ea:78:86:2a:d8:ba:73:ab:80:
                    1b:a3:46:8a:28:2d:c6:9f:40:c1:0d:94:2f:e6:77:0a:
                    17:46:48:9a:99:6e:a1:46:cf:96:c4:1c:60:ab:08:46:
                    1a:bb:3e:23:28:6d:0c:5e:b1:4c:72:f9:15:a0:5a:15:
                    21:04:59:62:15:de:a3:c8:72:94:c7:54:c2:e3:cd:da:
                    07:bd:f3:78:a8:1a:99:78:53:bd:89:95:22:5f:52:31:
                    8a:9e:0b:98:cb:95:36:0f:a9:71:32:f5:a3:a1:93:8d:
                    7a:77:96:33:5a:19:98:45:28:b1:4f:90:09:f0:29:15
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:93:0b:ba:89:93:d2:2d:4c:bf:08:f7:18:64:80:49:
        fc:ae:9e:4a:fe:35:43:49:ec:56:78:61:9d:eb:77:45:
        4c:e2:f2:b9:30:f9:f5:d2:d1:f5:5e:f8:4a:1a:e6:e7:
        1d:59:1a:62:89:f8:aa:f3:4c:38:fa:b3:6c:e5:41:8c:
        5d:8e:38:6a:61:1c:8d:d7:d6:2d:53:d6:28:f6:fd:60:
        75:bb:8e:08:85:73:a1:56:23:88:75:46:df:1b:73:8a:
        bf:90:10:19:3e:4a:d7:bd:28:c5:d4:8c:22:28:24:5d:
        80:eb:3c:bf:6e:1c:de:8b:cf:fe:f9:ac:36:23:26:e3:
        e6:d7:57:6f:35:b1:ce:ab:84:26:13:43:9d:28:1a:5c:
        ea:45:07:90:ae:92:e5:0f:d7:24:4f:d0:db:55:33:74:
        d2:ad:f2:dd:e1:28:0c:8a:6a:1a:42:b9:e1:3c:58:fc:
        60:f7:88:f3:7f:fa:50:f7:e1:6b:b0:bb:f4:f0:38:f7:
        46:ba:0c:c3:5a:66:4b:1f:df:f7:45:ac:e3:af:6c:d2:
        db:0e:fc:0e:ce:e3:31:5d:c1:74:14:90:7f:79:33:f6:
        74:95:83:2f:17:2b:40:0a:03:82:bf:c3:bf:17:00:32:
        07:e8:cd:63:6b:89:f4:e6:89:68:43:d5:f1:a8:68:ab
    Fingerprint (SHA-256):
        7F:3B:1D:79:9E:8C:C8:7E:9B:59:A1:E2:C3:84:7A:C3:4E:B5:53:2D:7F:E4:35:A2:CF:BC:A8:37:E9:03:C9:2B
    Fingerprint (SHA1):
        A0:11:38:CB:36:4A:E4:AC:1E:15:6F:F0:30:18:BB:F6:FC:ED:2E:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 15:16:38 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:16:38 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                80:61:98:20:ce:ba:fc:14:49:e8:85:7b:52:ee:97:d1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:c6:3e:a3:c7:5f:44:38:6a:d7:f2:a3:5f:ad:b5:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:53 2017
            Not After : Mon May 02 15:15:53 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:e3:82:9c:cb:07:86:a5:22:37:13:1a:01:b8:8a:
                    ff:2b:9f:47:91:c4:24:7a:40:d5:bf:8f:d5:0d:7f:88:
                    50:c6:bf:e6:61:6f:f9:3a:38:c1:2a:71:a7:62:d8:30:
                    de:1e:87:76:2e:19:96:8a:3d:38:11:0e:e5:67:56:97:
                    84:bb:b4:01:3e:b7:3b:2a:78:e7:ad:0b:60:c4:38:e9:
                    71:2a:5f:9a:93:b2:7d:c6:02:e5:63:ac:90:be:fc:6f:
                    ac:57:d4:03:a1:c7:25:28:50:ce:c9:bf:eb:44:c1:46:
                    e2:f7:56:be:b7:94:60:2f:68:74:68:d1:be:b7:34:c9:
                    a0:16:5d:86:b7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:4f:6e:d4:30:88:e3:03:65:60:34:86:
        47:14:89:13:3a:52:a9:29:e0:b9:f8:16:16:80:26:18:
        87:fd:9d:c2:31:45:fb:17:55:e4:d4:1a:3a:b6:80:c8:
        c3:33:ed:6f:85:0f:00:d8:fd:8e:e0:4f:61:9b:33:bf:
        c7:46:41:c3:ac:75:02:42:00:b1:c9:8b:b5:c5:9a:b8:
        49:5a:0e:c0:16:e1:80:48:b6:42:a9:f8:e6:b5:49:28:
        f5:5a:eb:ea:c2:de:63:71:a7:1b:53:be:62:18:ef:35:
        92:21:9c:a7:44:27:12:31:37:37:83:80:2f:28:67:92:
        2c:bb:b3:87:93:f5:9b:2b:7e:b3
    Fingerprint (SHA-256):
        1D:14:02:5B:AD:FC:2D:ED:EA:0A:4E:3F:E0:BF:98:54:CE:49:90:59:5B:13:04:03:F3:AC:8D:53:6B:65:98:10
    Fingerprint (SHA1):
        59:D3:80:3A:18:83:7C:A8:45:F0:05:79:42:FD:92:86:4D:0B:90:C7
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:98:98:b5:d1:bc:af:85:ed:37:f4:73:95:97:22:1b:
                    14:17:28:ac:58:19:68:3d:39:4c:b2:f4:7f:6d:09:94:
                    7b:91:d6:89:2d:6d:d4:c6:e1:92:7f:e1:dc:1e:4a:f7:
                    94:0d:28:23:e1:d5:d1:d7:58:83:63:7c:7b:04:12:e6:
                    84:88:7b:af:35:d3:0d:b7:ff:0b:53:6c:de:d9:14:0d:
                    cd:05:eb:20:aa:4d:c0:c8:81:c5:ff:3a:15:e7:ac:16:
                    f3
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:1a:9e:1d:b1:b6:68:1e:d7:bb:ad:a3:
        8b:f1:be:7f:15:6f:53:83:65:af:ca:bd:ac:a8:e6:94:
        61:d7:2e:6a:ef:de:3b:e9:5d:29:17:bf:31:be:7c:0a:
        8d:1a:ea:33:4b:9d:be:11:3e:01:05:67:02:1d:f7:db:
        89:f7:24:8b:30:fe:02:42:00:d5:8d:84:ed:ca:0d:be:
        bc:14:c3:79:39:fa:69:97:c3:fc:51:1a:ff:8a:12:5c:
        c8:14:8e:71:79:e7:6a:68:de:3a:81:8a:a9:71:48:4f:
        ab:0a:6d:0c:5c:1e:31:03:e1:83:ae:87:49:ce:e6:d2:
        d7:2a:28:f4:f5:2b:a0:4e:70:a1
    Fingerprint (SHA-256):
        5E:C5:DE:C0:82:ED:B3:D6:89:56:63:A6:83:5B:C2:32:DD:42:02:A9:8D:A8:91:84:F1:07:29:28:A2:F7:ED:14
    Fingerprint (SHA1):
        0D:8E:4C:7F:3D:CD:D3:F5:C7:C7:74:AB:CC:7A:FE:B0:EE:BA:02:2C
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                70:06:79:81:57:93:e5:ef:4c:0a:64:7d:9f:ac:e0:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                31:a4:0d:b5:ac:89:02:13:07:be:c6:43:7c:0a:03:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                9d:2d:df:13:4d:47:82:33:ff:04:0e:03:2f:73:94:64
            Iteration Count: 2000 (0x7d0)
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                40:cd:21:06:06:e0:bf:c9:b9:14:1c:ae:35:5e:98:05
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                76:6f:d4:06:e2:9f:5e:b7:96:61:76:be:b5:70:f1:e0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:15:d7:47:da:ff:e7:e1:49:d4:a6:d0:7f:3a:b4:dd
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:5f:32:cc:e3:fa:3e:12:b8:eb:ea:25:c4:a3:0e:5a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:96:3b:1e:4c:18:2f:b6:03:0d:52:f7:b5:2b:e1:
                    88:77
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:4a:9f:7a:14:d6:ea:79:0c:eb:1e:f1:d4:a5:b3:d7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:15:b8:f5:a3:7e:26:0a:40:f0:5f:0c:02:5d:75:
                    90:69
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:bb:60:06:12:e7:f6:27:c3:e9:81:de:d6:12:34:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:56:b8:f9:82:f0:e2:74:2f:cf:e1:fd:f9:88:39:
                    78:ed
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1a:80:32:4e:23:b8:f8:e2:6c:44:27:69:4c:8d:08:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:87:78:25:15:33:50:d1:c2:1b:e6:80:aa:a0:cc:
                    ed:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:c9:b2:97:69:75:2a:78:fd:6d:b7:23:d4:98:72:4f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d9:be:d5:ac:2c:67:b5:67:ae:cd:58:e0:69:34:
                    fd:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a0:91:74:b3:8a:22:b8:0b:75:5d:73:5a:65:19:3b:36
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:57:fb:47:db:d4:a4:89:17:9c:de:1d:cd:43:83:
                    4f:df
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        85:9c:89:97:42:cf:69:47:4c:0f:c6:5d:17:41:27:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:87:10:cf:c1:9e:1b:0d:94:7c:18:3a:8f:0d:76:
                    f5:ac
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        58:2b:3f:05:2e:56:ec:03:31:45:9c:7b:1c:ec:18:68
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:cd:42:5f:dc:5b:c8:5b:df:2c:cb:15:37:27:bc:
                    af:cf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9a:56:10:14:c5:26:10:37:18:71:4c:05:36:2a:d1:c3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:8e:47:44:79:da:1f:c2:b6:0f:e4:58:98:b4:8e:
                    99:24
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7b:3d:84:2b:04:1d:a6:cb:27:13:cf:8b:49:b6:c6:38
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fc:30:9e:3b:e9:98:ec:9e:91:45:2e:8d:ae:e6:
                    c2:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2a:04:97:0b:38:4b:59:6f:ad:0e:69:52:7d:ec:b2:f4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b1:9d:23:80:4e:9a:10:8f:bc:1b:fc:79:85:76:
                    ef:28
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:51:ca:ea:73:29:0a:f4:ab:8a:83:60:98:a8:a4:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:45:a8:09:7a:02:0d:38:b4:61:19:77:ea:94:b7:
                    a4:df
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:97:d9:4c:a9:d4:8e:fd:e2:4f:16:e8:c8:a9:d0:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:aa:d1:d2:65:f6:fc:de:e6:ae:dc:38:00:eb:3d:
                    8a:89
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e5:7f:a0:c6:f2:01:be:99:95:b9:11:89:6e:8b:7d:51
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:4c:7f:2f:24:0c:ad:2a:22:87:97:47:fe:cb:3c:
                    1b:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8e:ad:80:96:2b:8c:29:ca:00:8a:e9:03:ed:38:9e:0e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:6e:04:5a:fd:8e:3c:36:35:95:f8:7f:fc:91:e8:
                    b6:0d
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:67:b7:7d:c9:00:7b:ce:12:9d:54:27:41:ed:da:ad
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:da:7d:63:a6:51:5a:e3:ee:11:40:0f:a0:6a:f4:
                    0a:d3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:0c:7f:c7:c3:54:92:77:da:25:0c:23:2a:2b:47:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:3d:56:a1:ca:c8:fc:63:eb:d4:4d:fb:c9:ab:83:
                    8e:57
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5d:e9:8f:e2:b5:01:82:d1:a4:50:ee:9f:62:cc:9b:a2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:5b:75:4e:5d:43:71:e8:c1:1b:f4:8a:99:3b:fe:
                    3b:35
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                d7:c2:85:f1:7f:1d:96:c3:1d:f3:bc:95:c9:98:f8:3c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                3a:35:10:f3:88:6c:1b:3d:6b:12:e9:b9:58:ce:72:58
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                08:d9:40:20:d6:1e:3a:82:f8:c2:3d:82:b7:20:65:bd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                32:d8:93:9a:9c:7c:75:c6:5e:bf:05:3c:fe:0e:30:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5a:66:99:d3:44:54:30:cc:27:ed:fb:a1:4d:d8:7e:54
            Iteration Count: 2000 (0x7d0)
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e1:2f:34:9b:9a:a8:ce:ef:47:a6:d6:20:21:08:bd:49
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                2f:22:7a:8e:27:20:73:51:a2:74:cb:51:b3:4a:4c:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                6b:d1:f3:12:60:57:06:a6:fb:8b:b2:1b:fb:08:91:1b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                6f:75:ef:6d:f6:d5:0e:f6:e3:e7:1c:4f:96:29:06:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                0a:f0:99:2f:7d:74:48:2e:2c:91:7e:ac:c1:3b:90:1a
            Iteration Count: 2000 (0x7d0)
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                fa:50:f8:dc:b1:40:bd:38:ec:a4:44:60:db:f5:a1:62
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                84:80:ac:f0:09:b4:34:21:cd:b8:7f:ba:69:19:0c:af
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d1:a2:92:10:1f:67:0c:c5:d4:2d:8e:3c:a4:3c:c9:86
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                38:28:7a:ce:61:e8:bf:be:fe:47:e3:41:d8:f4:6d:eb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                5b:b7:1f:6f:00:6d:cc:46:a6:48:e5:78:10:43:bb:2c
            Iteration Count: 2000 (0x7d0)
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3e:46:e3:32:b2:93:58:f4:ef:4e:b1:f3:49:29:3f:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ce:55:b6:cf:9d:3a:6d:5f:70:34:eb:be:f4:9f:f5:e7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d2:e8:a8:f3:fe:c9:f2:03:e1:34:6d:6f:ed:a7:9c:43
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ee:34:81:b8:94:42:0f:d9:72:95:df:81:31:b1:70:3f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:0a:67:a5:c9:78:cd:36:3c:1c:ae:de:c9:6b:31:85
            Iteration Count: 2000 (0x7d0)
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a1:74:c3:0c:70:84:8b:b2:5c:98:36:ea:44:d3:c0:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:6e:02:64:b1:7e:12:8f:db:de:c2:05:ab:67:10:a0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:c1:52:4c:41:02:34:47:c1:44:65:ae:d6:dc:c0:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:16:60:36:ed:6f:86:6a:a8:e9:2d:02:fc:77:c0:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0f:12:9c:39:a3:c0:46:30:21:56:19:6f:53:f7:58:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a8:8f:84:7f:1a:97:5f:f8:11:ef:a6:36:12:11:bd:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:39:48:fc:e9:22:0b:26:80:4f:05:ca:28:0b:81:3b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c9:7e:9a:75:68:81:f0:92:73:b6:70:27:a2:1e:da:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:1e:ae:ea:cd:bf:c0:00:3f:8a:25:af:94:bf:93:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4e:7c:9f:43:c1:6d:ac:b9:7b:18:b4:9d:b4:6f:db:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #757: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #758: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #759: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #760: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #761: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #762: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #763: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #764: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #765: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:16:42 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:16:42 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #766: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #767: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #768: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #769: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #770: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #771: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #772: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #773: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #774: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #775: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #776: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #777: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #778: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   FIPS_PUB_140_Test_Certificate
fips.sh: #779: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #780: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #781: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #782: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #783: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   FIPS_PUB_140_Test_Certificate
fips.sh: #784: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #785: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #786: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
Changing byte 0x000447d4 (280532): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #787: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:17:02 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Tue May  2 15:17:02 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.12777 -t "Test1"
sdr.sh: #788: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.12777 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #789: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.12777 -t "1234567"
sdr.sh: #790: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.12777 -t "Test1"
sdr.sh: #791: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.12777 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #792: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.12777 -t "1234567"
sdr.sh: #793: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Tue May  2 15:17:02 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:17:02 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #794: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #795: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:17:02 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:17:02 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #796: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #797: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #798: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #799: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #800: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #801: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #802: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #803: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #804: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #805: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #806: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #807: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #808: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #809: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #810: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #811: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #812: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #813: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #814: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #815: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #816: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #817: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #818: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #819: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #820: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #821: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #822: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #823: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #824: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #825: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #826: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #827: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #828: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #829: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #830: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #831: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #832: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #833: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #834: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #835: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #836: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #837: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #838: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #839: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #840: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #841: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #842: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #843: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #844: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #845: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #846: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #847: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #848: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #849: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #850: Decode Encrypted-Data . - PASSED
smime.sh: #851: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #852: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #853: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #854: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #855: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #856: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:17:03 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:17:03 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22458 >/dev/null 2>/dev/null
selfserv_9122 with PID 22458 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22458 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #857: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22458 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22458
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22458 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22514 >/dev/null 2>/dev/null
selfserv_9122 with PID 22514 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22514 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #858: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22514 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22514
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22514 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22570 >/dev/null 2>/dev/null
selfserv_9122 with PID 22570 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22570 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #859: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22570 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22570
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22570 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22638 >/dev/null 2>/dev/null
selfserv_9122 with PID 22638 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22638 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #860: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22638 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22638
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22638 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22694 >/dev/null 2>/dev/null
selfserv_9122 with PID 22694 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22694 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #861: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22694 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22694
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22694 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22750 >/dev/null 2>/dev/null
selfserv_9122 with PID 22750 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22750 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #862: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22750 at Tue May  2 15:17:04 UTC 2017
kill -USR1 22750
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22750 killed at Tue May  2 15:17:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22818 >/dev/null 2>/dev/null
selfserv_9122 with PID 22818 found at Tue May  2 15:17:04 UTC 2017
selfserv_9122 with PID 22818 started at Tue May  2 15:17:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #863: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 22818 at Tue May  2 15:17:05 UTC 2017
kill -USR1 22818
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22818 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22874 >/dev/null 2>/dev/null
selfserv_9122 with PID 22874 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 22874 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #864: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22874 at Tue May  2 15:17:05 UTC 2017
kill -USR1 22874
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22874 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22930 >/dev/null 2>/dev/null
selfserv_9122 with PID 22930 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 22930 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #865: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 22930 at Tue May  2 15:17:05 UTC 2017
kill -USR1 22930
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22930 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22998 >/dev/null 2>/dev/null
selfserv_9122 with PID 22998 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 22998 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #866: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 22998 at Tue May  2 15:17:05 UTC 2017
kill -USR1 22998
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22998 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23054 >/dev/null 2>/dev/null
selfserv_9122 with PID 23054 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 23054 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #867: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23054 at Tue May  2 15:17:05 UTC 2017
kill -USR1 23054
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23054 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23111 >/dev/null 2>/dev/null
selfserv_9122 with PID 23111 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 23111 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #868: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23111 at Tue May  2 15:17:05 UTC 2017
kill -USR1 23111
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23111 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23179 >/dev/null 2>/dev/null
selfserv_9122 with PID 23179 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 23179 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #869: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23179 at Tue May  2 15:17:05 UTC 2017
kill -USR1 23179
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23179 killed at Tue May  2 15:17:05 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23235 >/dev/null 2>/dev/null
selfserv_9122 with PID 23235 found at Tue May  2 15:17:05 UTC 2017
selfserv_9122 with PID 23235 started at Tue May  2 15:17:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #870: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23235 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23235
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23235 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23291 >/dev/null 2>/dev/null
selfserv_9122 with PID 23291 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23291 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #871: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23291 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23291
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23291 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23359 >/dev/null 2>/dev/null
selfserv_9122 with PID 23359 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23359 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #872: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23359 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23359
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23359 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23415 >/dev/null 2>/dev/null
selfserv_9122 with PID 23415 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23415 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #873: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23415 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23415
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23415 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23471 >/dev/null 2>/dev/null
selfserv_9122 with PID 23471 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23471 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #874: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23471 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23471
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23471 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23540 >/dev/null 2>/dev/null
selfserv_9122 with PID 23540 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23540 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #875: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23540 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23540
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23540 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23597 >/dev/null 2>/dev/null
selfserv_9122 with PID 23597 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23597 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #876: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23597 at Tue May  2 15:17:06 UTC 2017
kill -USR1 23597
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23597 killed at Tue May  2 15:17:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23653 >/dev/null 2>/dev/null
selfserv_9122 with PID 23653 found at Tue May  2 15:17:06 UTC 2017
selfserv_9122 with PID 23653 started at Tue May  2 15:17:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #877: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23653 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23653
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23653 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23721 >/dev/null 2>/dev/null
selfserv_9122 with PID 23721 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 23721 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #878: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23721 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23721
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23721 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23777 >/dev/null 2>/dev/null
selfserv_9122 with PID 23777 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 23777 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #879: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23777 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23777 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23833 >/dev/null 2>/dev/null
selfserv_9122 with PID 23833 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 23833 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #880: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23833 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23833
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23833 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23901 >/dev/null 2>/dev/null
selfserv_9122 with PID 23901 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 23901 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #881: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 23901 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23901
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23901 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23957 >/dev/null 2>/dev/null
selfserv_9122 with PID 23957 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 23957 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #882: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 23957 at Tue May  2 15:17:07 UTC 2017
kill -USR1 23957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23957 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24013 >/dev/null 2>/dev/null
selfserv_9122 with PID 24013 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 24013 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #883: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24013 at Tue May  2 15:17:07 UTC 2017
kill -USR1 24013
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24013 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24081 >/dev/null 2>/dev/null
selfserv_9122 with PID 24081 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 24081 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #884: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24081 at Tue May  2 15:17:07 UTC 2017
kill -USR1 24081
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24081 killed at Tue May  2 15:17:07 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24137 >/dev/null 2>/dev/null
selfserv_9122 with PID 24137 found at Tue May  2 15:17:07 UTC 2017
selfserv_9122 with PID 24137 started at Tue May  2 15:17:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #885: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24137 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24137 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24193 >/dev/null 2>/dev/null
selfserv_9122 with PID 24193 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24193 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #886: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24193 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24193 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24261 >/dev/null 2>/dev/null
selfserv_9122 with PID 24261 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24261 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #887: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24261 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24261 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24317 >/dev/null 2>/dev/null
selfserv_9122 with PID 24317 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24317 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #888: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24317 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24317
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24317 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24373 >/dev/null 2>/dev/null
selfserv_9122 with PID 24373 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24373 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #889: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24373 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24373
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24373 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24441 >/dev/null 2>/dev/null
selfserv_9122 with PID 24441 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24441 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #890: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24441 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24441
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24441 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24497 >/dev/null 2>/dev/null
selfserv_9122 with PID 24497 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24497 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #891: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24497 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24497
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24497 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24553 >/dev/null 2>/dev/null
selfserv_9122 with PID 24553 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24553 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #892: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 24553 at Tue May  2 15:17:08 UTC 2017
kill -USR1 24553
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24553 killed at Tue May  2 15:17:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24621 >/dev/null 2>/dev/null
selfserv_9122 with PID 24621 found at Tue May  2 15:17:08 UTC 2017
selfserv_9122 with PID 24621 started at Tue May  2 15:17:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #893: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24621 at Tue May  2 15:17:09 UTC 2017
kill -USR1 24621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24621 killed at Tue May  2 15:17:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24677 >/dev/null 2>/dev/null
selfserv_9122 with PID 24677 found at Tue May  2 15:17:09 UTC 2017
selfserv_9122 with PID 24677 started at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #894: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24677 at Tue May  2 15:17:09 UTC 2017
kill -USR1 24677
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24677 killed at Tue May  2 15:17:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24733 >/dev/null 2>/dev/null
selfserv_9122 with PID 24733 found at Tue May  2 15:17:09 UTC 2017
selfserv_9122 with PID 24733 started at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #895: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24733 at Tue May  2 15:17:09 UTC 2017
kill -USR1 24733
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24733 killed at Tue May  2 15:17:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24801 >/dev/null 2>/dev/null
selfserv_9122 with PID 24801 found at Tue May  2 15:17:09 UTC 2017
selfserv_9122 with PID 24801 started at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #896: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24801 at Tue May  2 15:17:09 UTC 2017
kill -USR1 24801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24801 killed at Tue May  2 15:17:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24857 >/dev/null 2>/dev/null
selfserv_9122 with PID 24857 found at Tue May  2 15:17:09 UTC 2017
selfserv_9122 with PID 24857 started at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #897: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24857 at Tue May  2 15:17:09 UTC 2017
kill -USR1 24857
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24857 killed at Tue May  2 15:17:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24913 >/dev/null 2>/dev/null
selfserv_9122 with PID 24913 found at Tue May  2 15:17:09 UTC 2017
selfserv_9122 with PID 24913 started at Tue May  2 15:17:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #898: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24913 at Tue May  2 15:17:10 UTC 2017
kill -USR1 24913
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24913 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24981 >/dev/null 2>/dev/null
selfserv_9122 with PID 24981 found at Tue May  2 15:17:10 UTC 2017
selfserv_9122 with PID 24981 started at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #899: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24981 at Tue May  2 15:17:10 UTC 2017
kill -USR1 24981
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24981 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25037 >/dev/null 2>/dev/null
selfserv_9122 with PID 25037 found at Tue May  2 15:17:10 UTC 2017
selfserv_9122 with PID 25037 started at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #900: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25037 at Tue May  2 15:17:10 UTC 2017
kill -USR1 25037
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25037 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25093 >/dev/null 2>/dev/null
selfserv_9122 with PID 25093 found at Tue May  2 15:17:10 UTC 2017
selfserv_9122 with PID 25093 started at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #901: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25093 at Tue May  2 15:17:10 UTC 2017
kill -USR1 25093
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25093 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25161 >/dev/null 2>/dev/null
selfserv_9122 with PID 25161 found at Tue May  2 15:17:10 UTC 2017
selfserv_9122 with PID 25161 started at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #902: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25161 at Tue May  2 15:17:10 UTC 2017
kill -USR1 25161
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25161 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25217 >/dev/null 2>/dev/null
selfserv_9122 with PID 25217 found at Tue May  2 15:17:10 UTC 2017
selfserv_9122 with PID 25217 started at Tue May  2 15:17:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #903: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25217 at Tue May  2 15:17:10 UTC 2017
kill -USR1 25217
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25217 killed at Tue May  2 15:17:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25273 >/dev/null 2>/dev/null
selfserv_9122 with PID 25273 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25273 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #904: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25273 at Tue May  2 15:17:11 UTC 2017
kill -USR1 25273
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25273 killed at Tue May  2 15:17:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25341 >/dev/null 2>/dev/null
selfserv_9122 with PID 25341 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25341 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #905: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25341 at Tue May  2 15:17:11 UTC 2017
kill -USR1 25341
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25341 killed at Tue May  2 15:17:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25397 >/dev/null 2>/dev/null
selfserv_9122 with PID 25397 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25397 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #906: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25397 at Tue May  2 15:17:11 UTC 2017
kill -USR1 25397
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25397 killed at Tue May  2 15:17:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25453 >/dev/null 2>/dev/null
selfserv_9122 with PID 25453 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25453 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #907: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25453 at Tue May  2 15:17:11 UTC 2017
kill -USR1 25453
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25453 killed at Tue May  2 15:17:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25521 >/dev/null 2>/dev/null
selfserv_9122 with PID 25521 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25521 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #908: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25521 at Tue May  2 15:17:11 UTC 2017
kill -USR1 25521
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25521 killed at Tue May  2 15:17:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25577 >/dev/null 2>/dev/null
selfserv_9122 with PID 25577 found at Tue May  2 15:17:11 UTC 2017
selfserv_9122 with PID 25577 started at Tue May  2 15:17:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #909: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25577 at Tue May  2 15:17:12 UTC 2017
kill -USR1 25577
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25577 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25633 >/dev/null 2>/dev/null
selfserv_9122 with PID 25633 found at Tue May  2 15:17:12 UTC 2017
selfserv_9122 with PID 25633 started at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #910: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25633 at Tue May  2 15:17:12 UTC 2017
kill -USR1 25633
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25633 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25701 >/dev/null 2>/dev/null
selfserv_9122 with PID 25701 found at Tue May  2 15:17:12 UTC 2017
selfserv_9122 with PID 25701 started at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #911: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25701 at Tue May  2 15:17:12 UTC 2017
kill -USR1 25701
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25701 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25757 >/dev/null 2>/dev/null
selfserv_9122 with PID 25757 found at Tue May  2 15:17:12 UTC 2017
selfserv_9122 with PID 25757 started at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #912: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25757 at Tue May  2 15:17:12 UTC 2017
kill -USR1 25757
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25757 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25813 >/dev/null 2>/dev/null
selfserv_9122 with PID 25813 found at Tue May  2 15:17:12 UTC 2017
selfserv_9122 with PID 25813 started at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #913: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25813 at Tue May  2 15:17:12 UTC 2017
kill -USR1 25813
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25813 killed at Tue May  2 15:17:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25881 >/dev/null 2>/dev/null
selfserv_9122 with PID 25881 found at Tue May  2 15:17:12 UTC 2017
selfserv_9122 with PID 25881 started at Tue May  2 15:17:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #914: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25881 at Tue May  2 15:17:13 UTC 2017
kill -USR1 25881
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25881 killed at Tue May  2 15:17:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25937 >/dev/null 2>/dev/null
selfserv_9122 with PID 25937 found at Tue May  2 15:17:13 UTC 2017
selfserv_9122 with PID 25937 started at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #915: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25937 at Tue May  2 15:17:13 UTC 2017
kill -USR1 25937
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25937 killed at Tue May  2 15:17:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25993 >/dev/null 2>/dev/null
selfserv_9122 with PID 25993 found at Tue May  2 15:17:13 UTC 2017
selfserv_9122 with PID 25993 started at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #916: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25993 at Tue May  2 15:17:13 UTC 2017
kill -USR1 25993
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25993 killed at Tue May  2 15:17:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26061 >/dev/null 2>/dev/null
selfserv_9122 with PID 26061 found at Tue May  2 15:17:13 UTC 2017
selfserv_9122 with PID 26061 started at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #917: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26061 at Tue May  2 15:17:13 UTC 2017
kill -USR1 26061
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26061 killed at Tue May  2 15:17:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26117 >/dev/null 2>/dev/null
selfserv_9122 with PID 26117 found at Tue May  2 15:17:13 UTC 2017
selfserv_9122 with PID 26117 started at Tue May  2 15:17:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #918: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26117 at Tue May  2 15:17:14 UTC 2017
kill -USR1 26117
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26117 killed at Tue May  2 15:17:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26173 >/dev/null 2>/dev/null
selfserv_9122 with PID 26173 found at Tue May  2 15:17:14 UTC 2017
selfserv_9122 with PID 26173 started at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #919: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26173 at Tue May  2 15:17:14 UTC 2017
kill -USR1 26173
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26173 killed at Tue May  2 15:17:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26241 >/dev/null 2>/dev/null
selfserv_9122 with PID 26241 found at Tue May  2 15:17:14 UTC 2017
selfserv_9122 with PID 26241 started at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #920: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26241 at Tue May  2 15:17:14 UTC 2017
kill -USR1 26241
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26241 killed at Tue May  2 15:17:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26297 >/dev/null 2>/dev/null
selfserv_9122 with PID 26297 found at Tue May  2 15:17:14 UTC 2017
selfserv_9122 with PID 26297 started at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #921: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26297 at Tue May  2 15:17:14 UTC 2017
kill -USR1 26297
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26297 killed at Tue May  2 15:17:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26353 >/dev/null 2>/dev/null
selfserv_9122 with PID 26353 found at Tue May  2 15:17:14 UTC 2017
selfserv_9122 with PID 26353 started at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #922: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26353 at Tue May  2 15:17:14 UTC 2017
kill -USR1 26353
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26353 killed at Tue May  2 15:17:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26421 >/dev/null 2>/dev/null
selfserv_9122 with PID 26421 found at Tue May  2 15:17:14 UTC 2017
selfserv_9122 with PID 26421 started at Tue May  2 15:17:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #923: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26421 at Tue May  2 15:17:15 UTC 2017
kill -USR1 26421
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26421 killed at Tue May  2 15:17:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26477 >/dev/null 2>/dev/null
selfserv_9122 with PID 26477 found at Tue May  2 15:17:15 UTC 2017
selfserv_9122 with PID 26477 started at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #924: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26477 at Tue May  2 15:17:15 UTC 2017
kill -USR1 26477
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26477 killed at Tue May  2 15:17:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26533 >/dev/null 2>/dev/null
selfserv_9122 with PID 26533 found at Tue May  2 15:17:15 UTC 2017
selfserv_9122 with PID 26533 started at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #925: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26533 at Tue May  2 15:17:15 UTC 2017
kill -USR1 26533
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26533 killed at Tue May  2 15:17:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26601 >/dev/null 2>/dev/null
selfserv_9122 with PID 26601 found at Tue May  2 15:17:15 UTC 2017
selfserv_9122 with PID 26601 started at Tue May  2 15:17:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #926: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26601 at Tue May  2 15:17:16 UTC 2017
kill -USR1 26601
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26601 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26657 >/dev/null 2>/dev/null
selfserv_9122 with PID 26657 found at Tue May  2 15:17:16 UTC 2017
selfserv_9122 with PID 26657 started at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #927: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26657 at Tue May  2 15:17:16 UTC 2017
kill -USR1 26657
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26657 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26713 >/dev/null 2>/dev/null
selfserv_9122 with PID 26713 found at Tue May  2 15:17:16 UTC 2017
selfserv_9122 with PID 26713 started at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #928: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26713 at Tue May  2 15:17:16 UTC 2017
kill -USR1 26713
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26713 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26781 >/dev/null 2>/dev/null
selfserv_9122 with PID 26781 found at Tue May  2 15:17:16 UTC 2017
selfserv_9122 with PID 26781 started at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26781 at Tue May  2 15:17:16 UTC 2017
kill -USR1 26781
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26781 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26837 >/dev/null 2>/dev/null
selfserv_9122 with PID 26837 found at Tue May  2 15:17:16 UTC 2017
selfserv_9122 with PID 26837 started at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26837 at Tue May  2 15:17:16 UTC 2017
kill -USR1 26837
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26837 killed at Tue May  2 15:17:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26894 >/dev/null 2>/dev/null
selfserv_9122 with PID 26894 found at Tue May  2 15:17:16 UTC 2017
selfserv_9122 with PID 26894 started at Tue May  2 15:17:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26894 at Tue May  2 15:17:17 UTC 2017
kill -USR1 26894
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26894 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26962 >/dev/null 2>/dev/null
selfserv_9122 with PID 26962 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 26962 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26962 at Tue May  2 15:17:17 UTC 2017
kill -USR1 26962
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26962 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27018 >/dev/null 2>/dev/null
selfserv_9122 with PID 27018 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27018 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27018 at Tue May  2 15:17:17 UTC 2017
kill -USR1 27018
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27018 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27074 >/dev/null 2>/dev/null
selfserv_9122 with PID 27074 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27074 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27074 at Tue May  2 15:17:17 UTC 2017
kill -USR1 27074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27074 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27142 >/dev/null 2>/dev/null
selfserv_9122 with PID 27142 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27142 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27142 at Tue May  2 15:17:17 UTC 2017
kill -USR1 27142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27142 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27198 >/dev/null 2>/dev/null
selfserv_9122 with PID 27198 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27198 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27198 at Tue May  2 15:17:17 UTC 2017
kill -USR1 27198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27198 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27254 >/dev/null 2>/dev/null
selfserv_9122 with PID 27254 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27254 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27254 at Tue May  2 15:17:17 UTC 2017
kill -USR1 27254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27254 killed at Tue May  2 15:17:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27322 >/dev/null 2>/dev/null
selfserv_9122 with PID 27322 found at Tue May  2 15:17:17 UTC 2017
selfserv_9122 with PID 27322 started at Tue May  2 15:17:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27322 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27322 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27378 >/dev/null 2>/dev/null
selfserv_9122 with PID 27378 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27378 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27378 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27378
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27378 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27434 >/dev/null 2>/dev/null
selfserv_9122 with PID 27434 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27434 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27434 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27434
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27434 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27502 >/dev/null 2>/dev/null
selfserv_9122 with PID 27502 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27502 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27502 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27502
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27502 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27558 >/dev/null 2>/dev/null
selfserv_9122 with PID 27558 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27558 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27558 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27558 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27614 >/dev/null 2>/dev/null
selfserv_9122 with PID 27614 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27614 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27614 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27614
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27614 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27682 >/dev/null 2>/dev/null
selfserv_9122 with PID 27682 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27682 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27682 at Tue May  2 15:17:18 UTC 2017
kill -USR1 27682
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27682 killed at Tue May  2 15:17:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27738 >/dev/null 2>/dev/null
selfserv_9122 with PID 27738 found at Tue May  2 15:17:18 UTC 2017
selfserv_9122 with PID 27738 started at Tue May  2 15:17:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27738 at Tue May  2 15:17:19 UTC 2017
kill -USR1 27738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27738 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27794 >/dev/null 2>/dev/null
selfserv_9122 with PID 27794 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 27794 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27794 at Tue May  2 15:17:19 UTC 2017
kill -USR1 27794
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27794 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27871 >/dev/null 2>/dev/null
selfserv_9122 with PID 27871 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 27871 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27871 at Tue May  2 15:17:19 UTC 2017
kill -USR1 27871
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27871 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27927 >/dev/null 2>/dev/null
selfserv_9122 with PID 27927 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 27927 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27927 at Tue May  2 15:17:19 UTC 2017
kill -USR1 27927
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27927 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27983 >/dev/null 2>/dev/null
selfserv_9122 with PID 27983 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 27983 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27983 at Tue May  2 15:17:19 UTC 2017
kill -USR1 27983
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27983 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28051 >/dev/null 2>/dev/null
selfserv_9122 with PID 28051 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 28051 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #950: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28051 at Tue May  2 15:17:19 UTC 2017
kill -USR1 28051
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28051 killed at Tue May  2 15:17:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28107 >/dev/null 2>/dev/null
selfserv_9122 with PID 28107 found at Tue May  2 15:17:19 UTC 2017
selfserv_9122 with PID 28107 started at Tue May  2 15:17:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28107 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28107
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28107 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28163 >/dev/null 2>/dev/null
selfserv_9122 with PID 28163 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28163 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #952: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28163 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28163
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28163 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28231 >/dev/null 2>/dev/null
selfserv_9122 with PID 28231 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28231 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #953: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28231 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28231
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28231 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28287 >/dev/null 2>/dev/null
selfserv_9122 with PID 28287 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28287 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #954: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28287 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28287
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28287 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28343 >/dev/null 2>/dev/null
selfserv_9122 with PID 28343 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28343 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #955: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28343 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28343 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28411 >/dev/null 2>/dev/null
selfserv_9122 with PID 28411 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28411 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #956: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28411 at Tue May  2 15:17:20 UTC 2017
kill -USR1 28411
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28411 killed at Tue May  2 15:17:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28467 >/dev/null 2>/dev/null
selfserv_9122 with PID 28467 found at Tue May  2 15:17:20 UTC 2017
selfserv_9122 with PID 28467 started at Tue May  2 15:17:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #957: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28467 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28467
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28467 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28523 >/dev/null 2>/dev/null
selfserv_9122 with PID 28523 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28523 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #958: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28523 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28523
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28523 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28591 >/dev/null 2>/dev/null
selfserv_9122 with PID 28591 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28591 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #959: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28591 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28591
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28591 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28647 >/dev/null 2>/dev/null
selfserv_9122 with PID 28647 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28647 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #960: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28647 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28647 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28703 >/dev/null 2>/dev/null
selfserv_9122 with PID 28703 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28703 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #961: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28703 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28703
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28703 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28771 >/dev/null 2>/dev/null
selfserv_9122 with PID 28771 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28771 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28771 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28771
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28771 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28827 >/dev/null 2>/dev/null
selfserv_9122 with PID 28827 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28827 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28827 at Tue May  2 15:17:21 UTC 2017
kill -USR1 28827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28827 killed at Tue May  2 15:17:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28883 >/dev/null 2>/dev/null
selfserv_9122 with PID 28883 found at Tue May  2 15:17:21 UTC 2017
selfserv_9122 with PID 28883 started at Tue May  2 15:17:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28883 at Tue May  2 15:17:22 UTC 2017
kill -USR1 28883
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28883 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28951 >/dev/null 2>/dev/null
selfserv_9122 with PID 28951 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 28951 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #965: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28951 at Tue May  2 15:17:22 UTC 2017
kill -USR1 28951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28951 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29010 >/dev/null 2>/dev/null
selfserv_9122 with PID 29010 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 29010 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #966: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29010 at Tue May  2 15:17:22 UTC 2017
kill -USR1 29010
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29010 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29066 >/dev/null 2>/dev/null
selfserv_9122 with PID 29066 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 29066 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #967: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29066 at Tue May  2 15:17:22 UTC 2017
kill -USR1 29066
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29066 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29134 >/dev/null 2>/dev/null
selfserv_9122 with PID 29134 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 29134 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #968: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29134 at Tue May  2 15:17:22 UTC 2017
kill -USR1 29134
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29134 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29190 >/dev/null 2>/dev/null
selfserv_9122 with PID 29190 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 29190 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29190 at Tue May  2 15:17:22 UTC 2017
kill -USR1 29190
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29190 killed at Tue May  2 15:17:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29246 >/dev/null 2>/dev/null
selfserv_9122 with PID 29246 found at Tue May  2 15:17:22 UTC 2017
selfserv_9122 with PID 29246 started at Tue May  2 15:17:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #970: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29246 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29246
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29246 killed at Tue May  2 15:17:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29314 >/dev/null 2>/dev/null
selfserv_9122 with PID 29314 found at Tue May  2 15:17:23 UTC 2017
selfserv_9122 with PID 29314 started at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #971: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29314 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29314
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29314 killed at Tue May  2 15:17:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29370 >/dev/null 2>/dev/null
selfserv_9122 with PID 29370 found at Tue May  2 15:17:23 UTC 2017
selfserv_9122 with PID 29370 started at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29370 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29370
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29370 killed at Tue May  2 15:17:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29426 >/dev/null 2>/dev/null
selfserv_9122 with PID 29426 found at Tue May  2 15:17:23 UTC 2017
selfserv_9122 with PID 29426 started at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #973: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29426 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29426 killed at Tue May  2 15:17:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29494 >/dev/null 2>/dev/null
selfserv_9122 with PID 29494 found at Tue May  2 15:17:23 UTC 2017
selfserv_9122 with PID 29494 started at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #974: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29494 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29494
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29494 killed at Tue May  2 15:17:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29550 >/dev/null 2>/dev/null
selfserv_9122 with PID 29550 found at Tue May  2 15:17:23 UTC 2017
selfserv_9122 with PID 29550 started at Tue May  2 15:17:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #975: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29550 at Tue May  2 15:17:23 UTC 2017
kill -USR1 29550
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29550 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29606 >/dev/null 2>/dev/null
selfserv_9122 with PID 29606 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29606 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #976: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29606 at Tue May  2 15:17:24 UTC 2017
kill -USR1 29606
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29606 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29674 >/dev/null 2>/dev/null
selfserv_9122 with PID 29674 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29674 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29674 at Tue May  2 15:17:24 UTC 2017
kill -USR1 29674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29674 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29730 >/dev/null 2>/dev/null
selfserv_9122 with PID 29730 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29730 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29730 at Tue May  2 15:17:24 UTC 2017
kill -USR1 29730
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29730 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29786 >/dev/null 2>/dev/null
selfserv_9122 with PID 29786 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29786 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29786 at Tue May  2 15:17:24 UTC 2017
kill -USR1 29786
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29786 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29854 >/dev/null 2>/dev/null
selfserv_9122 with PID 29854 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29854 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29854 at Tue May  2 15:17:24 UTC 2017
kill -USR1 29854
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29854 killed at Tue May  2 15:17:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29910 >/dev/null 2>/dev/null
selfserv_9122 with PID 29910 found at Tue May  2 15:17:24 UTC 2017
selfserv_9122 with PID 29910 started at Tue May  2 15:17:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29910 at Tue May  2 15:17:25 UTC 2017
kill -USR1 29910
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29910 killed at Tue May  2 15:17:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29966 >/dev/null 2>/dev/null
selfserv_9122 with PID 29966 found at Tue May  2 15:17:25 UTC 2017
selfserv_9122 with PID 29966 started at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29966 at Tue May  2 15:17:25 UTC 2017
kill -USR1 29966
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29966 killed at Tue May  2 15:17:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30034 >/dev/null 2>/dev/null
selfserv_9122 with PID 30034 found at Tue May  2 15:17:25 UTC 2017
selfserv_9122 with PID 30034 started at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30034 at Tue May  2 15:17:25 UTC 2017
kill -USR1 30034
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30034 killed at Tue May  2 15:17:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30090 >/dev/null 2>/dev/null
selfserv_9122 with PID 30090 found at Tue May  2 15:17:25 UTC 2017
selfserv_9122 with PID 30090 started at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30090 at Tue May  2 15:17:25 UTC 2017
kill -USR1 30090
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30090 killed at Tue May  2 15:17:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30146 >/dev/null 2>/dev/null
selfserv_9122 with PID 30146 found at Tue May  2 15:17:25 UTC 2017
selfserv_9122 with PID 30146 started at Tue May  2 15:17:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30146 at Tue May  2 15:17:26 UTC 2017
kill -USR1 30146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30146 killed at Tue May  2 15:17:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30214 >/dev/null 2>/dev/null
selfserv_9122 with PID 30214 found at Tue May  2 15:17:26 UTC 2017
selfserv_9122 with PID 30214 started at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30214 at Tue May  2 15:17:26 UTC 2017
kill -USR1 30214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30214 killed at Tue May  2 15:17:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30270 >/dev/null 2>/dev/null
selfserv_9122 with PID 30270 found at Tue May  2 15:17:26 UTC 2017
selfserv_9122 with PID 30270 started at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30270 at Tue May  2 15:17:26 UTC 2017
kill -USR1 30270
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30270 killed at Tue May  2 15:17:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30326 >/dev/null 2>/dev/null
selfserv_9122 with PID 30326 found at Tue May  2 15:17:26 UTC 2017
selfserv_9122 with PID 30326 started at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30326 at Tue May  2 15:17:26 UTC 2017
kill -USR1 30326
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30326 killed at Tue May  2 15:17:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30394 >/dev/null 2>/dev/null
selfserv_9122 with PID 30394 found at Tue May  2 15:17:26 UTC 2017
selfserv_9122 with PID 30394 started at Tue May  2 15:17:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #989: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30394 at Tue May  2 15:17:27 UTC 2017
kill -USR1 30394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30394 killed at Tue May  2 15:17:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30450 >/dev/null 2>/dev/null
selfserv_9122 with PID 30450 found at Tue May  2 15:17:27 UTC 2017
selfserv_9122 with PID 30450 started at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #990: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30450 at Tue May  2 15:17:27 UTC 2017
kill -USR1 30450
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30450 killed at Tue May  2 15:17:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30506 >/dev/null 2>/dev/null
selfserv_9122 with PID 30506 found at Tue May  2 15:17:27 UTC 2017
selfserv_9122 with PID 30506 started at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #991: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30506 at Tue May  2 15:17:27 UTC 2017
kill -USR1 30506
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30506 killed at Tue May  2 15:17:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30574 >/dev/null 2>/dev/null
selfserv_9122 with PID 30574 found at Tue May  2 15:17:27 UTC 2017
selfserv_9122 with PID 30574 started at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30574 at Tue May  2 15:17:27 UTC 2017
kill -USR1 30574
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30574 killed at Tue May  2 15:17:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30630 >/dev/null 2>/dev/null
selfserv_9122 with PID 30630 found at Tue May  2 15:17:27 UTC 2017
selfserv_9122 with PID 30630 started at Tue May  2 15:17:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30630 at Tue May  2 15:17:28 UTC 2017
kill -USR1 30630
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30630 killed at Tue May  2 15:17:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30686 >/dev/null 2>/dev/null
selfserv_9122 with PID 30686 found at Tue May  2 15:17:28 UTC 2017
selfserv_9122 with PID 30686 started at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30686 at Tue May  2 15:17:28 UTC 2017
kill -USR1 30686
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30686 killed at Tue May  2 15:17:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30754 >/dev/null 2>/dev/null
selfserv_9122 with PID 30754 found at Tue May  2 15:17:28 UTC 2017
selfserv_9122 with PID 30754 started at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #995: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30754 at Tue May  2 15:17:28 UTC 2017
kill -USR1 30754
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30754 killed at Tue May  2 15:17:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30810 >/dev/null 2>/dev/null
selfserv_9122 with PID 30810 found at Tue May  2 15:17:28 UTC 2017
selfserv_9122 with PID 30810 started at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #996: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30810 at Tue May  2 15:17:28 UTC 2017
kill -USR1 30810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30810 killed at Tue May  2 15:17:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30866 >/dev/null 2>/dev/null
selfserv_9122 with PID 30866 found at Tue May  2 15:17:28 UTC 2017
selfserv_9122 with PID 30866 started at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #997: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30866 at Tue May  2 15:17:28 UTC 2017
kill -USR1 30866
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30866 killed at Tue May  2 15:17:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30934 >/dev/null 2>/dev/null
selfserv_9122 with PID 30934 found at Tue May  2 15:17:28 UTC 2017
selfserv_9122 with PID 30934 started at Tue May  2 15:17:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30934 at Tue May  2 15:17:29 UTC 2017
kill -USR1 30934
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30934 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30990 >/dev/null 2>/dev/null
selfserv_9122 with PID 30990 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 30990 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30990 at Tue May  2 15:17:29 UTC 2017
kill -USR1 30990
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30990 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31046 >/dev/null 2>/dev/null
selfserv_9122 with PID 31046 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 31046 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31046 at Tue May  2 15:17:29 UTC 2017
kill -USR1 31046
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31046 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31114 >/dev/null 2>/dev/null
selfserv_9122 with PID 31114 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 31114 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1001: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31114 at Tue May  2 15:17:29 UTC 2017
kill -USR1 31114
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31114 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31171 >/dev/null 2>/dev/null
selfserv_9122 with PID 31171 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 31171 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1002: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31171 at Tue May  2 15:17:29 UTC 2017
kill -USR1 31171
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31171 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31227 >/dev/null 2>/dev/null
selfserv_9122 with PID 31227 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 31227 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1003: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31227 at Tue May  2 15:17:29 UTC 2017
kill -USR1 31227
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31227 killed at Tue May  2 15:17:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31295 >/dev/null 2>/dev/null
selfserv_9122 with PID 31295 found at Tue May  2 15:17:29 UTC 2017
selfserv_9122 with PID 31295 started at Tue May  2 15:17:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1004: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31295 at Tue May  2 15:17:30 UTC 2017
kill -USR1 31295
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31295 killed at Tue May  2 15:17:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31351 >/dev/null 2>/dev/null
selfserv_9122 with PID 31351 found at Tue May  2 15:17:30 UTC 2017
selfserv_9122 with PID 31351 started at Tue May  2 15:17:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31351 at Tue May  2 15:17:30 UTC 2017
kill -USR1 31351
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31351 killed at Tue May  2 15:17:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31407 >/dev/null 2>/dev/null
selfserv_9122 with PID 31407 found at Tue May  2 15:17:30 UTC 2017
selfserv_9122 with PID 31407 started at Tue May  2 15:17:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1006: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31407 at Tue May  2 15:17:30 UTC 2017
kill -USR1 31407
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31407 killed at Tue May  2 15:17:30 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9122 starting at Tue May  2 15:17:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
selfserv_9122 with PID 31470 started at Tue May  2 15:17:30 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1007: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1008: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1009: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1010: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:30 UTC 2017
ssl.sh: #1011: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1012: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1013: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1014: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1015: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1016: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1017: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1018: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1019: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1020: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:31 UTC 2017
ssl.sh: #1021: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1022: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1023: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1024: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1025: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1026: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1027: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1028: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1029: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1030: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1031: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1032: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:32 UTC 2017
ssl.sh: #1033: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1034: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1035: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1036: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1037: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1038: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1039: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1040: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1041: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1042: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1043: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1044: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:33 UTC 2017
ssl.sh: #1045: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1046: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31470 >/dev/null 2>/dev/null
selfserv_9122 with PID 31470 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1047: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 31470 at Tue May  2 15:17:34 UTC 2017
kill -USR1 31470
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31470 killed at Tue May  2 15:17:34 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
selfserv_9122 with PID 431 started at Tue May  2 15:17:34 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1048: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1049: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1050: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1051: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1052: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1053: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1054: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1055: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1056: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:34 UTC 2017
ssl.sh: #1057: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1058: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1059: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1060: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1061: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1062: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1063: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1064: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1065: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1066: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1067: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1068: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1069: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:35 UTC 2017
ssl.sh: #1070: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1071: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1072: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1073: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1074: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1075: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1076: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1077: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1078: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1079: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1080: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1081: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1082: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1083: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1084: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:36 UTC 2017
ssl.sh: #1085: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1086: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1087: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 431 >/dev/null 2>/dev/null
selfserv_9122 with PID 431 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1088: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 431 at Tue May  2 15:17:37 UTC 2017
kill -USR1 431
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 431 killed at Tue May  2 15:17:37 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
selfserv_9122 with PID 1941 started at Tue May  2 15:17:37 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1089: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1090: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1091: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1092: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1093: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1094: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:37 UTC 2017
ssl.sh: #1095: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1096: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1097: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1098: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1099: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1100: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1101: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1102: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1103: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:38 UTC 2017
ssl.sh: #1104: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1105: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1106: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1107: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1108: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1109: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1110: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1111: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1112: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1113: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1114: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:39 UTC 2017
ssl.sh: #1115: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1116: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1117: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1118: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1119: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1120: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1121: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1122: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1123: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1124: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:40 UTC 2017
ssl.sh: #1125: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1126: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1127: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1128: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9122 with PID 1941 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1129: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1941 at Tue May  2 15:17:41 UTC 2017
kill -USR1 1941
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1941 killed at Tue May  2 15:17:41 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:41 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
selfserv_9122 with PID 3363 started at Tue May  2 15:17:41 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1133: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:41 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1143: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1147: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:42 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1157: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:43 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1161: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1162: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1163: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1164: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1165: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1166: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1167: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1168: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1169: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3363 >/dev/null 2>/dev/null
selfserv_9122 with PID 3363 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1170: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 3363 at Tue May  2 15:17:44 UTC 2017
kill -USR1 3363
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3363 killed at Tue May  2 15:17:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4788 >/dev/null 2>/dev/null
selfserv_9122 with PID 4788 found at Tue May  2 15:17:44 UTC 2017
selfserv_9122 with PID 4788 started at Tue May  2 15:17:44 UTC 2017
trying to kill selfserv_9122 with PID 4788 at Tue May  2 15:17:44 UTC 2017
kill -USR1 4788
./ssl.sh: line 183:  4788 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4788 killed at Tue May  2 15:17:44 UTC 2017
selfserv_9122 starting at Tue May  2 15:17:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:44 UTC 2017
selfserv_9122 with PID 4830 started at Tue May  2 15:17:44 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:44 UTC 2017
ssl.sh: #1171: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1172: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1173: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1174: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1175: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1176: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1177: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1178: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1179: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:45 UTC 2017
ssl.sh: #1180: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1181: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1182: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1183: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1184: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1185: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1186: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1187: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:46 UTC 2017
ssl.sh: #1188: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1189: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1190: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1191: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1192: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:47 UTC 2017
ssl.sh: #1197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1198: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:48 UTC 2017
ssl.sh: #1205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1206: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4830 >/dev/null 2>/dev/null
selfserv_9122 with PID 4830 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4830 at Tue May  2 15:17:49 UTC 2017
kill -USR1 4830
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4830 killed at Tue May  2 15:17:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:49 UTC 2017
selfserv_9122 with PID 6252 started at Tue May  2 15:17:49 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1212: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:49 UTC 2017
ssl.sh: #1213: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1214: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1215: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1216: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1217: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1218: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1219: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:50 UTC 2017
ssl.sh: #1220: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1221: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1222: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1223: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1224: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1225: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1226: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1227: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:51 UTC 2017
ssl.sh: #1228: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1229: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1230: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1231: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1232: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1233: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:52 UTC 2017
ssl.sh: #1236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1239: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:53 UTC 2017
ssl.sh: #1244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1247: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:54 UTC 2017
ssl.sh: #1251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 6252 at Tue May  2 15:17:55 UTC 2017
kill -USR1 6252
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6252 killed at Tue May  2 15:17:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
selfserv_9122 with PID 7677 started at Tue May  2 15:17:55 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1253: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1254: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1255: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1256: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1257: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1258: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1259: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1260: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:55 UTC 2017
ssl.sh: #1261: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1262: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1263: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1264: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1265: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1266: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1267: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1268: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1269: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1270: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1271: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:56 UTC 2017
ssl.sh: #1272: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1273: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1274: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1280: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:57 UTC 2017
ssl.sh: #1283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1288: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7677 >/dev/null 2>/dev/null
selfserv_9122 with PID 7677 found at Tue May  2 15:17:58 UTC 2017
ssl.sh: #1293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7677 at Tue May  2 15:17:58 UTC 2017
kill -USR1 7677
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7677 killed at Tue May  2 15:17:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:17:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:17:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:58 UTC 2017
selfserv_9122 with PID 9100 started at Tue May  2 15:17:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1294: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1295: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1296: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1297: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1298: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1299: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1300: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1301: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:17:59 UTC 2017
ssl.sh: #1302: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1303: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1304: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1305: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1306: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1307: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1308: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1309: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1310: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:00 UTC 2017
ssl.sh: #1311: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1312: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1313: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1314: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1315: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:01 UTC 2017
ssl.sh: #1319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1321: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:02 UTC 2017
ssl.sh: #1327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1329: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9100 >/dev/null 2>/dev/null
selfserv_9122 with PID 9100 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 9100 at Tue May  2 15:18:03 UTC 2017
kill -USR1 9100
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9100 killed at Tue May  2 15:18:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:03 UTC 2017
selfserv_9122 with PID 10525 started at Tue May  2 15:18:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:03 UTC 2017
ssl.sh: #1335: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1336: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1337: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1338: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1339: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1340: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:04 UTC 2017
ssl.sh: #1341: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1342: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1343: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1344: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1345: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1346: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:05 UTC 2017
ssl.sh: #1347: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1348: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1349: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1350: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1351: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1352: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1353: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:06 UTC 2017
ssl.sh: #1354: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1355: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1356: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:07 UTC 2017
ssl.sh: #1360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1362: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:08 UTC 2017
ssl.sh: #1367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1370: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:09 UTC 2017
ssl.sh: #1373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10525 >/dev/null 2>/dev/null
selfserv_9122 with PID 10525 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10525 at Tue May  2 15:18:10 UTC 2017
kill -USR1 10525
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10525 killed at Tue May  2 15:18:10 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
selfserv_9122 with PID 11947 started at Tue May  2 15:18:10 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1376: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1377: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1378: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1379: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1380: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1381: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:10 UTC 2017
ssl.sh: #1382: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1383: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1384: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1385: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1386: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1387: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1388: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1389: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1390: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:11 UTC 2017
ssl.sh: #1391: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1392: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1393: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1394: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1395: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1396: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1397: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:12 UTC 2017
ssl.sh: #1402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1403: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1411: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:13 UTC 2017
ssl.sh: #1412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11947 >/dev/null 2>/dev/null
selfserv_9122 with PID 11947 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11947 at Tue May  2 15:18:14 UTC 2017
kill -USR1 11947
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11947 killed at Tue May  2 15:18:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13376 >/dev/null 2>/dev/null
selfserv_9122 with PID 13376 found at Tue May  2 15:18:14 UTC 2017
selfserv_9122 with PID 13376 started at Tue May  2 15:18:14 UTC 2017
trying to kill selfserv_9122 with PID 13376 at Tue May  2 15:18:14 UTC 2017
kill -USR1 13376
./ssl.sh: line 183: 13376 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13376 killed at Tue May  2 15:18:14 UTC 2017
selfserv_9122 starting at Tue May  2 15:18:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
selfserv_9122 with PID 13418 started at Tue May  2 15:18:14 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1417: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1418: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1419: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1420: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:14 UTC 2017
ssl.sh: #1421: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1422: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1423: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1424: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1425: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1426: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1427: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1428: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:15 UTC 2017
ssl.sh: #1429: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1430: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1431: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1432: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1433: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1434: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1435: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1436: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1437: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1438: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:16 UTC 2017
ssl.sh: #1439: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1440: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1441: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1442: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1443: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1444: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1445: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1446: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1447: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:17 UTC 2017
ssl.sh: #1448: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1449: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1450: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1451: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1452: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1453: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1454: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1455: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:18 UTC 2017
ssl.sh: #1456: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13418 >/dev/null 2>/dev/null
selfserv_9122 with PID 13418 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1457: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13418 at Tue May  2 15:18:19 UTC 2017
kill -USR1 13418
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13418 killed at Tue May  2 15:18:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
selfserv_9122 with PID 14840 started at Tue May  2 15:18:19 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1458: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1459: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1460: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1461: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1462: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1463: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:19 UTC 2017
ssl.sh: #1464: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1465: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1466: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1467: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1468: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1469: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:20 UTC 2017
ssl.sh: #1470: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1471: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1472: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1473: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1474: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1475: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1476: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1477: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:21 UTC 2017
ssl.sh: #1478: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1479: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
ssl.sh: #1484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1485: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:23 UTC 2017
ssl.sh: #1493: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14840 >/dev/null 2>/dev/null
selfserv_9122 with PID 14840 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 14840 at Tue May  2 15:18:24 UTC 2017
kill -USR1 14840
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14840 killed at Tue May  2 15:18:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:24 UTC 2017
selfserv_9122 with PID 16263 started at Tue May  2 15:18:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1499: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:24 UTC 2017
ssl.sh: #1500: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1501: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1502: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1503: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1504: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1505: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1506: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1507: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1508: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1509: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1510: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:25 UTC 2017
ssl.sh: #1511: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1512: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1513: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1514: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1515: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1516: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1517: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1518: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1519: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1520: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:26 UTC 2017
ssl.sh: #1522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1526: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:27 UTC 2017
ssl.sh: #1534: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16263 >/dev/null 2>/dev/null
selfserv_9122 with PID 16263 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16263 at Tue May  2 15:18:28 UTC 2017
kill -USR1 16263
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16263 killed at Tue May  2 15:18:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:28 UTC 2017
selfserv_9122 with PID 17686 started at Tue May  2 15:18:28 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1540: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1541: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1542: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:28 UTC 2017
ssl.sh: #1543: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1544: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1545: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1546: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1547: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1548: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1549: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1550: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:29 UTC 2017
ssl.sh: #1551: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1552: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1553: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1554: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1555: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1556: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1557: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1558: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:30 UTC 2017
ssl.sh: #1559: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1560: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1561: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
ssl.sh: #1566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1567: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:32 UTC 2017
ssl.sh: #1575: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17686 >/dev/null 2>/dev/null
selfserv_9122 with PID 17686 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17686 at Tue May  2 15:18:33 UTC 2017
kill -USR1 17686
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17686 killed at Tue May  2 15:18:33 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:33 UTC 2017
selfserv_9122 with PID 19113 started at Tue May  2 15:18:33 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1581: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1582: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:33 UTC 2017
ssl.sh: #1583: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1584: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1585: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1586: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1587: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1588: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:34 UTC 2017
ssl.sh: #1589: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1590: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1591: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1592: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1593: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1594: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:35 UTC 2017
ssl.sh: #1595: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1596: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1597: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1598: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1599: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1600: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1601: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:36 UTC 2017
ssl.sh: #1602: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1608: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:37 UTC 2017
ssl.sh: #1609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:38 UTC 2017
ssl.sh: #1615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1616: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19113 >/dev/null 2>/dev/null
selfserv_9122 with PID 19113 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 19113 at Tue May  2 15:18:39 UTC 2017
kill -USR1 19113
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 19113 killed at Tue May  2 15:18:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:39 UTC 2017
selfserv_9122 with PID 20535 started at Tue May  2 15:18:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1622: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:39 UTC 2017
ssl.sh: #1623: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1624: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1625: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1626: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1627: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1628: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1629: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1630: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1631: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:40 UTC 2017
ssl.sh: #1632: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1633: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1634: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1635: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1636: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1637: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1638: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1639: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1640: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:41 UTC 2017
ssl.sh: #1641: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1642: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1643: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1649: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:42 UTC 2017
ssl.sh: #1650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1657: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:43 UTC 2017
ssl.sh: #1661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20535 >/dev/null 2>/dev/null
selfserv_9122 with PID 20535 found at Tue May  2 15:18:44 UTC 2017
ssl.sh: #1662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 20535 at Tue May  2 15:18:44 UTC 2017
kill -USR1 20535
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 20535 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21959 >/dev/null 2>/dev/null
selfserv_9122 with PID 21959 found at Tue May  2 15:18:44 UTC 2017
selfserv_9122 with PID 21959 started at Tue May  2 15:18:44 UTC 2017
trying to kill selfserv_9122 with PID 21959 at Tue May  2 15:18:44 UTC 2017
kill -USR1 21959
./ssl.sh: line 183: 21959 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 21959 killed at Tue May  2 15:18:44 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1663:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #1664:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1665:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1666:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1667:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1668:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9122 starting at Tue May  2 15:18:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22070 >/dev/null 2>/dev/null
selfserv_9122 with PID 22070 found at Tue May  2 15:18:44 UTC 2017
selfserv_9122 with PID 22070 started at Tue May  2 15:18:44 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1669: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1670: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1671: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1672: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1673: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1674: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1675: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1676: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1677: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1678: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1679: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1680: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1681: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1682: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1683: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1684: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1685: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1686: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1687: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1688: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1689: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1690: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1691: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1692: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1693: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1694: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1695: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1696: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1697: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1698: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1699: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1700: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1701: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1702: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1703: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1704: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1705: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1706: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1707: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1708: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1709: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1710: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1711: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1712: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1713: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1714: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1715: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1716: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1717: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1718: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1719: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1720: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1721: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1722: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1723: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1724: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1725: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1726: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1727: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1728: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1729: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1730: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1731: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1732: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1733: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1734: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1735: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1736: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1737: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1738: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1739: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1740: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 22070 at Tue May  2 15:18:49 UTC 2017
kill -USR1 22070
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22070 killed at Tue May  2 15:18:49 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24337 >/dev/null 2>/dev/null
selfserv_9122 with PID 24337 found at Tue May  2 15:18:49 UTC 2017
selfserv_9122 with PID 24337 started at Tue May  2 15:18:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24337 at Tue May  2 15:18:49 UTC 2017
kill -USR1 24337
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24337 killed at Tue May  2 15:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24394 >/dev/null 2>/dev/null
selfserv_9122 with PID 24394 found at Tue May  2 15:18:49 UTC 2017
selfserv_9122 with PID 24394 started at Tue May  2 15:18:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24394 at Tue May  2 15:18:49 UTC 2017
kill -USR1 24394
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24394 killed at Tue May  2 15:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24451 >/dev/null 2>/dev/null
selfserv_9122 with PID 24451 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24451 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24451 at Tue May  2 15:18:50 UTC 2017
kill -USR1 24451
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24451 killed at Tue May  2 15:18:50 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24508 >/dev/null 2>/dev/null
selfserv_9122 with PID 24508 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24508 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1793: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24508 at Tue May  2 15:18:50 UTC 2017
kill -USR1 24508
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24508 killed at Tue May  2 15:18:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24565 >/dev/null 2>/dev/null
selfserv_9122 with PID 24565 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24565 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1794: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24565 at Tue May  2 15:18:50 UTC 2017
kill -USR1 24565
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24565 killed at Tue May  2 15:18:50 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24622 >/dev/null 2>/dev/null
selfserv_9122 with PID 24622 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24622 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24622 at Tue May  2 15:18:50 UTC 2017
kill -USR1 24622
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24622 killed at Tue May  2 15:18:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24679 >/dev/null 2>/dev/null
selfserv_9122 with PID 24679 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24679 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24679 at Tue May  2 15:18:50 UTC 2017
kill -USR1 24679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24679 killed at Tue May  2 15:18:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24736 >/dev/null 2>/dev/null
selfserv_9122 with PID 24736 found at Tue May  2 15:18:50 UTC 2017
selfserv_9122 with PID 24736 started at Tue May  2 15:18:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24736 at Tue May  2 15:18:51 UTC 2017
kill -USR1 24736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24736 killed at Tue May  2 15:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24793 >/dev/null 2>/dev/null
selfserv_9122 with PID 24793 found at Tue May  2 15:18:51 UTC 2017
selfserv_9122 with PID 24793 started at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24793 at Tue May  2 15:18:51 UTC 2017
kill -USR1 24793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24793 killed at Tue May  2 15:18:51 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24850 >/dev/null 2>/dev/null
selfserv_9122 with PID 24850 found at Tue May  2 15:18:51 UTC 2017
selfserv_9122 with PID 24850 started at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1799: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24850 at Tue May  2 15:18:51 UTC 2017
kill -USR1 24850
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24850 killed at Tue May  2 15:18:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24907 >/dev/null 2>/dev/null
selfserv_9122 with PID 24907 found at Tue May  2 15:18:51 UTC 2017
selfserv_9122 with PID 24907 started at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1800: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24907 at Tue May  2 15:18:51 UTC 2017
kill -USR1 24907
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24907 killed at Tue May  2 15:18:51 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24964 >/dev/null 2>/dev/null
selfserv_9122 with PID 24964 found at Tue May  2 15:18:51 UTC 2017
selfserv_9122 with PID 24964 started at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 24964 at Tue May  2 15:18:51 UTC 2017
kill -USR1 24964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24964 killed at Tue May  2 15:18:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25021 >/dev/null 2>/dev/null
selfserv_9122 with PID 25021 found at Tue May  2 15:18:51 UTC 2017
selfserv_9122 with PID 25021 started at Tue May  2 15:18:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25021 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25021
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25021 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25078 >/dev/null 2>/dev/null
selfserv_9122 with PID 25078 found at Tue May  2 15:18:52 UTC 2017
selfserv_9122 with PID 25078 started at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25078 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25078
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25078 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25135 >/dev/null 2>/dev/null
selfserv_9122 with PID 25135 found at Tue May  2 15:18:52 UTC 2017
selfserv_9122 with PID 25135 started at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25135 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25135
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25135 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25192 >/dev/null 2>/dev/null
selfserv_9122 with PID 25192 found at Tue May  2 15:18:52 UTC 2017
selfserv_9122 with PID 25192 started at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1805: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25192 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25192
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25192 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25249 >/dev/null 2>/dev/null
selfserv_9122 with PID 25249 found at Tue May  2 15:18:52 UTC 2017
selfserv_9122 with PID 25249 started at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1806: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25249 at Tue May  2 15:18:52 UTC 2017
kill -USR1 25249
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25249 killed at Tue May  2 15:18:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25306 >/dev/null 2>/dev/null
selfserv_9122 with PID 25306 found at Tue May  2 15:18:52 UTC 2017
selfserv_9122 with PID 25306 started at Tue May  2 15:18:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25306 at Tue May  2 15:18:53 UTC 2017
kill -USR1 25306
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25306 killed at Tue May  2 15:18:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25363 >/dev/null 2>/dev/null
selfserv_9122 with PID 25363 found at Tue May  2 15:18:53 UTC 2017
selfserv_9122 with PID 25363 started at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25363 at Tue May  2 15:18:53 UTC 2017
kill -USR1 25363
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25363 killed at Tue May  2 15:18:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25420 >/dev/null 2>/dev/null
selfserv_9122 with PID 25420 found at Tue May  2 15:18:53 UTC 2017
selfserv_9122 with PID 25420 started at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25420 at Tue May  2 15:18:53 UTC 2017
kill -USR1 25420
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25420 killed at Tue May  2 15:18:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25477 >/dev/null 2>/dev/null
selfserv_9122 with PID 25477 found at Tue May  2 15:18:53 UTC 2017
selfserv_9122 with PID 25477 started at Tue May  2 15:18:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25477 at Tue May  2 15:18:54 UTC 2017
kill -USR1 25477
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25477 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25534 >/dev/null 2>/dev/null
selfserv_9122 with PID 25534 found at Tue May  2 15:18:54 UTC 2017
selfserv_9122 with PID 25534 started at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1811: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25534 at Tue May  2 15:18:54 UTC 2017
kill -USR1 25534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25534 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25591 >/dev/null 2>/dev/null
selfserv_9122 with PID 25591 found at Tue May  2 15:18:54 UTC 2017
selfserv_9122 with PID 25591 started at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1812: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25591 at Tue May  2 15:18:54 UTC 2017
kill -USR1 25591
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25591 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25648 >/dev/null 2>/dev/null
selfserv_9122 with PID 25648 found at Tue May  2 15:18:54 UTC 2017
selfserv_9122 with PID 25648 started at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25648 at Tue May  2 15:18:54 UTC 2017
kill -USR1 25648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25648 killed at Tue May  2 15:18:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25705 >/dev/null 2>/dev/null
selfserv_9122 with PID 25705 found at Tue May  2 15:18:54 UTC 2017
selfserv_9122 with PID 25705 started at Tue May  2 15:18:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25705 at Tue May  2 15:18:55 UTC 2017
kill -USR1 25705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25705 killed at Tue May  2 15:18:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25762 >/dev/null 2>/dev/null
selfserv_9122 with PID 25762 found at Tue May  2 15:18:55 UTC 2017
selfserv_9122 with PID 25762 started at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25762 at Tue May  2 15:18:55 UTC 2017
kill -USR1 25762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25762 killed at Tue May  2 15:18:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25819 >/dev/null 2>/dev/null
selfserv_9122 with PID 25819 found at Tue May  2 15:18:55 UTC 2017
selfserv_9122 with PID 25819 started at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25819 at Tue May  2 15:18:55 UTC 2017
kill -USR1 25819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25819 killed at Tue May  2 15:18:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:18:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25876 >/dev/null 2>/dev/null
selfserv_9122 with PID 25876 found at Tue May  2 15:18:55 UTC 2017
selfserv_9122 with PID 25876 started at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1817: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25876 at Tue May  2 15:18:55 UTC 2017
kill -USR1 25876
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25876 killed at Tue May  2 15:18:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25933 >/dev/null 2>/dev/null
selfserv_9122 with PID 25933 found at Tue May  2 15:18:55 UTC 2017
selfserv_9122 with PID 25933 started at Tue May  2 15:18:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1818: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25933 at Tue May  2 15:18:56 UTC 2017
kill -USR1 25933
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25933 killed at Tue May  2 15:18:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25990 >/dev/null 2>/dev/null
selfserv_9122 with PID 25990 found at Tue May  2 15:18:56 UTC 2017
selfserv_9122 with PID 25990 started at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 25990 at Tue May  2 15:18:56 UTC 2017
kill -USR1 25990
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25990 killed at Tue May  2 15:18:56 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26062 >/dev/null 2>/dev/null
selfserv_9122 with PID 26062 found at Tue May  2 15:18:56 UTC 2017
selfserv_9122 with PID 26062 started at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26062 at Tue May  2 15:18:56 UTC 2017
kill -USR1 26062
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26062 killed at Tue May  2 15:18:56 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26119 >/dev/null 2>/dev/null
selfserv_9122 with PID 26119 found at Tue May  2 15:18:56 UTC 2017
selfserv_9122 with PID 26119 started at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26119 at Tue May  2 15:18:56 UTC 2017
kill -USR1 26119
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26119 killed at Tue May  2 15:18:56 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26176 >/dev/null 2>/dev/null
selfserv_9122 with PID 26176 found at Tue May  2 15:18:56 UTC 2017
selfserv_9122 with PID 26176 started at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1822: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26176 at Tue May  2 15:18:56 UTC 2017
kill -USR1 26176
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26176 killed at Tue May  2 15:18:56 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26233 >/dev/null 2>/dev/null
selfserv_9122 with PID 26233 found at Tue May  2 15:18:56 UTC 2017
selfserv_9122 with PID 26233 started at Tue May  2 15:18:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26233 at Tue May  2 15:18:57 UTC 2017
kill -USR1 26233
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26233 killed at Tue May  2 15:18:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26290 >/dev/null 2>/dev/null
selfserv_9122 with PID 26290 found at Tue May  2 15:18:57 UTC 2017
selfserv_9122 with PID 26290 started at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26290 at Tue May  2 15:18:57 UTC 2017
kill -USR1 26290
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26290 killed at Tue May  2 15:18:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26347 >/dev/null 2>/dev/null
selfserv_9122 with PID 26347 found at Tue May  2 15:18:57 UTC 2017
selfserv_9122 with PID 26347 started at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26347 at Tue May  2 15:18:57 UTC 2017
kill -USR1 26347
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26347 killed at Tue May  2 15:18:57 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26404 >/dev/null 2>/dev/null
selfserv_9122 with PID 26404 found at Tue May  2 15:18:57 UTC 2017
selfserv_9122 with PID 26404 started at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1826: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26404 at Tue May  2 15:18:57 UTC 2017
kill -USR1 26404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26404 killed at Tue May  2 15:18:57 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26461 >/dev/null 2>/dev/null
selfserv_9122 with PID 26461 found at Tue May  2 15:18:57 UTC 2017
selfserv_9122 with PID 26461 started at Tue May  2 15:18:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26461 at Tue May  2 15:18:58 UTC 2017
kill -USR1 26461
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26461 killed at Tue May  2 15:18:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26518 >/dev/null 2>/dev/null
selfserv_9122 with PID 26518 found at Tue May  2 15:18:58 UTC 2017
selfserv_9122 with PID 26518 started at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26518 at Tue May  2 15:18:58 UTC 2017
kill -USR1 26518
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26518 killed at Tue May  2 15:18:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26575 >/dev/null 2>/dev/null
selfserv_9122 with PID 26575 found at Tue May  2 15:18:58 UTC 2017
selfserv_9122 with PID 26575 started at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26575 at Tue May  2 15:18:58 UTC 2017
kill -USR1 26575
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26575 killed at Tue May  2 15:18:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26632 >/dev/null 2>/dev/null
selfserv_9122 with PID 26632 found at Tue May  2 15:18:58 UTC 2017
selfserv_9122 with PID 26632 started at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1830: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26632 at Tue May  2 15:18:58 UTC 2017
kill -USR1 26632
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26632 killed at Tue May  2 15:18:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26689 >/dev/null 2>/dev/null
selfserv_9122 with PID 26689 found at Tue May  2 15:18:58 UTC 2017
selfserv_9122 with PID 26689 started at Tue May  2 15:18:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26689 at Tue May  2 15:18:59 UTC 2017
kill -USR1 26689
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26689 killed at Tue May  2 15:18:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26746 >/dev/null 2>/dev/null
selfserv_9122 with PID 26746 found at Tue May  2 15:18:59 UTC 2017
selfserv_9122 with PID 26746 started at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26746 at Tue May  2 15:18:59 UTC 2017
kill -USR1 26746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26746 killed at Tue May  2 15:18:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:18:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26803 >/dev/null 2>/dev/null
selfserv_9122 with PID 26803 found at Tue May  2 15:18:59 UTC 2017
selfserv_9122 with PID 26803 started at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26803 at Tue May  2 15:18:59 UTC 2017
kill -USR1 26803
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26803 killed at Tue May  2 15:18:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:18:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26860 >/dev/null 2>/dev/null
selfserv_9122 with PID 26860 found at Tue May  2 15:18:59 UTC 2017
selfserv_9122 with PID 26860 started at Tue May  2 15:18:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1834: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26860 at Tue May  2 15:19:00 UTC 2017
kill -USR1 26860
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26860 killed at Tue May  2 15:19:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:19:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26918 >/dev/null 2>/dev/null
selfserv_9122 with PID 26918 found at Tue May  2 15:19:00 UTC 2017
selfserv_9122 with PID 26918 started at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26918 at Tue May  2 15:19:00 UTC 2017
kill -USR1 26918
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26918 killed at Tue May  2 15:19:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:19:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26975 >/dev/null 2>/dev/null
selfserv_9122 with PID 26975 found at Tue May  2 15:19:00 UTC 2017
selfserv_9122 with PID 26975 started at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 26975 at Tue May  2 15:19:00 UTC 2017
kill -USR1 26975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26975 killed at Tue May  2 15:19:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:19:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27032 >/dev/null 2>/dev/null
selfserv_9122 with PID 27032 found at Tue May  2 15:19:00 UTC 2017
selfserv_9122 with PID 27032 started at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27032 at Tue May  2 15:19:00 UTC 2017
kill -USR1 27032
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27032 killed at Tue May  2 15:19:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:19:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27089 >/dev/null 2>/dev/null
selfserv_9122 with PID 27089 found at Tue May  2 15:19:00 UTC 2017
selfserv_9122 with PID 27089 started at Tue May  2 15:19:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1838: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27089 at Tue May  2 15:19:01 UTC 2017
kill -USR1 27089
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27089 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27146 >/dev/null 2>/dev/null
selfserv_9122 with PID 27146 found at Tue May  2 15:19:01 UTC 2017
selfserv_9122 with PID 27146 started at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27146 at Tue May  2 15:19:01 UTC 2017
kill -USR1 27146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27146 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27224 >/dev/null 2>/dev/null
selfserv_9122 with PID 27224 found at Tue May  2 15:19:01 UTC 2017
selfserv_9122 with PID 27224 started at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27224 at Tue May  2 15:19:01 UTC 2017
kill -USR1 27224
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27224 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9122 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27287 >/dev/null 2>/dev/null
selfserv_9122 with PID 27287 found at Tue May  2 15:19:01 UTC 2017
selfserv_9122 with PID 27287 started at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27287 at Tue May  2 15:19:01 UTC 2017
kill -USR1 27287
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27287 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9122 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27350 >/dev/null 2>/dev/null
selfserv_9122 with PID 27350 found at Tue May  2 15:19:01 UTC 2017
selfserv_9122 with PID 27350 started at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1842: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27350 at Tue May  2 15:19:01 UTC 2017
kill -USR1 27350
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27350 killed at Tue May  2 15:19:01 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:19:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27413 >/dev/null 2>/dev/null
selfserv_9122 with PID 27413 found at Tue May  2 15:19:01 UTC 2017
selfserv_9122 with PID 27413 started at Tue May  2 15:19:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27413 at Tue May  2 15:19:02 UTC 2017
kill -USR1 27413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27413 killed at Tue May  2 15:19:02 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9122 starting at Tue May  2 15:19:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27476 >/dev/null 2>/dev/null
selfserv_9122 with PID 27476 found at Tue May  2 15:19:02 UTC 2017
selfserv_9122 with PID 27476 started at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1844: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27476 at Tue May  2 15:19:02 UTC 2017
kill -USR1 27476
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27476 killed at Tue May  2 15:19:02 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:19:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27539 >/dev/null 2>/dev/null
selfserv_9122 with PID 27539 found at Tue May  2 15:19:02 UTC 2017
selfserv_9122 with PID 27539 started at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27539 at Tue May  2 15:19:02 UTC 2017
kill -USR1 27539
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27539 killed at Tue May  2 15:19:02 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9122 starting at Tue May  2 15:19:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27602 >/dev/null 2>/dev/null
selfserv_9122 with PID 27602 found at Tue May  2 15:19:02 UTC 2017
selfserv_9122 with PID 27602 started at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 27602 at Tue May  2 15:19:02 UTC 2017
kill -USR1 27602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27602 killed at Tue May  2 15:19:02 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9122 starting at Tue May  2 15:19:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27665 >/dev/null 2>/dev/null
selfserv_9122 with PID 27665 found at Tue May  2 15:19:02 UTC 2017
selfserv_9122 with PID 27665 started at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #1847: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27665 at Tue May  2 15:19:02 UTC 2017
kill -USR1 27665
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27665 killed at Tue May  2 15:19:02 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9122 starting at Tue May  2 15:19:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27728 >/dev/null 2>/dev/null
selfserv_9122 with PID 27728 found at Tue May  2 15:19:02 UTC 2017
selfserv_9122 with PID 27728 started at Tue May  2 15:19:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1848: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27728 at Tue May  2 15:19:03 UTC 2017
kill -USR1 27728
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27728 killed at Tue May  2 15:19:03 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9122 starting at Tue May  2 15:19:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27791 >/dev/null 2>/dev/null
selfserv_9122 with PID 27791 found at Tue May  2 15:19:03 UTC 2017
selfserv_9122 with PID 27791 started at Tue May  2 15:19:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1849: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27791 at Tue May  2 15:19:03 UTC 2017
kill -USR1 27791
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27791 killed at Tue May  2 15:19:03 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9122 starting at Tue May  2 15:19:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27898 >/dev/null 2>/dev/null
selfserv_9122 with PID 27898 found at Tue May  2 15:19:03 UTC 2017
selfserv_9122 with PID 27898 started at Tue May  2 15:19:03 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:03 UTC 2017
ssl.sh: #1850: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 27898 at Tue May  2 15:19:03 UTC 2017
kill -USR1 27898
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27898 killed at Tue May  2 15:19:03 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9122 starting at Tue May  2 15:19:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27969 >/dev/null 2>/dev/null
selfserv_9122 with PID 27969 found at Tue May  2 15:19:03 UTC 2017
selfserv_9122 with PID 27969 started at Tue May  2 15:19:03 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:03 UTC 2017
ssl.sh: #1851: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 27969 at Tue May  2 15:19:03 UTC 2017
kill -USR1 27969
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27969 killed at Tue May  2 15:19:03 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9122 starting at Tue May  2 15:19:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28040 >/dev/null 2>/dev/null
selfserv_9122 with PID 28040 found at Tue May  2 15:19:03 UTC 2017
selfserv_9122 with PID 28040 started at Tue May  2 15:19:03 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:04 UTC 2017
ssl.sh: #1852: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28040 at Tue May  2 15:19:04 UTC 2017
kill -USR1 28040
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28040 killed at Tue May  2 15:19:04 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9122 starting at Tue May  2 15:19:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28111 >/dev/null 2>/dev/null
selfserv_9122 with PID 28111 found at Tue May  2 15:19:04 UTC 2017
selfserv_9122 with PID 28111 started at Tue May  2 15:19:04 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:04 UTC 2017
ssl.sh: #1853: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28111 at Tue May  2 15:19:04 UTC 2017
kill -USR1 28111
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28111 killed at Tue May  2 15:19:04 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9122 starting at Tue May  2 15:19:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28182 >/dev/null 2>/dev/null
selfserv_9122 with PID 28182 found at Tue May  2 15:19:04 UTC 2017
selfserv_9122 with PID 28182 started at Tue May  2 15:19:04 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:04 UTC 2017
ssl.sh: #1854: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28182 at Tue May  2 15:19:04 UTC 2017
kill -USR1 28182
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28182 killed at Tue May  2 15:19:04 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9122 starting at Tue May  2 15:19:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28253 >/dev/null 2>/dev/null
selfserv_9122 with PID 28253 found at Tue May  2 15:19:05 UTC 2017
selfserv_9122 with PID 28253 started at Tue May  2 15:19:05 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:05 UTC 2017
ssl.sh: #1855: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28253 at Tue May  2 15:19:05 UTC 2017
kill -USR1 28253
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28253 killed at Tue May  2 15:19:05 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9122 starting at Tue May  2 15:19:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28324 >/dev/null 2>/dev/null
selfserv_9122 with PID 28324 found at Tue May  2 15:19:05 UTC 2017
selfserv_9122 with PID 28324 started at Tue May  2 15:19:05 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:05 UTC 2017
ssl.sh: #1856: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28324 at Tue May  2 15:19:05 UTC 2017
kill -USR1 28324
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28324 killed at Tue May  2 15:19:05 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9122 starting at Tue May  2 15:19:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28401 >/dev/null 2>/dev/null
selfserv_9122 with PID 28401 found at Tue May  2 15:19:05 UTC 2017
selfserv_9122 with PID 28401 started at Tue May  2 15:19:05 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:06 UTC 2017
ssl.sh: #1857: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28401 at Tue May  2 15:19:06 UTC 2017
kill -USR1 28401
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28401 killed at Tue May  2 15:19:06 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28487 >/dev/null 2>/dev/null
selfserv_9122 with PID 28487 found at Tue May  2 15:19:06 UTC 2017
selfserv_9122 with PID 28487 started at Tue May  2 15:19:06 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:06 UTC 2017
ssl.sh: #1858: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28487 at Tue May  2 15:19:06 UTC 2017
kill -USR1 28487
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28487 killed at Tue May  2 15:19:06 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28557 >/dev/null 2>/dev/null
selfserv_9122 with PID 28557 found at Tue May  2 15:19:06 UTC 2017
selfserv_9122 with PID 28557 started at Tue May  2 15:19:06 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:07 UTC 2017
ssl.sh: #1859: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28557 at Tue May  2 15:19:07 UTC 2017
kill -USR1 28557
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28557 killed at Tue May  2 15:19:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28627 >/dev/null 2>/dev/null
selfserv_9122 with PID 28627 found at Tue May  2 15:19:07 UTC 2017
selfserv_9122 with PID 28627 started at Tue May  2 15:19:07 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:07 UTC 2017
ssl.sh: #1860: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28627 at Tue May  2 15:19:07 UTC 2017
kill -USR1 28627
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28627 killed at Tue May  2 15:19:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28698 >/dev/null 2>/dev/null
selfserv_9122 with PID 28698 found at Tue May  2 15:19:07 UTC 2017
selfserv_9122 with PID 28698 started at Tue May  2 15:19:07 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:07 UTC 2017
ssl.sh: #1861: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28698 at Tue May  2 15:19:07 UTC 2017
kill -USR1 28698
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28698 killed at Tue May  2 15:19:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:19:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28769 >/dev/null 2>/dev/null
selfserv_9122 with PID 28769 found at Tue May  2 15:19:07 UTC 2017
selfserv_9122 with PID 28769 started at Tue May  2 15:19:07 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:08 UTC 2017
ssl.sh: #1862: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28769 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28769
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28769 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28840 >/dev/null 2>/dev/null
selfserv_9122 with PID 28840 found at Tue May  2 15:19:08 UTC 2017
selfserv_9122 with PID 28840 started at Tue May  2 15:19:08 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:08 UTC 2017
ssl.sh: #1863: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28840 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28840
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28840 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28911 >/dev/null 2>/dev/null
selfserv_9122 with PID 28911 found at Tue May  2 15:19:08 UTC 2017
selfserv_9122 with PID 28911 started at Tue May  2 15:19:08 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:08 UTC 2017
ssl.sh: #1864: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28911 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28911
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28911 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9122 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28990 >/dev/null 2>/dev/null
selfserv_9122 with PID 28990 found at Tue May  2 15:19:08 UTC 2017
selfserv_9122 with PID 28990 started at Tue May  2 15:19:08 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:08 UTC 2017
ssl.sh: #1865: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 28990 at Tue May  2 15:19:08 UTC 2017
kill -USR1 28990
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28990 killed at Tue May  2 15:19:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9122 starting at Tue May  2 15:19:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29068 >/dev/null 2>/dev/null
selfserv_9122 with PID 29068 found at Tue May  2 15:19:08 UTC 2017
selfserv_9122 with PID 29068 started at Tue May  2 15:19:08 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:09 UTC 2017
ssl.sh: #1866: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29068 at Tue May  2 15:19:09 UTC 2017
kill -USR1 29068
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29068 killed at Tue May  2 15:19:09 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29154 >/dev/null 2>/dev/null
selfserv_9122 with PID 29154 found at Tue May  2 15:19:09 UTC 2017
selfserv_9122 with PID 29154 started at Tue May  2 15:19:09 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:10 UTC 2017
ssl.sh: #1867: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29154 at Tue May  2 15:19:10 UTC 2017
kill -USR1 29154
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29154 killed at Tue May  2 15:19:11 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29224 >/dev/null 2>/dev/null
selfserv_9122 with PID 29224 found at Tue May  2 15:19:11 UTC 2017
selfserv_9122 with PID 29224 started at Tue May  2 15:19:11 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:12 UTC 2017
ssl.sh: #1868: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29224 at Tue May  2 15:19:12 UTC 2017
kill -USR1 29224
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29224 killed at Tue May  2 15:19:12 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29294 >/dev/null 2>/dev/null
selfserv_9122 with PID 29294 found at Tue May  2 15:19:12 UTC 2017
selfserv_9122 with PID 29294 started at Tue May  2 15:19:12 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:14 UTC 2017
ssl.sh: #1869: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29294 at Tue May  2 15:19:14 UTC 2017
kill -USR1 29294
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29294 killed at Tue May  2 15:19:14 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29364 >/dev/null 2>/dev/null
selfserv_9122 with PID 29364 found at Tue May  2 15:19:14 UTC 2017
selfserv_9122 with PID 29364 started at Tue May  2 15:19:14 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:15 UTC 2017
ssl.sh: #1870: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29364 at Tue May  2 15:19:15 UTC 2017
kill -USR1 29364
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29364 killed at Tue May  2 15:19:15 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29434 >/dev/null 2>/dev/null
selfserv_9122 with PID 29434 found at Tue May  2 15:19:15 UTC 2017
selfserv_9122 with PID 29434 started at Tue May  2 15:19:15 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:16 UTC 2017
ssl.sh: #1871: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29434 at Tue May  2 15:19:16 UTC 2017
kill -USR1 29434
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29434 killed at Tue May  2 15:19:16 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9122 starting at Tue May  2 15:19:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29504 >/dev/null 2>/dev/null
selfserv_9122 with PID 29504 found at Tue May  2 15:19:16 UTC 2017
selfserv_9122 with PID 29504 started at Tue May  2 15:19:16 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:17 UTC 2017
ssl.sh: #1872: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29504 at Tue May  2 15:19:17 UTC 2017
kill -USR1 29504
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29504 killed at Tue May  2 15:19:17 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9122 starting at Tue May  2 15:19:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29575 >/dev/null 2>/dev/null
selfserv_9122 with PID 29575 found at Tue May  2 15:19:17 UTC 2017
selfserv_9122 with PID 29575 started at Tue May  2 15:19:17 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:17 UTC 2017
ssl.sh: #1873: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29575 at Tue May  2 15:19:17 UTC 2017
kill -USR1 29575
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29575 killed at Tue May  2 15:19:17 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9122 starting at Tue May  2 15:19:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29646 >/dev/null 2>/dev/null
selfserv_9122 with PID 29646 found at Tue May  2 15:19:17 UTC 2017
selfserv_9122 with PID 29646 started at Tue May  2 15:19:17 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:17 UTC 2017
ssl.sh: #1874: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29646 at Tue May  2 15:19:17 UTC 2017
kill -USR1 29646
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29646 killed at Tue May  2 15:19:17 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9122 starting at Tue May  2 15:19:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29717 >/dev/null 2>/dev/null
selfserv_9122 with PID 29717 found at Tue May  2 15:19:17 UTC 2017
selfserv_9122 with PID 29717 started at Tue May  2 15:19:17 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:19:18 UTC 2017
ssl.sh: #1875: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29717 at Tue May  2 15:19:18 UTC 2017
kill -USR1 29717
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29717 killed at Tue May  2 15:19:18 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9122 starting at Tue May  2 15:19:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29788 >/dev/null 2>/dev/null
selfserv_9122 with PID 29788 found at Tue May  2 15:19:19 UTC 2017
selfserv_9122 with PID 29788 started at Tue May  2 15:19:19 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:19 UTC 2017
ssl.sh: #1876: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29788 at Tue May  2 15:19:19 UTC 2017
kill -USR1 29788
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29788 killed at Tue May  2 15:19:19 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29874 >/dev/null 2>/dev/null
selfserv_9122 with PID 29874 found at Tue May  2 15:19:20 UTC 2017
selfserv_9122 with PID 29874 started at Tue May  2 15:19:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:20 UTC 2017
ssl.sh: #1877: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29874 at Tue May  2 15:19:20 UTC 2017
kill -USR1 29874
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29874 killed at Tue May  2 15:19:20 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9122 starting at Tue May  2 15:19:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29944 >/dev/null 2>/dev/null
selfserv_9122 with PID 29944 found at Tue May  2 15:19:20 UTC 2017
selfserv_9122 with PID 29944 started at Tue May  2 15:19:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:21 UTC 2017
ssl.sh: #1878: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 29944 at Tue May  2 15:19:21 UTC 2017
kill -USR1 29944
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29944 killed at Tue May  2 15:19:21 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30015 >/dev/null 2>/dev/null
selfserv_9122 with PID 30015 found at Tue May  2 15:19:21 UTC 2017
selfserv_9122 with PID 30015 started at Tue May  2 15:19:21 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:21 UTC 2017
ssl.sh: #1879: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30015 at Tue May  2 15:19:21 UTC 2017
kill -USR1 30015
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30015 killed at Tue May  2 15:19:21 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30085 >/dev/null 2>/dev/null
selfserv_9122 with PID 30085 found at Tue May  2 15:19:22 UTC 2017
selfserv_9122 with PID 30085 started at Tue May  2 15:19:22 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:19:22 UTC 2017
ssl.sh: #1880: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30085 at Tue May  2 15:19:22 UTC 2017
kill -USR1 30085
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30085 killed at Tue May  2 15:19:22 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9122 starting at Tue May  2 15:19:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30155 >/dev/null 2>/dev/null
selfserv_9122 with PID 30155 found at Tue May  2 15:19:22 UTC 2017
selfserv_9122 with PID 30155 started at Tue May  2 15:19:22 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:23 UTC 2017
ssl.sh: #1881: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30155 at Tue May  2 15:19:23 UTC 2017
kill -USR1 30155
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30155 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30226 >/dev/null 2>/dev/null
selfserv_9122 with PID 30226 found at Tue May  2 15:19:23 UTC 2017
selfserv_9122 with PID 30226 started at Tue May  2 15:19:23 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:19:23 UTC 2017
ssl.sh: #1882: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30226 at Tue May  2 15:19:23 UTC 2017
kill -USR1 30226
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30226 killed at Tue May  2 15:19:23 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30312 >/dev/null 2>/dev/null
selfserv_9122 with PID 30312 found at Tue May  2 15:19:23 UTC 2017
selfserv_9122 with PID 30312 started at Tue May  2 15:19:23 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:24 UTC 2017
ssl.sh: #1883: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30312 at Tue May  2 15:19:24 UTC 2017
kill -USR1 30312
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30312 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9122 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30382 >/dev/null 2>/dev/null
selfserv_9122 with PID 30382 found at Tue May  2 15:19:24 UTC 2017
selfserv_9122 with PID 30382 started at Tue May  2 15:19:24 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:24 UTC 2017
ssl.sh: #1884: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30382 at Tue May  2 15:19:24 UTC 2017
kill -USR1 30382
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30382 killed at Tue May  2 15:19:24 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30453 >/dev/null 2>/dev/null
selfserv_9122 with PID 30453 found at Tue May  2 15:19:25 UTC 2017
selfserv_9122 with PID 30453 started at Tue May  2 15:19:25 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:26 UTC 2017
ssl.sh: #1885: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30453 at Tue May  2 15:19:26 UTC 2017
kill -USR1 30453
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30453 killed at Tue May  2 15:19:26 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30523 >/dev/null 2>/dev/null
selfserv_9122 with PID 30523 found at Tue May  2 15:19:26 UTC 2017
selfserv_9122 with PID 30523 started at Tue May  2 15:19:26 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:27 UTC 2017
ssl.sh: #1886: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30523 at Tue May  2 15:19:27 UTC 2017
kill -USR1 30523
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30523 killed at Tue May  2 15:19:27 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30603 >/dev/null 2>/dev/null
selfserv_9122 with PID 30603 found at Tue May  2 15:19:27 UTC 2017
selfserv_9122 with PID 30603 started at Tue May  2 15:19:27 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:34 UTC 2017
ssl.sh: #1887: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30603 at Tue May  2 15:19:34 UTC 2017
kill -USR1 30603
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30603 killed at Tue May  2 15:19:34 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9122 starting at Tue May  2 15:19:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30683 >/dev/null 2>/dev/null
selfserv_9122 with PID 30683 found at Tue May  2 15:19:34 UTC 2017
selfserv_9122 with PID 30683 started at Tue May  2 15:19:34 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:42 UTC 2017
ssl.sh: #1888: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30683 at Tue May  2 15:19:42 UTC 2017
kill -USR1 30683
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30683 killed at Tue May  2 15:19:42 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30753 >/dev/null 2>/dev/null
selfserv_9122 with PID 30753 found at Tue May  2 15:19:42 UTC 2017
selfserv_9122 with PID 30753 started at Tue May  2 15:19:42 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:43 UTC 2017
ssl.sh: #1889: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30753 at Tue May  2 15:19:43 UTC 2017
kill -USR1 30753
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30753 killed at Tue May  2 15:19:43 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30823 >/dev/null 2>/dev/null
selfserv_9122 with PID 30823 found at Tue May  2 15:19:43 UTC 2017
selfserv_9122 with PID 30823 started at Tue May  2 15:19:43 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:44 UTC 2017
ssl.sh: #1890: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30823 at Tue May  2 15:19:44 UTC 2017
kill -USR1 30823
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30823 killed at Tue May  2 15:19:44 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:19:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30893 >/dev/null 2>/dev/null
selfserv_9122 with PID 30893 found at Tue May  2 15:19:45 UTC 2017
selfserv_9122 with PID 30893 started at Tue May  2 15:19:45 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:45 UTC 2017
ssl.sh: #1891: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30893 at Tue May  2 15:19:45 UTC 2017
kill -USR1 30893
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30893 killed at Tue May  2 15:19:45 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30978 >/dev/null 2>/dev/null
selfserv_9122 with PID 30978 found at Tue May  2 15:19:45 UTC 2017
selfserv_9122 with PID 30978 started at Tue May  2 15:19:45 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:19:47 UTC 2017
ssl.sh: #1892: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 30978 at Tue May  2 15:19:47 UTC 2017
kill -USR1 30978
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30978 killed at Tue May  2 15:19:47 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9122 starting at Tue May  2 15:19:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31048 >/dev/null 2>/dev/null
selfserv_9122 with PID 31048 found at Tue May  2 15:19:47 UTC 2017
selfserv_9122 with PID 31048 started at Tue May  2 15:19:47 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:19:47 UTC 2017
ssl.sh: #1893: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 31048 at Tue May  2 15:19:47 UTC 2017
kill -USR1 31048
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31048 killed at Tue May  2 15:19:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31135 >/dev/null 2>/dev/null
selfserv_9122 with PID 31135 found at Tue May  2 15:19:47 UTC 2017
selfserv_9122 with PID 31135 started at Tue May  2 15:19:47 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:19:58 UTC 2017
ssl.sh: #1894: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 31135 at Tue May  2 15:19:58 UTC 2017
kill -USR1 31135
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31135 killed at Tue May  2 15:19:58 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:19:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:19:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31205 >/dev/null 2>/dev/null
selfserv_9122 with PID 31205 found at Tue May  2 15:19:58 UTC 2017
selfserv_9122 with PID 31205 started at Tue May  2 15:19:58 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:19:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:20:10 UTC 2017
ssl.sh: #1895: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 31205 at Tue May  2 15:20:10 UTC 2017
kill -USR1 31205
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31205 killed at Tue May  2 15:20:10 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9122 starting at Tue May  2 15:20:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31267 >/dev/null 2>/dev/null
selfserv_9122 with PID 31267 found at Tue May  2 15:20:10 UTC 2017
selfserv_9122 with PID 31267 started at Tue May  2 15:20:10 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1898: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1902: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1906: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1910: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1914: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1916: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1919: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1920: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1921: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1922: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1923: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1924: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1925: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1926: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1927: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1928: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1929: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1930: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1931: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1932: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1933: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1934: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1935: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1936: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1937: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1938: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1939: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1940: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1941: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1942: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1943: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1944: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1945: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1946: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1947: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1948: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1949: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1950: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1951: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1952: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1953: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1954: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1955: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1956: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1957: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1958: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1959: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1960: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1961: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1962: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1963: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1964: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1965: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1966: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1967: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31267 at Tue May  2 15:20:16 UTC 2017
kill -USR1 31267
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31267 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1155 >/dev/null 2>/dev/null
selfserv_9122 with PID 1155 found at Tue May  2 15:20:16 UTC 2017
selfserv_9122 with PID 1155 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1155 at Tue May  2 15:20:16 UTC 2017
kill -USR1 1155
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1155 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1212 >/dev/null 2>/dev/null
selfserv_9122 with PID 1212 found at Tue May  2 15:20:16 UTC 2017
selfserv_9122 with PID 1212 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1212 at Tue May  2 15:20:16 UTC 2017
kill -USR1 1212
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1212 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1269 >/dev/null 2>/dev/null
selfserv_9122 with PID 1269 found at Tue May  2 15:20:16 UTC 2017
selfserv_9122 with PID 1269 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1269 at Tue May  2 15:20:17 UTC 2017
kill -USR1 1269
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1269 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1326 >/dev/null 2>/dev/null
selfserv_9122 with PID 1326 found at Tue May  2 15:20:17 UTC 2017
selfserv_9122 with PID 1326 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2020: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1326 at Tue May  2 15:20:17 UTC 2017
kill -USR1 1326
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1326 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1383 >/dev/null 2>/dev/null
selfserv_9122 with PID 1383 found at Tue May  2 15:20:17 UTC 2017
selfserv_9122 with PID 1383 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2021: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1383 at Tue May  2 15:20:17 UTC 2017
kill -USR1 1383
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1383 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1440 >/dev/null 2>/dev/null
selfserv_9122 with PID 1440 found at Tue May  2 15:20:17 UTC 2017
selfserv_9122 with PID 1440 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1440 at Tue May  2 15:20:17 UTC 2017
kill -USR1 1440
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1440 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1497 >/dev/null 2>/dev/null
selfserv_9122 with PID 1497 found at Tue May  2 15:20:17 UTC 2017
selfserv_9122 with PID 1497 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1497 at Tue May  2 15:20:17 UTC 2017
kill -USR1 1497
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1497 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1554 >/dev/null 2>/dev/null
selfserv_9122 with PID 1554 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1554 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1554 at Tue May  2 15:20:18 UTC 2017
kill -USR1 1554
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1554 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1611 >/dev/null 2>/dev/null
selfserv_9122 with PID 1611 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1611 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1611 at Tue May  2 15:20:18 UTC 2017
kill -USR1 1611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1611 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1668 >/dev/null 2>/dev/null
selfserv_9122 with PID 1668 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1668 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2026: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1668 at Tue May  2 15:20:18 UTC 2017
kill -USR1 1668
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1668 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1726 >/dev/null 2>/dev/null
selfserv_9122 with PID 1726 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1726 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2027: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1726 at Tue May  2 15:20:18 UTC 2017
kill -USR1 1726
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1726 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1783 >/dev/null 2>/dev/null
selfserv_9122 with PID 1783 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1783 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1783 at Tue May  2 15:20:18 UTC 2017
kill -USR1 1783
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1783 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1840 >/dev/null 2>/dev/null
selfserv_9122 with PID 1840 found at Tue May  2 15:20:18 UTC 2017
selfserv_9122 with PID 1840 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1840 at Tue May  2 15:20:19 UTC 2017
kill -USR1 1840
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1840 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1897 >/dev/null 2>/dev/null
selfserv_9122 with PID 1897 found at Tue May  2 15:20:19 UTC 2017
selfserv_9122 with PID 1897 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1897 at Tue May  2 15:20:19 UTC 2017
kill -USR1 1897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1897 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1954 >/dev/null 2>/dev/null
selfserv_9122 with PID 1954 found at Tue May  2 15:20:19 UTC 2017
selfserv_9122 with PID 1954 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1954 at Tue May  2 15:20:19 UTC 2017
kill -USR1 1954
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1954 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2011 >/dev/null 2>/dev/null
selfserv_9122 with PID 2011 found at Tue May  2 15:20:19 UTC 2017
selfserv_9122 with PID 2011 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2032: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2011 at Tue May  2 15:20:19 UTC 2017
kill -USR1 2011
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2011 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2068 >/dev/null 2>/dev/null
selfserv_9122 with PID 2068 found at Tue May  2 15:20:20 UTC 2017
selfserv_9122 with PID 2068 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2033: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2068 at Tue May  2 15:20:20 UTC 2017
kill -USR1 2068
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2068 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2125 >/dev/null 2>/dev/null
selfserv_9122 with PID 2125 found at Tue May  2 15:20:20 UTC 2017
selfserv_9122 with PID 2125 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2125 at Tue May  2 15:20:20 UTC 2017
kill -USR1 2125
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2125 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2182 >/dev/null 2>/dev/null
selfserv_9122 with PID 2182 found at Tue May  2 15:20:20 UTC 2017
selfserv_9122 with PID 2182 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2182 at Tue May  2 15:20:20 UTC 2017
kill -USR1 2182
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2182 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2239 >/dev/null 2>/dev/null
selfserv_9122 with PID 2239 found at Tue May  2 15:20:20 UTC 2017
selfserv_9122 with PID 2239 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2239 at Tue May  2 15:20:21 UTC 2017
kill -USR1 2239
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2239 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2296 >/dev/null 2>/dev/null
selfserv_9122 with PID 2296 found at Tue May  2 15:20:21 UTC 2017
selfserv_9122 with PID 2296 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2296 at Tue May  2 15:20:21 UTC 2017
kill -USR1 2296
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2296 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2353 >/dev/null 2>/dev/null
selfserv_9122 with PID 2353 found at Tue May  2 15:20:21 UTC 2017
selfserv_9122 with PID 2353 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2038: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2353 at Tue May  2 15:20:21 UTC 2017
kill -USR1 2353
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2353 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2410 >/dev/null 2>/dev/null
selfserv_9122 with PID 2410 found at Tue May  2 15:20:21 UTC 2017
selfserv_9122 with PID 2410 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2039: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2410 at Tue May  2 15:20:21 UTC 2017
kill -USR1 2410
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2410 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2467 >/dev/null 2>/dev/null
selfserv_9122 with PID 2467 found at Tue May  2 15:20:21 UTC 2017
selfserv_9122 with PID 2467 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2467 at Tue May  2 15:20:22 UTC 2017
kill -USR1 2467
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2467 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2524 >/dev/null 2>/dev/null
selfserv_9122 with PID 2524 found at Tue May  2 15:20:22 UTC 2017
selfserv_9122 with PID 2524 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2524 at Tue May  2 15:20:22 UTC 2017
kill -USR1 2524
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2524 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2581 >/dev/null 2>/dev/null
selfserv_9122 with PID 2581 found at Tue May  2 15:20:22 UTC 2017
selfserv_9122 with PID 2581 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2581 at Tue May  2 15:20:22 UTC 2017
kill -USR1 2581
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2581 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2638 >/dev/null 2>/dev/null
selfserv_9122 with PID 2638 found at Tue May  2 15:20:22 UTC 2017
selfserv_9122 with PID 2638 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2638 at Tue May  2 15:20:22 UTC 2017
kill -USR1 2638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2638 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2695 >/dev/null 2>/dev/null
selfserv_9122 with PID 2695 found at Tue May  2 15:20:22 UTC 2017
selfserv_9122 with PID 2695 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2044: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2695 at Tue May  2 15:20:23 UTC 2017
kill -USR1 2695
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2695 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2752 >/dev/null 2>/dev/null
selfserv_9122 with PID 2752 found at Tue May  2 15:20:23 UTC 2017
selfserv_9122 with PID 2752 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2045: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2752 at Tue May  2 15:20:23 UTC 2017
kill -USR1 2752
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2752 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2809 >/dev/null 2>/dev/null
selfserv_9122 with PID 2809 found at Tue May  2 15:20:23 UTC 2017
selfserv_9122 with PID 2809 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2809 at Tue May  2 15:20:23 UTC 2017
kill -USR1 2809
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2809 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2881 >/dev/null 2>/dev/null
selfserv_9122 with PID 2881 found at Tue May  2 15:20:23 UTC 2017
selfserv_9122 with PID 2881 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2881 at Tue May  2 15:20:23 UTC 2017
kill -USR1 2881
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2881 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2938 >/dev/null 2>/dev/null
selfserv_9122 with PID 2938 found at Tue May  2 15:20:23 UTC 2017
selfserv_9122 with PID 2938 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2938 at Tue May  2 15:20:23 UTC 2017
kill -USR1 2938
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2938 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2995 >/dev/null 2>/dev/null
selfserv_9122 with PID 2995 found at Tue May  2 15:20:23 UTC 2017
selfserv_9122 with PID 2995 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2049: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2995 at Tue May  2 15:20:24 UTC 2017
kill -USR1 2995
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2995 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3052 >/dev/null 2>/dev/null
selfserv_9122 with PID 3052 found at Tue May  2 15:20:24 UTC 2017
selfserv_9122 with PID 3052 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3052 at Tue May  2 15:20:24 UTC 2017
kill -USR1 3052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3052 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3109 >/dev/null 2>/dev/null
selfserv_9122 with PID 3109 found at Tue May  2 15:20:24 UTC 2017
selfserv_9122 with PID 3109 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3109 at Tue May  2 15:20:24 UTC 2017
kill -USR1 3109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3109 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3166 >/dev/null 2>/dev/null
selfserv_9122 with PID 3166 found at Tue May  2 15:20:24 UTC 2017
selfserv_9122 with PID 3166 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3166 at Tue May  2 15:20:24 UTC 2017
kill -USR1 3166
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3166 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3223 >/dev/null 2>/dev/null
selfserv_9122 with PID 3223 found at Tue May  2 15:20:24 UTC 2017
selfserv_9122 with PID 3223 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2053: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3223 at Tue May  2 15:20:24 UTC 2017
kill -USR1 3223
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3223 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3280 >/dev/null 2>/dev/null
selfserv_9122 with PID 3280 found at Tue May  2 15:20:24 UTC 2017
selfserv_9122 with PID 3280 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3280 at Tue May  2 15:20:25 UTC 2017
kill -USR1 3280
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3280 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3337 >/dev/null 2>/dev/null
selfserv_9122 with PID 3337 found at Tue May  2 15:20:25 UTC 2017
selfserv_9122 with PID 3337 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3337 at Tue May  2 15:20:25 UTC 2017
kill -USR1 3337
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3337 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3394 >/dev/null 2>/dev/null
selfserv_9122 with PID 3394 found at Tue May  2 15:20:25 UTC 2017
selfserv_9122 with PID 3394 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3394 at Tue May  2 15:20:25 UTC 2017
kill -USR1 3394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3394 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3451 >/dev/null 2>/dev/null
selfserv_9122 with PID 3451 found at Tue May  2 15:20:25 UTC 2017
selfserv_9122 with PID 3451 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2057: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3451 at Tue May  2 15:20:26 UTC 2017
kill -USR1 3451
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3451 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3508 >/dev/null 2>/dev/null
selfserv_9122 with PID 3508 found at Tue May  2 15:20:26 UTC 2017
selfserv_9122 with PID 3508 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3508 at Tue May  2 15:20:26 UTC 2017
kill -USR1 3508
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3508 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3566 >/dev/null 2>/dev/null
selfserv_9122 with PID 3566 found at Tue May  2 15:20:26 UTC 2017
selfserv_9122 with PID 3566 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3566 at Tue May  2 15:20:26 UTC 2017
kill -USR1 3566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3566 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3623 >/dev/null 2>/dev/null
selfserv_9122 with PID 3623 found at Tue May  2 15:20:26 UTC 2017
selfserv_9122 with PID 3623 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3623 at Tue May  2 15:20:26 UTC 2017
kill -USR1 3623
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3623 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3680 >/dev/null 2>/dev/null
selfserv_9122 with PID 3680 found at Tue May  2 15:20:27 UTC 2017
selfserv_9122 with PID 3680 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3680 at Tue May  2 15:20:27 UTC 2017
kill -USR1 3680
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3680 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3737 >/dev/null 2>/dev/null
selfserv_9122 with PID 3737 found at Tue May  2 15:20:27 UTC 2017
selfserv_9122 with PID 3737 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3737 at Tue May  2 15:20:27 UTC 2017
kill -USR1 3737
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3737 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3794 >/dev/null 2>/dev/null
selfserv_9122 with PID 3794 found at Tue May  2 15:20:27 UTC 2017
selfserv_9122 with PID 3794 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3794 at Tue May  2 15:20:27 UTC 2017
kill -USR1 3794
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3794 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3852 >/dev/null 2>/dev/null
selfserv_9122 with PID 3852 found at Tue May  2 15:20:27 UTC 2017
selfserv_9122 with PID 3852 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3852 at Tue May  2 15:20:28 UTC 2017
kill -USR1 3852
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3852 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3909 >/dev/null 2>/dev/null
selfserv_9122 with PID 3909 found at Tue May  2 15:20:28 UTC 2017
selfserv_9122 with PID 3909 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2065: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3909 at Tue May  2 15:20:28 UTC 2017
kill -USR1 3909
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3909 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3966 >/dev/null 2>/dev/null
selfserv_9122 with PID 3966 found at Tue May  2 15:20:28 UTC 2017
selfserv_9122 with PID 3966 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3966 at Tue May  2 15:20:28 UTC 2017
kill -USR1 3966
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3966 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9122 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4109 >/dev/null 2>/dev/null
selfserv_9122 with PID 4109 found at Tue May  2 15:20:28 UTC 2017
selfserv_9122 with PID 4109 started at Tue May  2 15:20:28 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:28 UTC 2017
ssl.sh: #2067: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4109 at Tue May  2 15:20:28 UTC 2017
kill -USR1 4109
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4109 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9122 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4180 >/dev/null 2>/dev/null
selfserv_9122 with PID 4180 found at Tue May  2 15:20:28 UTC 2017
selfserv_9122 with PID 4180 started at Tue May  2 15:20:28 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:29 UTC 2017
ssl.sh: #2068: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4180 at Tue May  2 15:20:29 UTC 2017
kill -USR1 4180
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4180 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9122 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4251 >/dev/null 2>/dev/null
selfserv_9122 with PID 4251 found at Tue May  2 15:20:29 UTC 2017
selfserv_9122 with PID 4251 started at Tue May  2 15:20:29 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:29 UTC 2017
ssl.sh: #2069: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4251 at Tue May  2 15:20:29 UTC 2017
kill -USR1 4251
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4251 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9122 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4322 >/dev/null 2>/dev/null
selfserv_9122 with PID 4322 found at Tue May  2 15:20:29 UTC 2017
selfserv_9122 with PID 4322 started at Tue May  2 15:20:29 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:20:29 UTC 2017
ssl.sh: #2070: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4322 at Tue May  2 15:20:29 UTC 2017
kill -USR1 4322
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4322 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9122 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4393 >/dev/null 2>/dev/null
selfserv_9122 with PID 4393 found at Tue May  2 15:20:29 UTC 2017
selfserv_9122 with PID 4393 started at Tue May  2 15:20:29 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:30 UTC 2017
ssl.sh: #2071: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4393 at Tue May  2 15:20:30 UTC 2017
kill -USR1 4393
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4393 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9122 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4464 >/dev/null 2>/dev/null
selfserv_9122 with PID 4464 found at Tue May  2 15:20:30 UTC 2017
selfserv_9122 with PID 4464 started at Tue May  2 15:20:30 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:20:30 UTC 2017
ssl.sh: #2072: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4464 at Tue May  2 15:20:30 UTC 2017
kill -USR1 4464
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4464 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9122 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4535 >/dev/null 2>/dev/null
selfserv_9122 with PID 4535 found at Tue May  2 15:20:30 UTC 2017
selfserv_9122 with PID 4535 started at Tue May  2 15:20:30 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:20:31 UTC 2017
ssl.sh: #2073: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4535 at Tue May  2 15:20:31 UTC 2017
kill -USR1 4535
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4535 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4623 >/dev/null 2>/dev/null
selfserv_9122 with PID 4623 found at Tue May  2 15:20:31 UTC 2017
selfserv_9122 with PID 4623 started at Tue May  2 15:20:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:31 UTC 2017
ssl.sh: #2074: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4623 at Tue May  2 15:20:31 UTC 2017
kill -USR1 4623
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4623 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4693 >/dev/null 2>/dev/null
selfserv_9122 with PID 4693 found at Tue May  2 15:20:31 UTC 2017
selfserv_9122 with PID 4693 started at Tue May  2 15:20:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:32 UTC 2017
ssl.sh: #2075: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4693 at Tue May  2 15:20:32 UTC 2017
kill -USR1 4693
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4693 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4763 >/dev/null 2>/dev/null
selfserv_9122 with PID 4763 found at Tue May  2 15:20:32 UTC 2017
selfserv_9122 with PID 4763 started at Tue May  2 15:20:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:20:32 UTC 2017
ssl.sh: #2076: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4763 at Tue May  2 15:20:32 UTC 2017
kill -USR1 4763
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4763 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4834 >/dev/null 2>/dev/null
selfserv_9122 with PID 4834 found at Tue May  2 15:20:32 UTC 2017
selfserv_9122 with PID 4834 started at Tue May  2 15:20:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:32 UTC 2017
ssl.sh: #2077: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4834 at Tue May  2 15:20:32 UTC 2017
kill -USR1 4834
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4834 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4905 >/dev/null 2>/dev/null
selfserv_9122 with PID 4905 found at Tue May  2 15:20:32 UTC 2017
selfserv_9122 with PID 4905 started at Tue May  2 15:20:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:33 UTC 2017
ssl.sh: #2078: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4905 at Tue May  2 15:20:33 UTC 2017
kill -USR1 4905
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4905 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4976 >/dev/null 2>/dev/null
selfserv_9122 with PID 4976 found at Tue May  2 15:20:33 UTC 2017
selfserv_9122 with PID 4976 started at Tue May  2 15:20:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:20:33 UTC 2017
ssl.sh: #2079: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 4976 at Tue May  2 15:20:33 UTC 2017
kill -USR1 4976
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4976 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5047 >/dev/null 2>/dev/null
selfserv_9122 with PID 5047 found at Tue May  2 15:20:33 UTC 2017
selfserv_9122 with PID 5047 started at Tue May  2 15:20:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:20:33 UTC 2017
ssl.sh: #2080: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5047 at Tue May  2 15:20:33 UTC 2017
kill -USR1 5047
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5047 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5137 >/dev/null 2>/dev/null
selfserv_9122 with PID 5137 found at Tue May  2 15:20:33 UTC 2017
selfserv_9122 with PID 5137 started at Tue May  2 15:20:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:35 UTC 2017
ssl.sh: #2081: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5137 at Tue May  2 15:20:35 UTC 2017
kill -USR1 5137
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5137 killed at Tue May  2 15:20:35 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5207 >/dev/null 2>/dev/null
selfserv_9122 with PID 5207 found at Tue May  2 15:20:35 UTC 2017
selfserv_9122 with PID 5207 started at Tue May  2 15:20:35 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:37 UTC 2017
ssl.sh: #2082: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5207 at Tue May  2 15:20:37 UTC 2017
kill -USR1 5207
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5207 killed at Tue May  2 15:20:37 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5277 >/dev/null 2>/dev/null
selfserv_9122 with PID 5277 found at Tue May  2 15:20:37 UTC 2017
selfserv_9122 with PID 5277 started at Tue May  2 15:20:37 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:39 UTC 2017
ssl.sh: #2083: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5277 at Tue May  2 15:20:39 UTC 2017
kill -USR1 5277
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5277 killed at Tue May  2 15:20:39 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5347 >/dev/null 2>/dev/null
selfserv_9122 with PID 5347 found at Tue May  2 15:20:39 UTC 2017
selfserv_9122 with PID 5347 started at Tue May  2 15:20:39 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:41 UTC 2017
ssl.sh: #2084: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5347 at Tue May  2 15:20:41 UTC 2017
kill -USR1 5347
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5347 killed at Tue May  2 15:20:41 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:41 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5417 >/dev/null 2>/dev/null
selfserv_9122 with PID 5417 found at Tue May  2 15:20:41 UTC 2017
selfserv_9122 with PID 5417 started at Tue May  2 15:20:41 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:42 UTC 2017
ssl.sh: #2085: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5417 at Tue May  2 15:20:42 UTC 2017
kill -USR1 5417
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5417 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9122 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5487 >/dev/null 2>/dev/null
selfserv_9122 with PID 5487 found at Tue May  2 15:20:42 UTC 2017
selfserv_9122 with PID 5487 started at Tue May  2 15:20:42 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:42 UTC 2017
ssl.sh: #2086: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5487 at Tue May  2 15:20:42 UTC 2017
kill -USR1 5487
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5487 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9122 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5558 >/dev/null 2>/dev/null
selfserv_9122 with PID 5558 found at Tue May  2 15:20:42 UTC 2017
selfserv_9122 with PID 5558 started at Tue May  2 15:20:42 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:42 UTC 2017
ssl.sh: #2087: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5558 at Tue May  2 15:20:42 UTC 2017
kill -USR1 5558
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5558 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9122 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5629 >/dev/null 2>/dev/null
selfserv_9122 with PID 5629 found at Tue May  2 15:20:42 UTC 2017
selfserv_9122 with PID 5629 started at Tue May  2 15:20:42 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:43 UTC 2017
ssl.sh: #2088: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5629 at Tue May  2 15:20:43 UTC 2017
kill -USR1 5629
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5629 killed at Tue May  2 15:20:43 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9122 starting at Tue May  2 15:20:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5700 >/dev/null 2>/dev/null
selfserv_9122 with PID 5700 found at Tue May  2 15:20:44 UTC 2017
selfserv_9122 with PID 5700 started at Tue May  2 15:20:44 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:20:44 UTC 2017
ssl.sh: #2089: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5700 at Tue May  2 15:20:44 UTC 2017
kill -USR1 5700
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5700 killed at Tue May  2 15:20:44 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9122 starting at Tue May  2 15:20:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5771 >/dev/null 2>/dev/null
selfserv_9122 with PID 5771 found at Tue May  2 15:20:44 UTC 2017
selfserv_9122 with PID 5771 started at Tue May  2 15:20:44 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:20:44 UTC 2017
ssl.sh: #2090: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5771 at Tue May  2 15:20:44 UTC 2017
kill -USR1 5771
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5771 killed at Tue May  2 15:20:44 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5857 >/dev/null 2>/dev/null
selfserv_9122 with PID 5857 found at Tue May  2 15:20:44 UTC 2017
selfserv_9122 with PID 5857 started at Tue May  2 15:20:44 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:20:45 UTC 2017
ssl.sh: #2091: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5857 at Tue May  2 15:20:45 UTC 2017
kill -USR1 5857
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5857 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9122 starting at Tue May  2 15:20:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5927 >/dev/null 2>/dev/null
selfserv_9122 with PID 5927 found at Tue May  2 15:20:45 UTC 2017
selfserv_9122 with PID 5927 started at Tue May  2 15:20:45 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:45 UTC 2017
ssl.sh: #2092: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5927 at Tue May  2 15:20:45 UTC 2017
kill -USR1 5927
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5927 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5998 >/dev/null 2>/dev/null
selfserv_9122 with PID 5998 found at Tue May  2 15:20:45 UTC 2017
selfserv_9122 with PID 5998 started at Tue May  2 15:20:45 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:20:45 UTC 2017
ssl.sh: #2093: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 5998 at Tue May  2 15:20:45 UTC 2017
kill -USR1 5998
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5998 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6068 >/dev/null 2>/dev/null
selfserv_9122 with PID 6068 found at Tue May  2 15:20:45 UTC 2017
selfserv_9122 with PID 6068 started at Tue May  2 15:20:45 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:20:46 UTC 2017
ssl.sh: #2094: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6068 at Tue May  2 15:20:46 UTC 2017
kill -USR1 6068
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6068 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9122 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6138 >/dev/null 2>/dev/null
selfserv_9122 with PID 6138 found at Tue May  2 15:20:46 UTC 2017
selfserv_9122 with PID 6138 started at Tue May  2 15:20:46 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:46 UTC 2017
ssl.sh: #2095: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6138 at Tue May  2 15:20:46 UTC 2017
kill -USR1 6138
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6138 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6209 >/dev/null 2>/dev/null
selfserv_9122 with PID 6209 found at Tue May  2 15:20:46 UTC 2017
selfserv_9122 with PID 6209 started at Tue May  2 15:20:46 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:20:46 UTC 2017
ssl.sh: #2096: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6209 at Tue May  2 15:20:46 UTC 2017
kill -USR1 6209
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6209 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6295 >/dev/null 2>/dev/null
selfserv_9122 with PID 6295 found at Tue May  2 15:20:46 UTC 2017
selfserv_9122 with PID 6295 started at Tue May  2 15:20:46 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:47 UTC 2017
ssl.sh: #2097: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6295 at Tue May  2 15:20:47 UTC 2017
kill -USR1 6295
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6295 killed at Tue May  2 15:20:47 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9122 starting at Tue May  2 15:20:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6367 >/dev/null 2>/dev/null
selfserv_9122 with PID 6367 found at Tue May  2 15:20:47 UTC 2017
selfserv_9122 with PID 6367 started at Tue May  2 15:20:47 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:20:47 UTC 2017
ssl.sh: #2098: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6367 at Tue May  2 15:20:47 UTC 2017
kill -USR1 6367
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6367 killed at Tue May  2 15:20:47 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6438 >/dev/null 2>/dev/null
selfserv_9122 with PID 6438 found at Tue May  2 15:20:48 UTC 2017
selfserv_9122 with PID 6438 started at Tue May  2 15:20:48 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:49 UTC 2017
ssl.sh: #2099: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6438 at Tue May  2 15:20:49 UTC 2017
kill -USR1 6438
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6438 killed at Tue May  2 15:20:49 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6508 >/dev/null 2>/dev/null
selfserv_9122 with PID 6508 found at Tue May  2 15:20:49 UTC 2017
selfserv_9122 with PID 6508 started at Tue May  2 15:20:49 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:20:50 UTC 2017
ssl.sh: #2100: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6508 at Tue May  2 15:20:50 UTC 2017
kill -USR1 6508
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6508 killed at Tue May  2 15:20:50 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9122 starting at Tue May  2 15:20:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6588 >/dev/null 2>/dev/null
selfserv_9122 with PID 6588 found at Tue May  2 15:20:51 UTC 2017
selfserv_9122 with PID 6588 started at Tue May  2 15:20:51 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:20:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:21:01 UTC 2017
ssl.sh: #2101: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6588 at Tue May  2 15:21:01 UTC 2017
kill -USR1 6588
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6588 killed at Tue May  2 15:21:01 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9122 starting at Tue May  2 15:21:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6668 >/dev/null 2>/dev/null
selfserv_9122 with PID 6668 found at Tue May  2 15:21:01 UTC 2017
selfserv_9122 with PID 6668 started at Tue May  2 15:21:01 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:21:11 UTC 2017
ssl.sh: #2102: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6668 at Tue May  2 15:21:11 UTC 2017
kill -USR1 6668
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6668 killed at Tue May  2 15:21:11 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:21:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6738 >/dev/null 2>/dev/null
selfserv_9122 with PID 6738 found at Tue May  2 15:21:11 UTC 2017
selfserv_9122 with PID 6738 started at Tue May  2 15:21:11 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:21:12 UTC 2017
ssl.sh: #2103: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6738 at Tue May  2 15:21:12 UTC 2017
kill -USR1 6738
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6738 killed at Tue May  2 15:21:12 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:21:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6808 >/dev/null 2>/dev/null
selfserv_9122 with PID 6808 found at Tue May  2 15:21:12 UTC 2017
selfserv_9122 with PID 6808 started at Tue May  2 15:21:12 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:21:13 UTC 2017
ssl.sh: #2104: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6808 at Tue May  2 15:21:13 UTC 2017
kill -USR1 6808
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6808 killed at Tue May  2 15:21:13 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9122 starting at Tue May  2 15:21:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6879 >/dev/null 2>/dev/null
selfserv_9122 with PID 6879 found at Tue May  2 15:21:13 UTC 2017
selfserv_9122 with PID 6879 started at Tue May  2 15:21:13 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:21:14 UTC 2017
ssl.sh: #2105: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6879 at Tue May  2 15:21:14 UTC 2017
kill -USR1 6879
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6879 killed at Tue May  2 15:21:14 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:21:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6964 >/dev/null 2>/dev/null
selfserv_9122 with PID 6964 found at Tue May  2 15:21:14 UTC 2017
selfserv_9122 with PID 6964 started at Tue May  2 15:21:14 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:21:15 UTC 2017
ssl.sh: #2106: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 6964 at Tue May  2 15:21:15 UTC 2017
kill -USR1 6964
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6964 killed at Tue May  2 15:21:15 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9122 starting at Tue May  2 15:21:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7034 >/dev/null 2>/dev/null
selfserv_9122 with PID 7034 found at Tue May  2 15:21:15 UTC 2017
selfserv_9122 with PID 7034 started at Tue May  2 15:21:15 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:21:16 UTC 2017
ssl.sh: #2107: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 7034 at Tue May  2 15:21:16 UTC 2017
kill -USR1 7034
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7034 killed at Tue May  2 15:21:16 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:21:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7120 >/dev/null 2>/dev/null
selfserv_9122 with PID 7120 found at Tue May  2 15:21:16 UTC 2017
selfserv_9122 with PID 7120 started at Tue May  2 15:21:16 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:21:32 UTC 2017
ssl.sh: #2108: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 7120 at Tue May  2 15:21:32 UTC 2017
kill -USR1 7120
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7120 killed at Tue May  2 15:21:32 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:21:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7190 >/dev/null 2>/dev/null
selfserv_9122 with PID 7190 found at Tue May  2 15:21:32 UTC 2017
selfserv_9122 with PID 7190 started at Tue May  2 15:21:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:21:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:21:48 UTC 2017
ssl.sh: #2109: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 7190 at Tue May  2 15:21:48 UTC 2017
kill -USR1 7190
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7190 killed at Tue May  2 15:21:48 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2110:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #2111:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2112:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2113:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2114:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2115:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2116:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2117:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2118:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2119:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2120:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2121:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9122 starting at Tue May  2 15:21:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:21:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7382 >/dev/null 2>/dev/null
selfserv_9122 with PID 7382 found at Tue May  2 15:21:49 UTC 2017
selfserv_9122 with PID 7382 started at Tue May  2 15:21:49 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2125: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2129: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2133: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2137: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2139: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2140: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2141: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2142: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2143: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2144: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2145: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2146: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2147: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2148: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2149: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2150: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2151: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2152: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2153: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2154: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2155: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2156: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2157: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2158: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2159: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2160: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2161: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2162: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2163: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2164: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2165: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2166: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2167: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2168: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2169: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2170: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2171: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2172: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2173: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2174: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2175: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2176: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2177: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2178: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2179: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2180: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2181: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2182: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2183: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2184: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2185: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2186: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2187: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2188: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2189: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2190: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2191: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2192: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2193: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7382 at Tue May  2 15:22:03 UTC 2017
kill -USR1 7382
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7382 killed at Tue May  2 15:22:03 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:22:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9658 >/dev/null 2>/dev/null
selfserv_9122 with PID 9658 found at Tue May  2 15:22:03 UTC 2017
selfserv_9122 with PID 9658 started at Tue May  2 15:22:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2243: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 9658 at Tue May  2 15:22:03 UTC 2017
kill -USR1 9658
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9658 killed at Tue May  2 15:22:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:22:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9715 >/dev/null 2>/dev/null
selfserv_9122 with PID 9715 found at Tue May  2 15:22:04 UTC 2017
selfserv_9122 with PID 9715 started at Tue May  2 15:22:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2244: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 9715 at Tue May  2 15:22:30 UTC 2017
kill -USR1 9715
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9715 killed at Tue May  2 15:22:30 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:22:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9829 >/dev/null 2>/dev/null
selfserv_9122 with PID 9829 found at Tue May  2 15:22:30 UTC 2017
selfserv_9122 with PID 9829 started at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9829 at Tue May  2 15:22:30 UTC 2017
kill -USR1 9829
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9829 killed at Tue May  2 15:22:30 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:22:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9893 >/dev/null 2>/dev/null
selfserv_9122 with PID 9893 found at Tue May  2 15:22:30 UTC 2017
selfserv_9122 with PID 9893 started at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2246: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 9893 at Tue May  2 15:22:30 UTC 2017
kill -USR1 9893
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9893 killed at Tue May  2 15:22:30 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:22:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9950 >/dev/null 2>/dev/null
selfserv_9122 with PID 9950 found at Tue May  2 15:22:30 UTC 2017
selfserv_9122 with PID 9950 started at Tue May  2 15:22:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2247: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 9950 at Tue May  2 15:22:53 UTC 2017
kill -USR1 9950
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9950 killed at Tue May  2 15:22:53 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10007 >/dev/null 2>/dev/null
selfserv_9122 with PID 10007 found at Tue May  2 15:22:54 UTC 2017
selfserv_9122 with PID 10007 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10007 at Tue May  2 15:22:54 UTC 2017
kill -USR1 10007
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10007 killed at Tue May  2 15:22:54 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10070 >/dev/null 2>/dev/null
selfserv_9122 with PID 10070 found at Tue May  2 15:22:54 UTC 2017
selfserv_9122 with PID 10070 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2249: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10070 at Tue May  2 15:22:54 UTC 2017
kill -USR1 10070
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10070 killed at Tue May  2 15:22:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10127 >/dev/null 2>/dev/null
selfserv_9122 with PID 10127 found at Tue May  2 15:22:54 UTC 2017
selfserv_9122 with PID 10127 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2250: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10127 at Tue May  2 15:23:20 UTC 2017
kill -USR1 10127
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10127 killed at Tue May  2 15:23:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:23:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10191 >/dev/null 2>/dev/null
selfserv_9122 with PID 10191 found at Tue May  2 15:23:20 UTC 2017
selfserv_9122 with PID 10191 started at Tue May  2 15:23:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10191 at Tue May  2 15:23:20 UTC 2017
kill -USR1 10191
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10191 killed at Tue May  2 15:23:20 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:23:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:23:20 UTC 2017
selfserv_9122 with PID 10254 started at Tue May  2 15:23:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2252: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10254 at Tue May  2 15:23:21 UTC 2017
kill -USR1 10254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10254 killed at Tue May  2 15:23:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:23:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10311 >/dev/null 2>/dev/null
selfserv_9122 with PID 10311 found at Tue May  2 15:23:21 UTC 2017
selfserv_9122 with PID 10311 started at Tue May  2 15:23:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2253: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10311 at Tue May  2 15:23:47 UTC 2017
kill -USR1 10311
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10311 killed at Tue May  2 15:23:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:23:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10368 >/dev/null 2>/dev/null
selfserv_9122 with PID 10368 found at Tue May  2 15:23:47 UTC 2017
selfserv_9122 with PID 10368 started at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10368 at Tue May  2 15:23:47 UTC 2017
kill -USR1 10368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10368 killed at Tue May  2 15:23:47 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:23:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10440 >/dev/null 2>/dev/null
selfserv_9122 with PID 10440 found at Tue May  2 15:23:47 UTC 2017
selfserv_9122 with PID 10440 started at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2255: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10440 at Tue May  2 15:23:47 UTC 2017
kill -USR1 10440
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10440 killed at Tue May  2 15:23:47 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:23:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10497 >/dev/null 2>/dev/null
selfserv_9122 with PID 10497 found at Tue May  2 15:23:47 UTC 2017
selfserv_9122 with PID 10497 started at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2256: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10497 at Tue May  2 15:24:10 UTC 2017
kill -USR1 10497
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10497 killed at Tue May  2 15:24:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:24:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:24:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10554 >/dev/null 2>/dev/null
selfserv_9122 with PID 10554 found at Tue May  2 15:24:10 UTC 2017
selfserv_9122 with PID 10554 started at Tue May  2 15:24:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10554 at Tue May  2 15:24:11 UTC 2017
kill -USR1 10554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10554 killed at Tue May  2 15:24:11 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:24:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:24:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10630 >/dev/null 2>/dev/null
selfserv_9122 with PID 10630 found at Tue May  2 15:24:11 UTC 2017
selfserv_9122 with PID 10630 started at Tue May  2 15:24:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2258: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10630 at Tue May  2 15:24:37 UTC 2017
kill -USR1 10630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10630 killed at Tue May  2 15:24:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:24:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:24:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10687 >/dev/null 2>/dev/null
selfserv_9122 with PID 10687 found at Tue May  2 15:24:37 UTC 2017
selfserv_9122 with PID 10687 started at Tue May  2 15:24:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10687 at Tue May  2 15:24:37 UTC 2017
kill -USR1 10687
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10687 killed at Tue May  2 15:24:37 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:24:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:24:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10748 >/dev/null 2>/dev/null
selfserv_9122 with PID 10748 found at Tue May  2 15:24:37 UTC 2017
selfserv_9122 with PID 10748 started at Tue May  2 15:24:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2260: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10748 at Tue May  2 15:25:00 UTC 2017
kill -USR1 10748
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10748 killed at Tue May  2 15:25:00 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:25:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10805 >/dev/null 2>/dev/null
selfserv_9122 with PID 10805 found at Tue May  2 15:25:00 UTC 2017
selfserv_9122 with PID 10805 started at Tue May  2 15:25:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10805 at Tue May  2 15:25:00 UTC 2017
kill -USR1 10805
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10805 killed at Tue May  2 15:25:00 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:25:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10866 >/dev/null 2>/dev/null
selfserv_9122 with PID 10866 found at Tue May  2 15:25:00 UTC 2017
selfserv_9122 with PID 10866 started at Tue May  2 15:25:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2262: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10866 at Tue May  2 15:25:27 UTC 2017
kill -USR1 10866
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10866 killed at Tue May  2 15:25:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:25:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10923 >/dev/null 2>/dev/null
selfserv_9122 with PID 10923 found at Tue May  2 15:25:27 UTC 2017
selfserv_9122 with PID 10923 started at Tue May  2 15:25:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10923 at Tue May  2 15:25:27 UTC 2017
kill -USR1 10923
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10923 killed at Tue May  2 15:25:27 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:25:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10984 >/dev/null 2>/dev/null
selfserv_9122 with PID 10984 found at Tue May  2 15:25:27 UTC 2017
selfserv_9122 with PID 10984 started at Tue May  2 15:25:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2264: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10984 at Tue May  2 15:25:53 UTC 2017
kill -USR1 10984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10984 killed at Tue May  2 15:25:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:25:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11041 >/dev/null 2>/dev/null
selfserv_9122 with PID 11041 found at Tue May  2 15:25:53 UTC 2017
selfserv_9122 with PID 11041 started at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11041 at Tue May  2 15:25:53 UTC 2017
kill -USR1 11041
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11041 killed at Tue May  2 15:25:53 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:25:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11102 >/dev/null 2>/dev/null
selfserv_9122 with PID 11102 found at Tue May  2 15:25:53 UTC 2017
selfserv_9122 with PID 11102 started at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2266: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11102 at Tue May  2 15:26:16 UTC 2017
kill -USR1 11102
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11102 killed at Tue May  2 15:26:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:26:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11159 >/dev/null 2>/dev/null
selfserv_9122 with PID 11159 found at Tue May  2 15:26:16 UTC 2017
selfserv_9122 with PID 11159 started at Tue May  2 15:26:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11159 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11159
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11159 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11237 >/dev/null 2>/dev/null
selfserv_9122 with PID 11237 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11237 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11237 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11237
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11237 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11300 >/dev/null 2>/dev/null
selfserv_9122 with PID 11300 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11300 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11300 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11300
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11300 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11363 >/dev/null 2>/dev/null
selfserv_9122 with PID 11363 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11363 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2270: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11363 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11363
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11363 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11426 >/dev/null 2>/dev/null
selfserv_9122 with PID 11426 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11426 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11426 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11426
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11426 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11489 >/dev/null 2>/dev/null
selfserv_9122 with PID 11489 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11489 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2272: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11489 at Tue May  2 15:26:17 UTC 2017
kill -USR1 11489
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11489 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9122 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11552 >/dev/null 2>/dev/null
selfserv_9122 with PID 11552 found at Tue May  2 15:26:17 UTC 2017
selfserv_9122 with PID 11552 started at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11552 at Tue May  2 15:26:18 UTC 2017
kill -USR1 11552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11552 killed at Tue May  2 15:26:18 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9122 starting at Tue May  2 15:26:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11615 >/dev/null 2>/dev/null
selfserv_9122 with PID 11615 found at Tue May  2 15:26:18 UTC 2017
selfserv_9122 with PID 11615 started at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11615 at Tue May  2 15:26:18 UTC 2017
kill -USR1 11615
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11615 killed at Tue May  2 15:26:18 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9122 starting at Tue May  2 15:26:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11678 >/dev/null 2>/dev/null
selfserv_9122 with PID 11678 found at Tue May  2 15:26:18 UTC 2017
selfserv_9122 with PID 11678 started at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2275: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11678 at Tue May  2 15:26:18 UTC 2017
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
kill -USR1 11678
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11678 killed at Tue May  2 15:26:18 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9122 starting at Tue May  2 15:26:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11741 >/dev/null 2>/dev/null
selfserv_9122 with PID 11741 found at Tue May  2 15:26:18 UTC 2017
selfserv_9122 with PID 11741 started at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2276: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11741 at Tue May  2 15:26:18 UTC 2017
kill -USR1 11741
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11741 killed at Tue May  2 15:26:18 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9122 starting at Tue May  2 15:26:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11804 >/dev/null 2>/dev/null
selfserv_9122 with PID 11804 found at Tue May  2 15:26:18 UTC 2017
selfserv_9122 with PID 11804 started at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2277: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11804 at Tue May  2 15:26:18 UTC 2017
kill -USR1 11804
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11804 killed at Tue May  2 15:26:18 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11903 >/dev/null 2>/dev/null
selfserv_9122 with PID 11903 found at Tue May  2 15:26:18 UTC 2017
selfserv_9122 with PID 11903 started at Tue May  2 15:26:18 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:19 UTC 2017
ssl.sh: #2278: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 11903 at Tue May  2 15:26:19 UTC 2017
kill -USR1 11903
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11903 killed at Tue May  2 15:26:19 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11973 >/dev/null 2>/dev/null
selfserv_9122 with PID 11973 found at Tue May  2 15:26:19 UTC 2017
selfserv_9122 with PID 11973 started at Tue May  2 15:26:19 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2279: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 11973 at Tue May  2 15:26:20 UTC 2017
kill -USR1 11973
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11973 killed at Tue May  2 15:26:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12043 >/dev/null 2>/dev/null
selfserv_9122 with PID 12043 found at Tue May  2 15:26:20 UTC 2017
selfserv_9122 with PID 12043 started at Tue May  2 15:26:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2280: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12043 at Tue May  2 15:26:20 UTC 2017
kill -USR1 12043
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12043 killed at Tue May  2 15:26:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12114 >/dev/null 2>/dev/null
selfserv_9122 with PID 12114 found at Tue May  2 15:26:20 UTC 2017
selfserv_9122 with PID 12114 started at Tue May  2 15:26:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2281: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12114 at Tue May  2 15:26:20 UTC 2017
kill -USR1 12114
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12114 killed at Tue May  2 15:26:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:26:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12185 >/dev/null 2>/dev/null
selfserv_9122 with PID 12185 found at Tue May  2 15:26:20 UTC 2017
selfserv_9122 with PID 12185 started at Tue May  2 15:26:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2282: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12185 at Tue May  2 15:26:20 UTC 2017
kill -USR1 12185
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12185 killed at Tue May  2 15:26:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12256 >/dev/null 2>/dev/null
selfserv_9122 with PID 12256 found at Tue May  2 15:26:20 UTC 2017
selfserv_9122 with PID 12256 started at Tue May  2 15:26:20 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2283: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12256 at Tue May  2 15:26:21 UTC 2017
kill -USR1 12256
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12256 killed at Tue May  2 15:26:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:26:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12327 >/dev/null 2>/dev/null
selfserv_9122 with PID 12327 found at Tue May  2 15:26:21 UTC 2017
selfserv_9122 with PID 12327 started at Tue May  2 15:26:21 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:21 UTC 2017
ssl.sh: #2284: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12327 at Tue May  2 15:26:21 UTC 2017
kill -USR1 12327
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12327 killed at Tue May  2 15:26:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9122 starting at Tue May  2 15:26:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12404 >/dev/null 2>/dev/null
selfserv_9122 with PID 12404 found at Tue May  2 15:26:21 UTC 2017
selfserv_9122 with PID 12404 started at Tue May  2 15:26:21 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:21 UTC 2017
ssl.sh: #2285: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12404 at Tue May  2 15:26:21 UTC 2017
kill -USR1 12404
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12404 killed at Tue May  2 15:26:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9122 starting at Tue May  2 15:26:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12481 >/dev/null 2>/dev/null
selfserv_9122 with PID 12481 found at Tue May  2 15:26:21 UTC 2017
selfserv_9122 with PID 12481 started at Tue May  2 15:26:21 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:21 UTC 2017
ssl.sh: #2286: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12481 at Tue May  2 15:26:21 UTC 2017
kill -USR1 12481
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12481 killed at Tue May  2 15:26:21 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12584 >/dev/null 2>/dev/null
selfserv_9122 with PID 12584 found at Tue May  2 15:26:22 UTC 2017
selfserv_9122 with PID 12584 started at Tue May  2 15:26:22 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:22 UTC 2017
ssl.sh: #2287: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12584 at Tue May  2 15:26:22 UTC 2017
kill -USR1 12584
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12584 killed at Tue May  2 15:26:22 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9122 starting at Tue May  2 15:26:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12654 >/dev/null 2>/dev/null
selfserv_9122 with PID 12654 found at Tue May  2 15:26:22 UTC 2017
selfserv_9122 with PID 12654 started at Tue May  2 15:26:22 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:22 UTC 2017
ssl.sh: #2288: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12654 at Tue May  2 15:26:22 UTC 2017
kill -USR1 12654
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12654 killed at Tue May  2 15:26:22 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12725 >/dev/null 2>/dev/null
selfserv_9122 with PID 12725 found at Tue May  2 15:26:22 UTC 2017
selfserv_9122 with PID 12725 started at Tue May  2 15:26:22 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:23 UTC 2017
ssl.sh: #2289: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12725 at Tue May  2 15:26:23 UTC 2017
kill -USR1 12725
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12725 killed at Tue May  2 15:26:23 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12797 >/dev/null 2>/dev/null
selfserv_9122 with PID 12797 found at Tue May  2 15:26:23 UTC 2017
selfserv_9122 with PID 12797 started at Tue May  2 15:26:23 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:23 UTC 2017
ssl.sh: #2290: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12797 at Tue May  2 15:26:23 UTC 2017
kill -USR1 12797
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12797 killed at Tue May  2 15:26:23 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9122 starting at Tue May  2 15:26:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12867 >/dev/null 2>/dev/null
selfserv_9122 with PID 12867 found at Tue May  2 15:26:23 UTC 2017
selfserv_9122 with PID 12867 started at Tue May  2 15:26:23 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:23 UTC 2017
ssl.sh: #2291: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12867 at Tue May  2 15:26:23 UTC 2017
kill -USR1 12867
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12867 killed at Tue May  2 15:26:23 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12940 >/dev/null 2>/dev/null
selfserv_9122 with PID 12940 found at Tue May  2 15:26:23 UTC 2017
selfserv_9122 with PID 12940 started at Tue May  2 15:26:23 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:23 UTC 2017
ssl.sh: #2292: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 12940 at Tue May  2 15:26:24 UTC 2017
kill -USR1 12940
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12940 killed at Tue May  2 15:26:24 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13049 >/dev/null 2>/dev/null
selfserv_9122 with PID 13049 found at Tue May  2 15:26:24 UTC 2017
selfserv_9122 with PID 13049 started at Tue May  2 15:26:24 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:25 UTC 2017
ssl.sh: #2293: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 13049 at Tue May  2 15:26:25 UTC 2017
kill -USR1 13049
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13049 killed at Tue May  2 15:26:25 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9122 starting at Tue May  2 15:26:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13119 >/dev/null 2>/dev/null
selfserv_9122 with PID 13119 found at Tue May  2 15:26:25 UTC 2017
selfserv_9122 with PID 13119 started at Tue May  2 15:26:25 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:25 UTC 2017
ssl.sh: #2294: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 13119 at Tue May  2 15:26:25 UTC 2017
kill -USR1 13119
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13119 killed at Tue May  2 15:26:25 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13204 >/dev/null 2>/dev/null
selfserv_9122 with PID 13204 found at Tue May  2 15:26:25 UTC 2017
selfserv_9122 with PID 13204 started at Tue May  2 15:26:25 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:26:38 UTC 2017
ssl.sh: #2295: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 13204 at Tue May  2 15:26:38 UTC 2017
kill -USR1 13204
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13204 killed at Tue May  2 15:26:38 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:26:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13274 >/dev/null 2>/dev/null
selfserv_9122 with PID 13274 found at Tue May  2 15:26:38 UTC 2017
selfserv_9122 with PID 13274 started at Tue May  2 15:26:38 UTC 2017
strsclnt -q -p 9122 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:26:52 UTC 2017
ssl.sh: #2296: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 13274 at Tue May  2 15:26:52 UTC 2017
kill -USR1 13274
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13274 killed at Tue May  2 15:26:52 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9122 starting at Tue May  2 15:26:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:26:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13337 >/dev/null 2>/dev/null
selfserv_9122 with PID 13337 found at Tue May  2 15:26:52 UTC 2017
selfserv_9122 with PID 13337 started at Tue May  2 15:26:52 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2315: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2316: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2318: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2319: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2321: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2322: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2324: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2325: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2327: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2328: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2330: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2332: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2334: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2336: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2338: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2342: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2344: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2347: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2348: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2349: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2350: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2351: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2352: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2353: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2354: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2355: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2356: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2357: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2358: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2359: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2360: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2361: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2362: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2363: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2364: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2365: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2366: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2367: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2368: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9122 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13337 at Tue May  2 15:27:10 UTC 2017
kill -USR1 13337
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13337 killed at Tue May  2 15:27:10 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:27:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:27:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15606 >/dev/null 2>/dev/null
selfserv_9122 with PID 15606 found at Tue May  2 15:27:10 UTC 2017
selfserv_9122 with PID 15606 started at Tue May  2 15:27:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2418: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15606 at Tue May  2 15:27:10 UTC 2017
kill -USR1 15606
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15606 killed at Tue May  2 15:27:10 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:27:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:27:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15663 >/dev/null 2>/dev/null
selfserv_9122 with PID 15663 found at Tue May  2 15:27:10 UTC 2017
selfserv_9122 with PID 15663 started at Tue May  2 15:27:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2419: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15663 at Tue May  2 15:27:37 UTC 2017
kill -USR1 15663
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15663 killed at Tue May  2 15:27:37 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:27:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15720 >/dev/null 2>/dev/null
selfserv_9122 with PID 15720 found at Tue May  2 15:27:37 UTC 2017
selfserv_9122 with PID 15720 started at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15720 at Tue May  2 15:27:37 UTC 2017
kill -USR1 15720
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15720 killed at Tue May  2 15:27:37 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:27:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15783 >/dev/null 2>/dev/null
selfserv_9122 with PID 15783 found at Tue May  2 15:27:37 UTC 2017
selfserv_9122 with PID 15783 started at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2421: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15783 at Tue May  2 15:27:37 UTC 2017
kill -USR1 15783
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15783 killed at Tue May  2 15:27:37 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:27:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15840 >/dev/null 2>/dev/null
selfserv_9122 with PID 15840 found at Tue May  2 15:27:37 UTC 2017
selfserv_9122 with PID 15840 started at Tue May  2 15:27:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2422: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15840 at Tue May  2 15:28:01 UTC 2017
kill -USR1 15840
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15840 killed at Tue May  2 15:28:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:28:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15897 >/dev/null 2>/dev/null
selfserv_9122 with PID 15897 found at Tue May  2 15:28:01 UTC 2017
selfserv_9122 with PID 15897 started at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15897 at Tue May  2 15:28:01 UTC 2017
kill -USR1 15897
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15897 killed at Tue May  2 15:28:01 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:28:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15960 >/dev/null 2>/dev/null
selfserv_9122 with PID 15960 found at Tue May  2 15:28:01 UTC 2017
selfserv_9122 with PID 15960 started at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2424: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15960 at Tue May  2 15:28:01 UTC 2017
kill -USR1 15960
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15960 killed at Tue May  2 15:28:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:28:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16017 >/dev/null 2>/dev/null
selfserv_9122 with PID 16017 found at Tue May  2 15:28:01 UTC 2017
selfserv_9122 with PID 16017 started at Tue May  2 15:28:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2425: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16017 at Tue May  2 15:28:28 UTC 2017
kill -USR1 16017
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16017 killed at Tue May  2 15:28:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:28:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16074 >/dev/null 2>/dev/null
selfserv_9122 with PID 16074 found at Tue May  2 15:28:28 UTC 2017
selfserv_9122 with PID 16074 started at Tue May  2 15:28:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16074 at Tue May  2 15:28:28 UTC 2017
kill -USR1 16074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16074 killed at Tue May  2 15:28:28 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:28:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16137 >/dev/null 2>/dev/null
selfserv_9122 with PID 16137 found at Tue May  2 15:28:28 UTC 2017
selfserv_9122 with PID 16137 started at Tue May  2 15:28:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2427: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16137 at Tue May  2 15:28:29 UTC 2017
kill -USR1 16137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16137 killed at Tue May  2 15:28:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:28:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16194 >/dev/null 2>/dev/null
selfserv_9122 with PID 16194 found at Tue May  2 15:28:29 UTC 2017
selfserv_9122 with PID 16194 started at Tue May  2 15:28:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2428: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16194 at Tue May  2 15:28:56 UTC 2017
kill -USR1 16194
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16194 killed at Tue May  2 15:28:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:28:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16252 >/dev/null 2>/dev/null
selfserv_9122 with PID 16252 found at Tue May  2 15:28:56 UTC 2017
selfserv_9122 with PID 16252 started at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16252 at Tue May  2 15:28:56 UTC 2017
kill -USR1 16252
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16252 killed at Tue May  2 15:28:56 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:28:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16315 >/dev/null 2>/dev/null
selfserv_9122 with PID 16315 found at Tue May  2 15:28:56 UTC 2017
selfserv_9122 with PID 16315 started at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2430: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16315 at Tue May  2 15:28:56 UTC 2017
kill -USR1 16315
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16315 killed at Tue May  2 15:28:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:28:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16372 >/dev/null 2>/dev/null
selfserv_9122 with PID 16372 found at Tue May  2 15:28:56 UTC 2017
selfserv_9122 with PID 16372 started at Tue May  2 15:28:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2431: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16372 at Tue May  2 15:29:19 UTC 2017
kill -USR1 16372
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16372 killed at Tue May  2 15:29:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:29:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:29:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16433 >/dev/null 2>/dev/null
selfserv_9122 with PID 16433 found at Tue May  2 15:29:20 UTC 2017
selfserv_9122 with PID 16433 started at Tue May  2 15:29:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16433 at Tue May  2 15:29:20 UTC 2017
kill -USR1 16433
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16433 killed at Tue May  2 15:29:20 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:29:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:29:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16509 >/dev/null 2>/dev/null
selfserv_9122 with PID 16509 found at Tue May  2 15:29:20 UTC 2017
selfserv_9122 with PID 16509 started at Tue May  2 15:29:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2433: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16509 at Tue May  2 15:29:47 UTC 2017
kill -USR1 16509
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16509 killed at Tue May  2 15:29:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:29:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:29:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16581 >/dev/null 2>/dev/null
selfserv_9122 with PID 16581 found at Tue May  2 15:29:47 UTC 2017
selfserv_9122 with PID 16581 started at Tue May  2 15:29:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16581 at Tue May  2 15:29:47 UTC 2017
kill -USR1 16581
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16581 killed at Tue May  2 15:29:47 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:29:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:29:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16642 >/dev/null 2>/dev/null
selfserv_9122 with PID 16642 found at Tue May  2 15:29:47 UTC 2017
selfserv_9122 with PID 16642 started at Tue May  2 15:29:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2435: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16642 at Tue May  2 15:30:10 UTC 2017
kill -USR1 16642
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16642 killed at Tue May  2 15:30:10 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:30:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:30:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16715 >/dev/null 2>/dev/null
selfserv_9122 with PID 16715 found at Tue May  2 15:30:10 UTC 2017
selfserv_9122 with PID 16715 started at Tue May  2 15:30:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16715 at Tue May  2 15:30:11 UTC 2017
kill -USR1 16715
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16715 killed at Tue May  2 15:30:11 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:30:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:30:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16776 >/dev/null 2>/dev/null
selfserv_9122 with PID 16776 found at Tue May  2 15:30:11 UTC 2017
selfserv_9122 with PID 16776 started at Tue May  2 15:30:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2437: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16776 at Tue May  2 15:30:38 UTC 2017
kill -USR1 16776
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16776 killed at Tue May  2 15:30:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:30:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:30:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16833 >/dev/null 2>/dev/null
selfserv_9122 with PID 16833 found at Tue May  2 15:30:38 UTC 2017
selfserv_9122 with PID 16833 started at Tue May  2 15:30:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16833 at Tue May  2 15:30:38 UTC 2017
kill -USR1 16833
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16833 killed at Tue May  2 15:30:38 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:30:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:30:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16894 >/dev/null 2>/dev/null
selfserv_9122 with PID 16894 found at Tue May  2 15:30:38 UTC 2017
selfserv_9122 with PID 16894 started at Tue May  2 15:30:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2439: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16894 at Tue May  2 15:31:05 UTC 2017
kill -USR1 16894
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16894 killed at Tue May  2 15:31:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:31:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16951 >/dev/null 2>/dev/null
selfserv_9122 with PID 16951 found at Tue May  2 15:31:05 UTC 2017
selfserv_9122 with PID 16951 started at Tue May  2 15:31:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16951 at Tue May  2 15:31:05 UTC 2017
kill -USR1 16951
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16951 killed at Tue May  2 15:31:05 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:31:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17012 >/dev/null 2>/dev/null
selfserv_9122 with PID 17012 found at Tue May  2 15:31:05 UTC 2017
selfserv_9122 with PID 17012 started at Tue May  2 15:31:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2441: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17012 at Tue May  2 15:31:29 UTC 2017
kill -USR1 17012
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17012 killed at Tue May  2 15:31:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:31:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17069 >/dev/null 2>/dev/null
selfserv_9122 with PID 17069 found at Tue May  2 15:31:29 UTC 2017
selfserv_9122 with PID 17069 started at Tue May  2 15:31:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 17069 at Tue May  2 15:31:29 UTC 2017
kill -USR1 17069
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17069 killed at Tue May  2 15:31:29 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17203 >/dev/null 2>/dev/null
selfserv_9122 with PID 17203 found at Tue May  2 15:31:29 UTC 2017
selfserv_9122 with PID 17203 started at Tue May  2 15:31:29 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:31:29 UTC 2017
ssl.sh: #2443: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17203 at Tue May  2 15:31:30 UTC 2017
kill -USR1 17203
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17203 killed at Tue May  2 15:31:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17274 >/dev/null 2>/dev/null
selfserv_9122 with PID 17274 found at Tue May  2 15:31:30 UTC 2017
selfserv_9122 with PID 17274 started at Tue May  2 15:31:30 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:31:30 UTC 2017
ssl.sh: #2444: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17274 at Tue May  2 15:31:30 UTC 2017
kill -USR1 17274
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17274 killed at Tue May  2 15:31:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17344 >/dev/null 2>/dev/null
selfserv_9122 with PID 17344 found at Tue May  2 15:31:30 UTC 2017
selfserv_9122 with PID 17344 started at Tue May  2 15:31:30 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:31:30 UTC 2017
ssl.sh: #2445: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17344 at Tue May  2 15:31:30 UTC 2017
kill -USR1 17344
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17344 killed at Tue May  2 15:31:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17415 >/dev/null 2>/dev/null
selfserv_9122 with PID 17415 found at Tue May  2 15:31:30 UTC 2017
selfserv_9122 with PID 17415 started at Tue May  2 15:31:30 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:31:31 UTC 2017
ssl.sh: #2446: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17415 at Tue May  2 15:31:31 UTC 2017
kill -USR1 17415
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17415 killed at Tue May  2 15:31:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:31:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17486 >/dev/null 2>/dev/null
selfserv_9122 with PID 17486 found at Tue May  2 15:31:31 UTC 2017
selfserv_9122 with PID 17486 started at Tue May  2 15:31:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:31:31 UTC 2017
ssl.sh: #2447: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17486 at Tue May  2 15:31:31 UTC 2017
kill -USR1 17486
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17486 killed at Tue May  2 15:31:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17557 >/dev/null 2>/dev/null
selfserv_9122 with PID 17557 found at Tue May  2 15:31:31 UTC 2017
selfserv_9122 with PID 17557 started at Tue May  2 15:31:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:31:31 UTC 2017
ssl.sh: #2448: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17557 at Tue May  2 15:31:31 UTC 2017
kill -USR1 17557
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17557 killed at Tue May  2 15:31:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9122 starting at Tue May  2 15:31:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17628 >/dev/null 2>/dev/null
selfserv_9122 with PID 17628 found at Tue May  2 15:31:31 UTC 2017
selfserv_9122 with PID 17628 started at Tue May  2 15:31:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:31:31 UTC 2017
ssl.sh: #2449: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17628 at Tue May  2 15:31:31 UTC 2017
kill -USR1 17628
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17628 killed at Tue May  2 15:31:31 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17735 >/dev/null 2>/dev/null
selfserv_9122 with PID 17735 found at Tue May  2 15:31:31 UTC 2017
selfserv_9122 with PID 17735 started at Tue May  2 15:31:31 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:31:32 UTC 2017
ssl.sh: #2450: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17735 at Tue May  2 15:31:32 UTC 2017
kill -USR1 17735
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17735 killed at Tue May  2 15:31:32 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9122 starting at Tue May  2 15:31:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17805 >/dev/null 2>/dev/null
selfserv_9122 with PID 17805 found at Tue May  2 15:31:32 UTC 2017
selfserv_9122 with PID 17805 started at Tue May  2 15:31:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:31:32 UTC 2017
ssl.sh: #2451: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17805 at Tue May  2 15:31:32 UTC 2017
kill -USR1 17805
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17805 killed at Tue May  2 15:31:32 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17876 >/dev/null 2>/dev/null
selfserv_9122 with PID 17876 found at Tue May  2 15:31:32 UTC 2017
selfserv_9122 with PID 17876 started at Tue May  2 15:31:32 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:31:32 UTC 2017
ssl.sh: #2452: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17876 at Tue May  2 15:31:32 UTC 2017
kill -USR1 17876
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17876 killed at Tue May  2 15:31:32 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17946 >/dev/null 2>/dev/null
selfserv_9122 with PID 17946 found at Tue May  2 15:31:33 UTC 2017
selfserv_9122 with PID 17946 started at Tue May  2 15:31:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:31:33 UTC 2017
ssl.sh: #2453: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 17946 at Tue May  2 15:31:33 UTC 2017
kill -USR1 17946
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17946 killed at Tue May  2 15:31:33 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9122 starting at Tue May  2 15:31:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18016 >/dev/null 2>/dev/null
selfserv_9122 with PID 18016 found at Tue May  2 15:31:33 UTC 2017
selfserv_9122 with PID 18016 started at Tue May  2 15:31:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:31:33 UTC 2017
ssl.sh: #2454: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18016 at Tue May  2 15:31:33 UTC 2017
kill -USR1 18016
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18016 killed at Tue May  2 15:31:33 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18087 >/dev/null 2>/dev/null
selfserv_9122 with PID 18087 found at Tue May  2 15:31:33 UTC 2017
selfserv_9122 with PID 18087 started at Tue May  2 15:31:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:31:33 UTC 2017
ssl.sh: #2455: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18087 at Tue May  2 15:31:33 UTC 2017
kill -USR1 18087
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18087 killed at Tue May  2 15:31:33 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18199 >/dev/null 2>/dev/null
selfserv_9122 with PID 18199 found at Tue May  2 15:31:33 UTC 2017
selfserv_9122 with PID 18199 started at Tue May  2 15:31:33 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:31:35 UTC 2017
ssl.sh: #2456: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18199 at Tue May  2 15:31:35 UTC 2017
kill -USR1 18199
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18199 killed at Tue May  2 15:31:35 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9122 starting at Tue May  2 15:31:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18269 >/dev/null 2>/dev/null
selfserv_9122 with PID 18269 found at Tue May  2 15:31:35 UTC 2017
selfserv_9122 with PID 18269 started at Tue May  2 15:31:35 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:31:35 UTC 2017
ssl.sh: #2457: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18269 at Tue May  2 15:31:35 UTC 2017
kill -USR1 18269
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18269 killed at Tue May  2 15:31:35 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18352 >/dev/null 2>/dev/null
selfserv_9122 with PID 18352 found at Tue May  2 15:31:35 UTC 2017
selfserv_9122 with PID 18352 started at Tue May  2 15:31:35 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:31:51 UTC 2017
ssl.sh: #2458: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18352 at Tue May  2 15:31:51 UTC 2017
kill -USR1 18352
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18352 killed at Tue May  2 15:31:51 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9122 starting at Tue May  2 15:31:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:31:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18422 >/dev/null 2>/dev/null
selfserv_9122 with PID 18422 found at Tue May  2 15:31:51 UTC 2017
selfserv_9122 with PID 18422 started at Tue May  2 15:31:51 UTC 2017
strsclnt -q -p 9122 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:31:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:32:06 UTC 2017
ssl.sh: #2459: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9122 with PID 18422 at Tue May  2 15:32:06 UTC 2017
kill -USR1 18422
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18422 killed at Tue May  2 15:32:06 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2460:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2461:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2462:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2463:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2464:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2465:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Tue May  2 15:32:06 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:32:06 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:32:06 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:32:06 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #2466: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2467: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2468: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2469: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2470: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2471: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:20 2017
            Not After : Mon May 02 15:16:20 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:2d:12:0c:63:16:73:22:9c:bd:05:dc:8b:06:1b:d0:
                    4b:95:c4:34:44:30:0b:e2:f3:64:75:5c:9e:54:a7:29:
                    6c:c2:6e:79:53:76:65:ad:c8:6d:0a:47:22:fb:65:2d:
                    a3:59:a6:1e:7c:8f:e2:ce:b8:47:4e:2c:bf:75:f9:8a:
                    7d:83:82:e4:c7:fa:6b:cd:7d:1b:f7:2e:b9:22:9e:79:
                    51:ea:05:57:27:53:29:89:59:2a:fc:7e:89:16:c1:49:
                    15:e4:51:7e:97:fb:fc:3f:4d:c8:25:95:50:6b:11:ec:
                    aa:4d:3d:fc:86:9b:90:9e:a0:bf:49:25:7f:4e:2a:35:
                    3d:0a:2c:fd:b5:c4:20:2c:4e:5e:23:bb:35:4c:f0:9d:
                    b3:dc:89:cd:a5:83:cb:4e:30:de:62:e4:73:53:8e:d5:
                    9d:bd:06:64:30:4e:38:71:1c:91:21:f8:92:bd:5d:c8:
                    53:49:27:3b:54:57:8d:e6:41:e5:bc:6e:93:ec:19:fc:
                    97:24:9c:cc:af:d8:39:08:eb:fb:0a:5e:a7:05:05:2d:
                    7e:1b:51:a1:9f:9c:1f:71:78:e0:5e:2d:7a:3a:8b:48:
                    de:ef:94:9d:62:a1:ce:a9:ad:96:4c:5d:f4:20:aa:e9:
                    96:00:cd:24:c4:78:0f:37:1d:9c:fe:b7:c3:06:da:17
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:7d:d3:b4:6a:91:ef:4f:a8:9f:07:91:9f:6b:08:3f:
        e2:bb:43:95:5d:f9:a2:5f:0b:6d:52:c4:eb:9b:72:0f:
        33:19:ad:06:e1:62:37:b4:06:4b:20:b1:57:14:47:1e:
        11:78:f3:a5:aa:c2:2f:be:a0:14:e5:92:4b:7f:08:79:
        fc:83:f8:12:ae:7a:10:05:ed:ca:f6:77:98:88:81:ea:
        4e:b0:96:ed:69:20:af:b9:50:90:30:0e:77:12:c0:bf:
        85:76:06:f6:62:2d:a0:bd:22:0f:b7:19:15:37:47:08:
        11:b7:70:00:e1:9b:22:d5:9c:57:83:a0:1b:b2:0e:71:
        3c:2d:41:fa:87:5f:3d:a0:de:9f:f9:cf:51:e5:2b:a6:
        83:ea:a6:a3:f8:f1:90:59:ca:83:eb:05:6f:37:09:4a:
        17:92:ce:28:0d:c7:16:ab:49:c8:8b:dd:d0:03:55:73:
        b0:c0:08:4c:ce:3d:67:08:7f:1c:bf:ff:14:74:7f:52:
        9b:11:87:1b:09:b9:b6:81:37:ea:13:42:25:1e:95:0f:
        ea:24:bc:85:3d:9e:80:71:da:5a:23:ba:48:15:55:ec:
        0d:3a:9d:c3:2b:05:84:c9:cb:05:77:ec:6e:a9:5e:a2:
        41:99:d9:31:b1:9e:96:8b:0f:b6:b5:70:9d:b7:49:11
    Fingerprint (SHA-256):
        70:B9:72:43:FE:49:32:57:CA:5C:23:D2:1F:0E:A0:72:AF:C8:99:4E:E8:49:7E:4D:F7:68:38:CA:A7:AC:5D:A8
    Fingerprint (SHA1):
        84:D3:60:05:75:64:ED:3A:18:91:D6:56:88:12:AA:0D:5E:3F:5D:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2472: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:21 2017
            Not After : Mon May 02 15:16:21 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:70:7e:dd:67:14:da:94:5b:3e:cf:21:35:2d:ab:9e:
                    b9:04:64:81:fd:61:33:a4:b3:00:ff:0e:af:f4:35:6e:
                    6e:f1:75:e2:30:05:d6:58:06:bb:44:5e:dd:d4:f0:64:
                    54:13:e5:4d:92:53:74:e8:46:55:15:19:44:2a:e3:65:
                    43:be:d0:87:6e:98:0d:b8:b8:43:24:f4:6d:e0:0e:88:
                    d3:c8:72:16:35:3c:1a:4e:e0:ff:5a:89:ae:52:fd:65:
                    89:62:56:69:cc:02:36:8c:c4:f5:05:3e:29:d1:91:dd:
                    4d:7f:0b:e0:3d:47:81:be:99:d8:74:b6:a6:00:89:2c:
                    bb:6b:48:64:23:8d:89:6b:de:2c:9a:8a:f0:1e:5f:b3:
                    ae:3f:fc:97:ca:40:8f:84:44:d0:01:ca:d0:07:c5:7b:
                    d1:45:fb:cf:49:d4:14:f8:4a:2e:51:b6:e6:26:58:3c:
                    22:4f:98:f5:58:65:55:95:e3:b8:ca:03:90:d8:8d:07:
                    1b:8d:65:90:7d:46:99:b9:33:90:3e:24:89:46:e6:94:
                    b6:9a:a9:38:88:11:2f:0c:11:2b:02:b7:df:f1:ec:03:
                    ea:bc:38:a5:b1:d7:f6:1c:ed:7d:d7:a8:02:5c:d8:3d:
                    fe:90:b0:ef:82:c6:6c:09:1b:a0:cc:c2:2a:ba:ed:ed
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:e1:6b:dc:35:ca:74:bd:f3:4e:36:ee:ec:84:a6:e9:
        57:db:b0:24:18:b0:6f:eb:d6:1d:64:61:d0:df:27:17:
        05:df:65:ca:8e:a5:10:cc:1e:1a:c0:d9:58:80:91:a0:
        8f:e6:07:74:1e:25:c6:b4:85:c7:20:10:b7:ae:46:a7:
        7c:99:8a:57:7a:07:6f:44:c3:21:de:bb:d8:5b:6e:a8:
        f3:3a:a0:0f:9d:76:b1:a8:2e:10:4e:7b:5d:f1:ed:50:
        e6:6c:6f:09:6b:71:d2:27:c9:18:ac:d5:57:76:f3:9d:
        f5:38:18:b6:e4:9c:46:25:36:a5:2b:78:d3:09:16:81:
        92:44:1b:71:07:7a:76:bb:f7:4f:e8:1f:bb:b7:3c:73:
        ab:fd:17:6e:23:0c:fa:35:ac:98:88:d6:d1:64:6d:a3:
        ee:f9:ec:58:69:48:6e:01:43:05:2a:c2:9f:d0:c2:f8:
        c8:40:1a:7f:b1:25:d2:ba:4a:16:d7:d3:fa:29:21:6c:
        ee:83:d6:77:34:86:3d:dd:2f:2b:e4:47:b5:1b:52:6f:
        5d:6d:52:02:19:eb:96:e7:f4:48:96:f9:f2:f5:ba:12:
        69:d1:17:78:78:a0:3b:ec:39:af:9b:c7:75:28:8b:48:
        4e:81:ca:a2:b8:62:33:60:a2:48:2c:5e:68:cd:39:97
    Fingerprint (SHA-256):
        20:73:16:A8:46:D2:EC:CF:2D:22:50:AF:F9:6A:AF:ED:79:C6:2E:5A:22:68:D2:D6:65:D1:70:59:39:F7:C1:24
    Fingerprint (SHA1):
        EE:AE:AA:53:5E:8D:7F:41:B9:6B:7C:A6:1F:E9:4A:D9:1E:87:6D:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2473: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2474: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
chain-1-clientCA-ec                                          ,,   
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #2475: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.12777 -t Test1 -f ../tests.pw
merge.sh: #2476: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2477: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2478: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2479: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:16:34 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:15:47 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:16:29 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2480: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Tue May  2 15:32:07 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:32:07 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:32:07 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:32:07 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2481: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153208 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2482: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2483: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2484: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2485: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2486: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2487: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2488: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2489: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2490: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2491: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2492: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2493: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2494: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2495: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2496: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2497: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2498: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2499: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2500: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2501: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2502: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2503: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2504: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2505: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2506: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2507: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2508: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2509: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2510: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2511: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2512: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2513: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2514: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2515: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2516: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2517: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2518: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2519: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2520: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2521: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2522: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2523: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2524: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2525: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2526: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2527: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2528: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2529: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2530: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2531: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2532: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2533: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2534: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2535: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2536: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2537: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2538: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2539: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2540: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2541: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2542: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2543: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153215Z
nextupdate=20180502153215Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:32:15 2017
    Next Update: Wed May 02 15:32:15 2018
    CRL Extensions:
chains.sh: #2544: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153216Z
addcert 2 20170502153216Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:32:16 2017
    Next Update: Wed May 02 15:32:15 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:16 2017
    CRL Extensions:
chains.sh: #2545: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153216Z
nextupdate=20180502153216Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:32:16 2017
    Next Update: Wed May 02 15:32:16 2018
    CRL Extensions:
chains.sh: #2546: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153217Z
addcert 2 20170502153217Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:32:17 2017
    Next Update: Wed May 02 15:32:16 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:17 2017
    CRL Extensions:
chains.sh: #2547: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153218Z
addcert 4 20170502153218Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:32:18 2017
    Next Update: Wed May 02 15:32:16 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:17 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:32:18 2017
    CRL Extensions:
chains.sh: #2548: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153218Z
nextupdate=20180502153218Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:32:18 2017
    Next Update: Wed May 02 15:32:18 2018
    CRL Extensions:
chains.sh: #2549: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153220Z
addcert 2 20170502153220Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:32:20 2017
    Next Update: Wed May 02 15:32:18 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:20 2017
    CRL Extensions:
chains.sh: #2550: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153221Z
addcert 3 20170502153221Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:32:21 2017
    Next Update: Wed May 02 15:32:18 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:20 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:32:21 2017
    CRL Extensions:
chains.sh: #2551: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153221Z
nextupdate=20180502153221Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:32:21 2017
    Next Update: Wed May 02 15:32:21 2018
    CRL Extensions:
chains.sh: #2552: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153222Z
addcert 2 20170502153222Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:32:22 2017
    Next Update: Wed May 02 15:32:21 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:22 2017
    CRL Extensions:
chains.sh: #2553: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153223Z
addcert 3 20170502153223Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:32:23 2017
    Next Update: Wed May 02 15:32:21 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:32:22 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:32:23 2017
    CRL Extensions:
chains.sh: #2554: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2555: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2556: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2557: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2558: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2559: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2560: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2563: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2564: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2565: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2566: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2567: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2568: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2569: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2570: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2571: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2572: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2573: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2574: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2575: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2576: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2577: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2578: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:32:23 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 20117 >/dev/null 2>/dev/null
httpserv with PID 20117 found at Tue May  2 15:32:23 UTC 2017
httpserv with PID 20117 started at Tue May  2 15:32:23 UTC 2017
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #2579: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153208 (0x1dee3ff8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:32:07 2017
            Not After : Mon May 02 15:32:07 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:be:3c:6f:04:e7:c5:b3:c9:47:db:17:c5:2d:6a:0d:
                    a3:66:2c:c4:69:e5:f6:c2:f6:11:60:fc:e6:b2:4a:0e:
                    84:87:5c:ac:b3:55:56:a6:bf:26:d6:a9:06:10:37:71:
                    f1:1b:2e:47:a9:bc:58:f4:0d:43:04:dc:4f:d1:79:60:
                    60:0a:29:a3:d5:55:21:39:57:8a:4d:3f:50:d2:f9:43:
                    f5:ac:49:c5:a9:cf:b1:7d:f8:28:7b:8d:4a:e1:58:b1:
                    65:7c:33:b1:fd:6a:29:ae:83:bb:94:ef:42:9d:7e:fe:
                    54:53:0c:94:fa:1c:75:49:09:60:9b:e9:6b:5e:7b:53:
                    c8:33:fa:71:42:fd:05:b6:a7:b3:17:87:08:01:76:76:
                    fc:fe:44:65:26:e9:82:85:fb:31:bf:39:3f:5f:c3:df:
                    87:85:ec:ba:90:32:30:a5:c9:69:fe:53:67:04:b4:8e:
                    ab:31:76:6a:ee:63:d8:a1:a5:15:ae:21:dc:c2:22:df:
                    bb:3f:53:51:28:cc:06:48:c5:06:d8:fe:a4:6c:f0:f7:
                    17:79:89:d4:26:1a:e4:a0:31:e9:bc:59:f3:92:ce:57:
                    44:ef:1b:d9:45:0d:aa:39:76:99:c1:db:3b:35:dc:67:
                    70:21:77:78:bb:c9:69:24:10:35:32:36:ae:e6:43:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:fb:5f:f5:90:a0:fc:f2:14:b0:a3:0f:eb:91:1a:dc:
        d1:c4:d5:c9:85:6c:73:fc:6c:8b:3f:10:64:30:d8:0f:
        d6:d4:15:0c:17:37:dd:3e:67:50:d0:25:22:69:e6:8e:
        78:c9:74:f6:1f:55:15:e0:b5:de:b4:4e:2a:97:6b:ea:
        1c:d9:25:80:8e:f0:a6:f4:bc:39:6b:e2:95:ff:71:71:
        38:7c:2e:72:8f:97:cf:1c:c8:15:4e:7b:e5:c8:75:07:
        de:4a:83:9f:a3:f2:f7:26:fd:6a:47:11:ff:32:f1:83:
        0d:95:d7:b4:54:34:5c:7b:77:6a:ae:5b:eb:be:a7:94:
        0a:dc:8e:72:e8:0a:0c:d1:01:b2:e6:4b:1c:c9:1b:1c:
        74:0f:3c:fd:cd:7d:8d:5e:91:58:1e:4b:3e:5e:cc:36:
        2f:14:85:e7:86:21:f9:3a:57:71:5f:81:07:ed:d5:31:
        4b:44:94:0b:74:8c:11:62:e3:c1:ba:63:47:2b:44:43:
        bd:23:f3:7c:be:9e:7f:f7:2c:91:e0:7a:33:ce:98:5f:
        a2:05:e5:90:c6:28:c6:57:b7:ff:ef:a4:fa:5b:48:02:
        79:3d:09:8e:b2:8c:68:9b:49:55:4f:57:e4:27:52:b6:
        0c:0d:3b:aa:e5:ee:47:07:1f:d1:e6:de:64:5a:5a:46
    Fingerprint (SHA-256):
        46:33:09:0A:E4:42:81:A3:79:73:A8:FA:65:08:B6:97:A6:A4:95:66:59:FC:0A:06:46:05:7D:52:A6:FA:C8:74
    Fingerprint (SHA1):
        D0:BA:40:FF:96:C6:53:77:C6:C7:4C:34:EC:F1:43:AC:B2:43:7D:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2580: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2581: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2582: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 20117 at Tue May  2 15:32:23 UTC 2017
kill -USR1 20117
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 20117 killed at Tue May  2 15:32:23 UTC 2017
httpserv starting at Tue May  2 15:32:23 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:32:23 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 20286 >/dev/null 2>/dev/null
httpserv with PID 20286 found at Tue May  2 15:32:23 UTC 2017
httpserv with PID 20286 started at Tue May  2 15:32:23 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2583: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2584: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2585: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #2586: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153208 (0x1dee3ff8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:32:07 2017
            Not After : Mon May 02 15:32:07 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:be:3c:6f:04:e7:c5:b3:c9:47:db:17:c5:2d:6a:0d:
                    a3:66:2c:c4:69:e5:f6:c2:f6:11:60:fc:e6:b2:4a:0e:
                    84:87:5c:ac:b3:55:56:a6:bf:26:d6:a9:06:10:37:71:
                    f1:1b:2e:47:a9:bc:58:f4:0d:43:04:dc:4f:d1:79:60:
                    60:0a:29:a3:d5:55:21:39:57:8a:4d:3f:50:d2:f9:43:
                    f5:ac:49:c5:a9:cf:b1:7d:f8:28:7b:8d:4a:e1:58:b1:
                    65:7c:33:b1:fd:6a:29:ae:83:bb:94:ef:42:9d:7e:fe:
                    54:53:0c:94:fa:1c:75:49:09:60:9b:e9:6b:5e:7b:53:
                    c8:33:fa:71:42:fd:05:b6:a7:b3:17:87:08:01:76:76:
                    fc:fe:44:65:26:e9:82:85:fb:31:bf:39:3f:5f:c3:df:
                    87:85:ec:ba:90:32:30:a5:c9:69:fe:53:67:04:b4:8e:
                    ab:31:76:6a:ee:63:d8:a1:a5:15:ae:21:dc:c2:22:df:
                    bb:3f:53:51:28:cc:06:48:c5:06:d8:fe:a4:6c:f0:f7:
                    17:79:89:d4:26:1a:e4:a0:31:e9:bc:59:f3:92:ce:57:
                    44:ef:1b:d9:45:0d:aa:39:76:99:c1:db:3b:35:dc:67:
                    70:21:77:78:bb:c9:69:24:10:35:32:36:ae:e6:43:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:fb:5f:f5:90:a0:fc:f2:14:b0:a3:0f:eb:91:1a:dc:
        d1:c4:d5:c9:85:6c:73:fc:6c:8b:3f:10:64:30:d8:0f:
        d6:d4:15:0c:17:37:dd:3e:67:50:d0:25:22:69:e6:8e:
        78:c9:74:f6:1f:55:15:e0:b5:de:b4:4e:2a:97:6b:ea:
        1c:d9:25:80:8e:f0:a6:f4:bc:39:6b:e2:95:ff:71:71:
        38:7c:2e:72:8f:97:cf:1c:c8:15:4e:7b:e5:c8:75:07:
        de:4a:83:9f:a3:f2:f7:26:fd:6a:47:11:ff:32:f1:83:
        0d:95:d7:b4:54:34:5c:7b:77:6a:ae:5b:eb:be:a7:94:
        0a:dc:8e:72:e8:0a:0c:d1:01:b2:e6:4b:1c:c9:1b:1c:
        74:0f:3c:fd:cd:7d:8d:5e:91:58:1e:4b:3e:5e:cc:36:
        2f:14:85:e7:86:21:f9:3a:57:71:5f:81:07:ed:d5:31:
        4b:44:94:0b:74:8c:11:62:e3:c1:ba:63:47:2b:44:43:
        bd:23:f3:7c:be:9e:7f:f7:2c:91:e0:7a:33:ce:98:5f:
        a2:05:e5:90:c6:28:c6:57:b7:ff:ef:a4:fa:5b:48:02:
        79:3d:09:8e:b2:8c:68:9b:49:55:4f:57:e4:27:52:b6:
        0c:0d:3b:aa:e5:ee:47:07:1f:d1:e6:de:64:5a:5a:46
    Fingerprint (SHA-256):
        46:33:09:0A:E4:42:81:A3:79:73:A8:FA:65:08:B6:97:A6:A4:95:66:59:FC:0A:06:46:05:7D:52:A6:FA:C8:74
    Fingerprint (SHA1):
        D0:BA:40:FF:96:C6:53:77:C6:C7:4C:34:EC:F1:43:AC:B2:43:7D:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2587: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2588: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2589: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 20286 at Tue May  2 15:32:24 UTC 2017
kill -USR1 20286
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 20286 killed at Tue May  2 15:32:24 UTC 2017
httpserv starting at Tue May  2 15:32:24 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:32:24 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 20533 >/dev/null 2>/dev/null
httpserv with PID 20533 found at Tue May  2 15:32:24 UTC 2017
httpserv with PID 20533 started at Tue May  2 15:32:24 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2590: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2591: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153209 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2592: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2593: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2594: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153210 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2595: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2596: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2597: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2598: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153211 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2599: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2600: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153212 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2601: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2602: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2603: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2604: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153213   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2606: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2608: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2609: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2610: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153210 (0x1dee3ffa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:85:f0:c3:f6:3b:63:27:d7:c7:20:b0:de:fe:24:5c:
                    03:29:46:99:0a:e4:ae:c4:da:dd:24:69:cd:82:05:08:
                    9f:78:33:5e:5e:76:2b:5a:f8:25:cb:3e:e3:17:a9:34:
                    c2:48:2f:bc:21:b0:d4:46:f3:f9:7a:ce:4d:57:f7:e2:
                    38:f5:88:3f:79:6a:5e:dc:30:4a:39:7a:1c:7e:7f:08:
                    d4:03:a2:32:00:99:ee:62:c3:ce:54:dc:85:b3:5d:db:
                    03:1b:04:a8:6f:75:1b:2c:fd:68:7a:71:8f:46:60:cc:
                    bf:02:09:d2:af:c1:68:0c:91:fd:4c:30:dc:53:8b:8c:
                    17:75:2a:70:30:7f:d1:3d:7c:e0:a8:f3:3d:44:8d:41:
                    af:54:69:d4:3e:50:53:21:7c:11:9c:4c:85:86:16:17:
                    11:a6:7d:bf:cf:ff:05:c4:93:bb:bb:3f:f0:e6:e4:57:
                    ec:f7:8a:df:00:0a:89:e6:55:92:c1:28:e9:80:fc:a8:
                    7d:b7:9b:44:46:d8:da:77:92:6e:2f:22:28:2b:d2:c3:
                    ed:ca:72:ab:cc:b9:c3:75:ca:0b:6d:0c:75:58:01:0e:
                    0b:2e:b9:cc:b1:f4:f5:6f:1d:df:bf:f0:b0:30:62:7a:
                    92:23:e6:3d:b2:d2:1e:11:a5:27:a3:cb:89:49:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:42:a9:4b:05:6f:fd:3c:0d:4e:bf:27:e8:a3:1a:64:
        b6:0a:28:90:b4:d0:3c:4f:e0:8a:8a:96:79:a5:cb:e2:
        ef:7e:94:74:24:9d:a3:d8:4e:7f:72:2a:53:2d:bd:6c:
        cd:b0:af:a1:d6:b7:6d:60:64:bd:d9:9a:5d:34:28:7f:
        75:1b:28:ec:57:fc:d7:4e:8f:80:74:0d:5e:47:62:b6:
        95:b0:19:c7:55:61:10:a4:13:7a:dd:f7:5e:89:78:54:
        48:a1:14:52:ec:af:73:bc:87:58:e0:6d:b2:ec:91:55:
        7b:60:4d:7c:27:9e:31:dd:a2:2a:4b:7e:27:8c:5c:bf:
        50:0a:e9:75:3b:b6:e5:5d:6a:7b:d8:37:8b:1c:12:41:
        cf:77:f0:0b:15:78:36:03:d5:bb:c3:ce:07:05:75:54:
        3b:5e:0c:ac:64:b2:1f:46:98:98:c1:31:43:4c:62:7c:
        fd:c9:c9:f2:00:2d:23:c0:1e:1b:4f:b7:38:1a:1e:69:
        6d:b7:43:a3:46:86:8e:43:83:ff:1d:c4:6f:df:07:61:
        55:5a:d1:70:1f:30:80:b4:03:55:02:78:95:66:48:b8:
        23:0b:b7:37:15:43:32:02:92:6a:fd:f9:85:1b:ac:39:
        ec:6e:de:d3:1f:7c:89:13:1b:ff:9a:b7:61:0e:02:5b
    Fingerprint (SHA-256):
        C1:3C:D0:6C:D8:62:46:39:7F:F8:51:EF:DE:1E:35:95:7B:CE:E2:FE:E6:F8:83:CF:E7:3E:7B:A8:79:83:34:96
    Fingerprint (SHA1):
        72:FD:A5:FA:E2:92:28:0B:B7:54:97:83:C1:DC:D3:41:82:05:FA:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2611: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153209 (0x1dee3ff9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d3:50:7f:bd:d2:1e:ee:71:52:06:f3:f6:13:f6:3d:
                    5d:84:fa:da:8e:6f:6f:b6:b7:2f:d1:50:12:70:21:0d:
                    9c:52:96:d6:4e:4e:b2:fb:67:10:af:fa:70:ec:d1:7b:
                    e4:50:0b:e1:69:ed:88:8d:32:b4:49:7d:a5:00:ad:6d:
                    ba:de:d1:2b:c7:c5:bf:8e:5d:98:29:52:f9:bd:f1:e8:
                    12:ac:d5:7f:f4:44:fb:76:4c:70:de:a0:62:72:43:9e:
                    78:8d:4d:ca:9c:96:30:d2:1d:d9:00:87:4c:e4:78:2e:
                    54:03:fc:03:7f:e3:2d:8d:22:5d:23:c5:0f:41:80:78:
                    dc:1d:21:88:8a:1c:52:c4:88:8e:87:82:a1:58:9f:18:
                    91:aa:ae:40:31:7a:15:2f:b0:49:52:fa:fd:32:1f:c7:
                    67:95:ea:39:71:dd:9d:53:18:16:3d:ef:a2:4f:e1:43:
                    0b:3c:0c:ac:1a:1c:28:9a:85:51:a6:fe:d5:01:b6:77:
                    36:7d:5c:00:43:c9:0a:37:47:e4:eb:dd:ed:b3:f9:e6:
                    88:0e:a4:94:b4:6d:e5:66:47:a2:4c:38:53:70:62:07:
                    9d:3f:12:69:76:2e:6b:71:85:af:66:60:69:02:f2:83:
                    30:bc:ba:c6:75:61:ed:ee:d4:7d:69:dc:50:de:aa:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:c3:a8:a7:6f:84:84:9b:b5:56:74:f0:02:76:f7:20:
        86:20:2f:3f:8b:61:a9:9b:0c:a6:4d:20:37:5f:2d:27:
        a0:84:c8:74:30:e0:85:c4:4b:9c:c2:0f:d8:33:8f:54:
        cb:63:65:a1:d6:05:52:05:8e:e9:32:38:ca:99:31:2d:
        5e:c4:14:75:a1:3b:e1:34:34:45:66:cd:43:68:9e:c6:
        e4:cf:7b:49:78:fc:af:26:87:43:e1:89:26:71:27:a6:
        e1:be:cf:53:60:bd:74:57:8f:c8:29:12:0c:a6:52:9d:
        a5:90:0f:27:09:04:be:24:e8:48:cd:ae:ab:53:a2:1b:
        d3:9c:0d:88:95:80:9c:2e:4d:84:c7:cc:59:84:49:c2:
        5e:50:15:2f:5f:1f:93:89:1b:13:7c:2c:33:6d:e5:e4:
        fa:1c:c0:b4:7a:93:d5:7b:27:76:a5:93:ce:2a:64:b5:
        cf:d0:be:4a:d3:65:4e:16:76:cb:ed:02:8c:2d:05:b3:
        55:c2:da:9e:32:24:4d:59:94:93:7d:58:23:31:b2:f8:
        36:5a:4e:ef:9a:d0:18:88:c9:d4:a7:3c:20:58:d4:9d:
        5a:5f:f7:46:05:a1:fa:82:a1:15:37:33:91:21:0c:b0:
        d4:c0:cd:1a:50:21:ef:4e:13:95:d8:51:59:38:df:f8
    Fingerprint (SHA-256):
        70:6A:FF:EB:04:39:6A:98:DC:03:8E:18:C6:6E:66:10:6C:5D:F7:3A:17:40:30:49:CE:E8:33:B9:59:39:C7:4F
    Fingerprint (SHA1):
        C3:D4:4F:A5:CF:34:70:0B:B9:E3:EB:4B:19:45:83:A4:B6:A8:5B:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2612: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2613: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2614: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2615: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153209 (0x1dee3ff9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d3:50:7f:bd:d2:1e:ee:71:52:06:f3:f6:13:f6:3d:
                    5d:84:fa:da:8e:6f:6f:b6:b7:2f:d1:50:12:70:21:0d:
                    9c:52:96:d6:4e:4e:b2:fb:67:10:af:fa:70:ec:d1:7b:
                    e4:50:0b:e1:69:ed:88:8d:32:b4:49:7d:a5:00:ad:6d:
                    ba:de:d1:2b:c7:c5:bf:8e:5d:98:29:52:f9:bd:f1:e8:
                    12:ac:d5:7f:f4:44:fb:76:4c:70:de:a0:62:72:43:9e:
                    78:8d:4d:ca:9c:96:30:d2:1d:d9:00:87:4c:e4:78:2e:
                    54:03:fc:03:7f:e3:2d:8d:22:5d:23:c5:0f:41:80:78:
                    dc:1d:21:88:8a:1c:52:c4:88:8e:87:82:a1:58:9f:18:
                    91:aa:ae:40:31:7a:15:2f:b0:49:52:fa:fd:32:1f:c7:
                    67:95:ea:39:71:dd:9d:53:18:16:3d:ef:a2:4f:e1:43:
                    0b:3c:0c:ac:1a:1c:28:9a:85:51:a6:fe:d5:01:b6:77:
                    36:7d:5c:00:43:c9:0a:37:47:e4:eb:dd:ed:b3:f9:e6:
                    88:0e:a4:94:b4:6d:e5:66:47:a2:4c:38:53:70:62:07:
                    9d:3f:12:69:76:2e:6b:71:85:af:66:60:69:02:f2:83:
                    30:bc:ba:c6:75:61:ed:ee:d4:7d:69:dc:50:de:aa:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:c3:a8:a7:6f:84:84:9b:b5:56:74:f0:02:76:f7:20:
        86:20:2f:3f:8b:61:a9:9b:0c:a6:4d:20:37:5f:2d:27:
        a0:84:c8:74:30:e0:85:c4:4b:9c:c2:0f:d8:33:8f:54:
        cb:63:65:a1:d6:05:52:05:8e:e9:32:38:ca:99:31:2d:
        5e:c4:14:75:a1:3b:e1:34:34:45:66:cd:43:68:9e:c6:
        e4:cf:7b:49:78:fc:af:26:87:43:e1:89:26:71:27:a6:
        e1:be:cf:53:60:bd:74:57:8f:c8:29:12:0c:a6:52:9d:
        a5:90:0f:27:09:04:be:24:e8:48:cd:ae:ab:53:a2:1b:
        d3:9c:0d:88:95:80:9c:2e:4d:84:c7:cc:59:84:49:c2:
        5e:50:15:2f:5f:1f:93:89:1b:13:7c:2c:33:6d:e5:e4:
        fa:1c:c0:b4:7a:93:d5:7b:27:76:a5:93:ce:2a:64:b5:
        cf:d0:be:4a:d3:65:4e:16:76:cb:ed:02:8c:2d:05:b3:
        55:c2:da:9e:32:24:4d:59:94:93:7d:58:23:31:b2:f8:
        36:5a:4e:ef:9a:d0:18:88:c9:d4:a7:3c:20:58:d4:9d:
        5a:5f:f7:46:05:a1:fa:82:a1:15:37:33:91:21:0c:b0:
        d4:c0:cd:1a:50:21:ef:4e:13:95:d8:51:59:38:df:f8
    Fingerprint (SHA-256):
        70:6A:FF:EB:04:39:6A:98:DC:03:8E:18:C6:6E:66:10:6C:5D:F7:3A:17:40:30:49:CE:E8:33:B9:59:39:C7:4F
    Fingerprint (SHA1):
        C3:D4:4F:A5:CF:34:70:0B:B9:E3:EB:4B:19:45:83:A4:B6:A8:5B:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2616: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153210 (0x1dee3ffa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:85:f0:c3:f6:3b:63:27:d7:c7:20:b0:de:fe:24:5c:
                    03:29:46:99:0a:e4:ae:c4:da:dd:24:69:cd:82:05:08:
                    9f:78:33:5e:5e:76:2b:5a:f8:25:cb:3e:e3:17:a9:34:
                    c2:48:2f:bc:21:b0:d4:46:f3:f9:7a:ce:4d:57:f7:e2:
                    38:f5:88:3f:79:6a:5e:dc:30:4a:39:7a:1c:7e:7f:08:
                    d4:03:a2:32:00:99:ee:62:c3:ce:54:dc:85:b3:5d:db:
                    03:1b:04:a8:6f:75:1b:2c:fd:68:7a:71:8f:46:60:cc:
                    bf:02:09:d2:af:c1:68:0c:91:fd:4c:30:dc:53:8b:8c:
                    17:75:2a:70:30:7f:d1:3d:7c:e0:a8:f3:3d:44:8d:41:
                    af:54:69:d4:3e:50:53:21:7c:11:9c:4c:85:86:16:17:
                    11:a6:7d:bf:cf:ff:05:c4:93:bb:bb:3f:f0:e6:e4:57:
                    ec:f7:8a:df:00:0a:89:e6:55:92:c1:28:e9:80:fc:a8:
                    7d:b7:9b:44:46:d8:da:77:92:6e:2f:22:28:2b:d2:c3:
                    ed:ca:72:ab:cc:b9:c3:75:ca:0b:6d:0c:75:58:01:0e:
                    0b:2e:b9:cc:b1:f4:f5:6f:1d:df:bf:f0:b0:30:62:7a:
                    92:23:e6:3d:b2:d2:1e:11:a5:27:a3:cb:89:49:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:42:a9:4b:05:6f:fd:3c:0d:4e:bf:27:e8:a3:1a:64:
        b6:0a:28:90:b4:d0:3c:4f:e0:8a:8a:96:79:a5:cb:e2:
        ef:7e:94:74:24:9d:a3:d8:4e:7f:72:2a:53:2d:bd:6c:
        cd:b0:af:a1:d6:b7:6d:60:64:bd:d9:9a:5d:34:28:7f:
        75:1b:28:ec:57:fc:d7:4e:8f:80:74:0d:5e:47:62:b6:
        95:b0:19:c7:55:61:10:a4:13:7a:dd:f7:5e:89:78:54:
        48:a1:14:52:ec:af:73:bc:87:58:e0:6d:b2:ec:91:55:
        7b:60:4d:7c:27:9e:31:dd:a2:2a:4b:7e:27:8c:5c:bf:
        50:0a:e9:75:3b:b6:e5:5d:6a:7b:d8:37:8b:1c:12:41:
        cf:77:f0:0b:15:78:36:03:d5:bb:c3:ce:07:05:75:54:
        3b:5e:0c:ac:64:b2:1f:46:98:98:c1:31:43:4c:62:7c:
        fd:c9:c9:f2:00:2d:23:c0:1e:1b:4f:b7:38:1a:1e:69:
        6d:b7:43:a3:46:86:8e:43:83:ff:1d:c4:6f:df:07:61:
        55:5a:d1:70:1f:30:80:b4:03:55:02:78:95:66:48:b8:
        23:0b:b7:37:15:43:32:02:92:6a:fd:f9:85:1b:ac:39:
        ec:6e:de:d3:1f:7c:89:13:1b:ff:9a:b7:61:0e:02:5b
    Fingerprint (SHA-256):
        C1:3C:D0:6C:D8:62:46:39:7F:F8:51:EF:DE:1E:35:95:7B:CE:E2:FE:E6:F8:83:CF:E7:3E:7B:A8:79:83:34:96
    Fingerprint (SHA1):
        72:FD:A5:FA:E2:92:28:0B:B7:54:97:83:C1:DC:D3:41:82:05:FA:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2617: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2618: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2619: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2620: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2621: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2622: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153210 (0x1dee3ffa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:85:f0:c3:f6:3b:63:27:d7:c7:20:b0:de:fe:24:5c:
                    03:29:46:99:0a:e4:ae:c4:da:dd:24:69:cd:82:05:08:
                    9f:78:33:5e:5e:76:2b:5a:f8:25:cb:3e:e3:17:a9:34:
                    c2:48:2f:bc:21:b0:d4:46:f3:f9:7a:ce:4d:57:f7:e2:
                    38:f5:88:3f:79:6a:5e:dc:30:4a:39:7a:1c:7e:7f:08:
                    d4:03:a2:32:00:99:ee:62:c3:ce:54:dc:85:b3:5d:db:
                    03:1b:04:a8:6f:75:1b:2c:fd:68:7a:71:8f:46:60:cc:
                    bf:02:09:d2:af:c1:68:0c:91:fd:4c:30:dc:53:8b:8c:
                    17:75:2a:70:30:7f:d1:3d:7c:e0:a8:f3:3d:44:8d:41:
                    af:54:69:d4:3e:50:53:21:7c:11:9c:4c:85:86:16:17:
                    11:a6:7d:bf:cf:ff:05:c4:93:bb:bb:3f:f0:e6:e4:57:
                    ec:f7:8a:df:00:0a:89:e6:55:92:c1:28:e9:80:fc:a8:
                    7d:b7:9b:44:46:d8:da:77:92:6e:2f:22:28:2b:d2:c3:
                    ed:ca:72:ab:cc:b9:c3:75:ca:0b:6d:0c:75:58:01:0e:
                    0b:2e:b9:cc:b1:f4:f5:6f:1d:df:bf:f0:b0:30:62:7a:
                    92:23:e6:3d:b2:d2:1e:11:a5:27:a3:cb:89:49:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:42:a9:4b:05:6f:fd:3c:0d:4e:bf:27:e8:a3:1a:64:
        b6:0a:28:90:b4:d0:3c:4f:e0:8a:8a:96:79:a5:cb:e2:
        ef:7e:94:74:24:9d:a3:d8:4e:7f:72:2a:53:2d:bd:6c:
        cd:b0:af:a1:d6:b7:6d:60:64:bd:d9:9a:5d:34:28:7f:
        75:1b:28:ec:57:fc:d7:4e:8f:80:74:0d:5e:47:62:b6:
        95:b0:19:c7:55:61:10:a4:13:7a:dd:f7:5e:89:78:54:
        48:a1:14:52:ec:af:73:bc:87:58:e0:6d:b2:ec:91:55:
        7b:60:4d:7c:27:9e:31:dd:a2:2a:4b:7e:27:8c:5c:bf:
        50:0a:e9:75:3b:b6:e5:5d:6a:7b:d8:37:8b:1c:12:41:
        cf:77:f0:0b:15:78:36:03:d5:bb:c3:ce:07:05:75:54:
        3b:5e:0c:ac:64:b2:1f:46:98:98:c1:31:43:4c:62:7c:
        fd:c9:c9:f2:00:2d:23:c0:1e:1b:4f:b7:38:1a:1e:69:
        6d:b7:43:a3:46:86:8e:43:83:ff:1d:c4:6f:df:07:61:
        55:5a:d1:70:1f:30:80:b4:03:55:02:78:95:66:48:b8:
        23:0b:b7:37:15:43:32:02:92:6a:fd:f9:85:1b:ac:39:
        ec:6e:de:d3:1f:7c:89:13:1b:ff:9a:b7:61:0e:02:5b
    Fingerprint (SHA-256):
        C1:3C:D0:6C:D8:62:46:39:7F:F8:51:EF:DE:1E:35:95:7B:CE:E2:FE:E6:F8:83:CF:E7:3E:7B:A8:79:83:34:96
    Fingerprint (SHA1):
        72:FD:A5:FA:E2:92:28:0B:B7:54:97:83:C1:DC:D3:41:82:05:FA:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2623: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153210 (0x1dee3ffa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:85:f0:c3:f6:3b:63:27:d7:c7:20:b0:de:fe:24:5c:
                    03:29:46:99:0a:e4:ae:c4:da:dd:24:69:cd:82:05:08:
                    9f:78:33:5e:5e:76:2b:5a:f8:25:cb:3e:e3:17:a9:34:
                    c2:48:2f:bc:21:b0:d4:46:f3:f9:7a:ce:4d:57:f7:e2:
                    38:f5:88:3f:79:6a:5e:dc:30:4a:39:7a:1c:7e:7f:08:
                    d4:03:a2:32:00:99:ee:62:c3:ce:54:dc:85:b3:5d:db:
                    03:1b:04:a8:6f:75:1b:2c:fd:68:7a:71:8f:46:60:cc:
                    bf:02:09:d2:af:c1:68:0c:91:fd:4c:30:dc:53:8b:8c:
                    17:75:2a:70:30:7f:d1:3d:7c:e0:a8:f3:3d:44:8d:41:
                    af:54:69:d4:3e:50:53:21:7c:11:9c:4c:85:86:16:17:
                    11:a6:7d:bf:cf:ff:05:c4:93:bb:bb:3f:f0:e6:e4:57:
                    ec:f7:8a:df:00:0a:89:e6:55:92:c1:28:e9:80:fc:a8:
                    7d:b7:9b:44:46:d8:da:77:92:6e:2f:22:28:2b:d2:c3:
                    ed:ca:72:ab:cc:b9:c3:75:ca:0b:6d:0c:75:58:01:0e:
                    0b:2e:b9:cc:b1:f4:f5:6f:1d:df:bf:f0:b0:30:62:7a:
                    92:23:e6:3d:b2:d2:1e:11:a5:27:a3:cb:89:49:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:42:a9:4b:05:6f:fd:3c:0d:4e:bf:27:e8:a3:1a:64:
        b6:0a:28:90:b4:d0:3c:4f:e0:8a:8a:96:79:a5:cb:e2:
        ef:7e:94:74:24:9d:a3:d8:4e:7f:72:2a:53:2d:bd:6c:
        cd:b0:af:a1:d6:b7:6d:60:64:bd:d9:9a:5d:34:28:7f:
        75:1b:28:ec:57:fc:d7:4e:8f:80:74:0d:5e:47:62:b6:
        95:b0:19:c7:55:61:10:a4:13:7a:dd:f7:5e:89:78:54:
        48:a1:14:52:ec:af:73:bc:87:58:e0:6d:b2:ec:91:55:
        7b:60:4d:7c:27:9e:31:dd:a2:2a:4b:7e:27:8c:5c:bf:
        50:0a:e9:75:3b:b6:e5:5d:6a:7b:d8:37:8b:1c:12:41:
        cf:77:f0:0b:15:78:36:03:d5:bb:c3:ce:07:05:75:54:
        3b:5e:0c:ac:64:b2:1f:46:98:98:c1:31:43:4c:62:7c:
        fd:c9:c9:f2:00:2d:23:c0:1e:1b:4f:b7:38:1a:1e:69:
        6d:b7:43:a3:46:86:8e:43:83:ff:1d:c4:6f:df:07:61:
        55:5a:d1:70:1f:30:80:b4:03:55:02:78:95:66:48:b8:
        23:0b:b7:37:15:43:32:02:92:6a:fd:f9:85:1b:ac:39:
        ec:6e:de:d3:1f:7c:89:13:1b:ff:9a:b7:61:0e:02:5b
    Fingerprint (SHA-256):
        C1:3C:D0:6C:D8:62:46:39:7F:F8:51:EF:DE:1E:35:95:7B:CE:E2:FE:E6:F8:83:CF:E7:3E:7B:A8:79:83:34:96
    Fingerprint (SHA1):
        72:FD:A5:FA:E2:92:28:0B:B7:54:97:83:C1:DC:D3:41:82:05:FA:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2624: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2625: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2626: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2627: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2628: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2629: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153209 (0x1dee3ff9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d3:50:7f:bd:d2:1e:ee:71:52:06:f3:f6:13:f6:3d:
                    5d:84:fa:da:8e:6f:6f:b6:b7:2f:d1:50:12:70:21:0d:
                    9c:52:96:d6:4e:4e:b2:fb:67:10:af:fa:70:ec:d1:7b:
                    e4:50:0b:e1:69:ed:88:8d:32:b4:49:7d:a5:00:ad:6d:
                    ba:de:d1:2b:c7:c5:bf:8e:5d:98:29:52:f9:bd:f1:e8:
                    12:ac:d5:7f:f4:44:fb:76:4c:70:de:a0:62:72:43:9e:
                    78:8d:4d:ca:9c:96:30:d2:1d:d9:00:87:4c:e4:78:2e:
                    54:03:fc:03:7f:e3:2d:8d:22:5d:23:c5:0f:41:80:78:
                    dc:1d:21:88:8a:1c:52:c4:88:8e:87:82:a1:58:9f:18:
                    91:aa:ae:40:31:7a:15:2f:b0:49:52:fa:fd:32:1f:c7:
                    67:95:ea:39:71:dd:9d:53:18:16:3d:ef:a2:4f:e1:43:
                    0b:3c:0c:ac:1a:1c:28:9a:85:51:a6:fe:d5:01:b6:77:
                    36:7d:5c:00:43:c9:0a:37:47:e4:eb:dd:ed:b3:f9:e6:
                    88:0e:a4:94:b4:6d:e5:66:47:a2:4c:38:53:70:62:07:
                    9d:3f:12:69:76:2e:6b:71:85:af:66:60:69:02:f2:83:
                    30:bc:ba:c6:75:61:ed:ee:d4:7d:69:dc:50:de:aa:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:c3:a8:a7:6f:84:84:9b:b5:56:74:f0:02:76:f7:20:
        86:20:2f:3f:8b:61:a9:9b:0c:a6:4d:20:37:5f:2d:27:
        a0:84:c8:74:30:e0:85:c4:4b:9c:c2:0f:d8:33:8f:54:
        cb:63:65:a1:d6:05:52:05:8e:e9:32:38:ca:99:31:2d:
        5e:c4:14:75:a1:3b:e1:34:34:45:66:cd:43:68:9e:c6:
        e4:cf:7b:49:78:fc:af:26:87:43:e1:89:26:71:27:a6:
        e1:be:cf:53:60:bd:74:57:8f:c8:29:12:0c:a6:52:9d:
        a5:90:0f:27:09:04:be:24:e8:48:cd:ae:ab:53:a2:1b:
        d3:9c:0d:88:95:80:9c:2e:4d:84:c7:cc:59:84:49:c2:
        5e:50:15:2f:5f:1f:93:89:1b:13:7c:2c:33:6d:e5:e4:
        fa:1c:c0:b4:7a:93:d5:7b:27:76:a5:93:ce:2a:64:b5:
        cf:d0:be:4a:d3:65:4e:16:76:cb:ed:02:8c:2d:05:b3:
        55:c2:da:9e:32:24:4d:59:94:93:7d:58:23:31:b2:f8:
        36:5a:4e:ef:9a:d0:18:88:c9:d4:a7:3c:20:58:d4:9d:
        5a:5f:f7:46:05:a1:fa:82:a1:15:37:33:91:21:0c:b0:
        d4:c0:cd:1a:50:21:ef:4e:13:95:d8:51:59:38:df:f8
    Fingerprint (SHA-256):
        70:6A:FF:EB:04:39:6A:98:DC:03:8E:18:C6:6E:66:10:6C:5D:F7:3A:17:40:30:49:CE:E8:33:B9:59:39:C7:4F
    Fingerprint (SHA1):
        C3:D4:4F:A5:CF:34:70:0B:B9:E3:EB:4B:19:45:83:A4:B6:A8:5B:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2630: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153209 (0x1dee3ff9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:32:25 2017
            Not After : Mon May 02 15:32:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d3:50:7f:bd:d2:1e:ee:71:52:06:f3:f6:13:f6:3d:
                    5d:84:fa:da:8e:6f:6f:b6:b7:2f:d1:50:12:70:21:0d:
                    9c:52:96:d6:4e:4e:b2:fb:67:10:af:fa:70:ec:d1:7b:
                    e4:50:0b:e1:69:ed:88:8d:32:b4:49:7d:a5:00:ad:6d:
                    ba:de:d1:2b:c7:c5:bf:8e:5d:98:29:52:f9:bd:f1:e8:
                    12:ac:d5:7f:f4:44:fb:76:4c:70:de:a0:62:72:43:9e:
                    78:8d:4d:ca:9c:96:30:d2:1d:d9:00:87:4c:e4:78:2e:
                    54:03:fc:03:7f:e3:2d:8d:22:5d:23:c5:0f:41:80:78:
                    dc:1d:21:88:8a:1c:52:c4:88:8e:87:82:a1:58:9f:18:
                    91:aa:ae:40:31:7a:15:2f:b0:49:52:fa:fd:32:1f:c7:
                    67:95:ea:39:71:dd:9d:53:18:16:3d:ef:a2:4f:e1:43:
                    0b:3c:0c:ac:1a:1c:28:9a:85:51:a6:fe:d5:01:b6:77:
                    36:7d:5c:00:43:c9:0a:37:47:e4:eb:dd:ed:b3:f9:e6:
                    88:0e:a4:94:b4:6d:e5:66:47:a2:4c:38:53:70:62:07:
                    9d:3f:12:69:76:2e:6b:71:85:af:66:60:69:02:f2:83:
                    30:bc:ba:c6:75:61:ed:ee:d4:7d:69:dc:50:de:aa:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:c3:a8:a7:6f:84:84:9b:b5:56:74:f0:02:76:f7:20:
        86:20:2f:3f:8b:61:a9:9b:0c:a6:4d:20:37:5f:2d:27:
        a0:84:c8:74:30:e0:85:c4:4b:9c:c2:0f:d8:33:8f:54:
        cb:63:65:a1:d6:05:52:05:8e:e9:32:38:ca:99:31:2d:
        5e:c4:14:75:a1:3b:e1:34:34:45:66:cd:43:68:9e:c6:
        e4:cf:7b:49:78:fc:af:26:87:43:e1:89:26:71:27:a6:
        e1:be:cf:53:60:bd:74:57:8f:c8:29:12:0c:a6:52:9d:
        a5:90:0f:27:09:04:be:24:e8:48:cd:ae:ab:53:a2:1b:
        d3:9c:0d:88:95:80:9c:2e:4d:84:c7:cc:59:84:49:c2:
        5e:50:15:2f:5f:1f:93:89:1b:13:7c:2c:33:6d:e5:e4:
        fa:1c:c0:b4:7a:93:d5:7b:27:76:a5:93:ce:2a:64:b5:
        cf:d0:be:4a:d3:65:4e:16:76:cb:ed:02:8c:2d:05:b3:
        55:c2:da:9e:32:24:4d:59:94:93:7d:58:23:31:b2:f8:
        36:5a:4e:ef:9a:d0:18:88:c9:d4:a7:3c:20:58:d4:9d:
        5a:5f:f7:46:05:a1:fa:82:a1:15:37:33:91:21:0c:b0:
        d4:c0:cd:1a:50:21:ef:4e:13:95:d8:51:59:38:df:f8
    Fingerprint (SHA-256):
        70:6A:FF:EB:04:39:6A:98:DC:03:8E:18:C6:6E:66:10:6C:5D:F7:3A:17:40:30:49:CE:E8:33:B9:59:39:C7:4F
    Fingerprint (SHA1):
        C3:D4:4F:A5:CF:34:70:0B:B9:E3:EB:4B:19:45:83:A4:B6:A8:5B:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2631: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2632: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153214 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2633: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2634: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2635: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153215 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2636: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2637: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2638: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153216 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2639: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2640: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2641: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153217 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2642: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2643: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2644: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153218 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2645: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2646: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2647: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153219 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2648: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2649: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2650: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153220 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2651: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2652: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2653: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153221 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2654: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2655: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2656: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153222 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2657: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2658: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2659: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2660: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153223 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2661: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2662: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153224 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2663: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2664: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153225 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2665: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2666: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2667: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2668: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2669: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153226 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2670: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2671: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153227 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2672: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2673: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153228 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2674: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2675: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2676: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2677: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2678: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153229 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2679: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2680: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153230 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2681: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2682: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153231 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2683: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2684: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2685: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2686: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2687: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153232 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2688: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2689: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153233 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2690: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2691: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153234 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2692: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2693: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2694: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2695: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2696: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153235   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2697: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2698: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2699: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2700: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153236   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2701: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2702: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153214 (0x1dee3ffe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:27 2017
            Not After : Mon May 02 15:32:27 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:f9:48:c8:5c:2a:6b:15:37:6f:51:42:6c:08:ce:64:
                    d8:14:d7:c3:8b:60:e2:80:9d:cc:15:8f:4e:a5:39:33:
                    f3:48:b5:5b:d8:3b:5f:e1:6f:a2:8e:a0:d7:5c:58:c4:
                    b9:ea:30:ac:fd:26:43:a0:2d:3a:f2:76:a6:fa:4e:c9:
                    22:1c:36:15:97:0b:ef:04:9b:06:87:04:97:c3:1f:0d:
                    d1:25:38:0e:69:dd:d3:80:55:fc:4c:20:bf:dd:f2:f5:
                    2b:11:b3:19:b7:d4:a0:72:43:bd:d7:48:32:a6:84:68:
                    45:51:4a:57:94:76:80:10:06:b5:a9:57:7c:44:21:4a:
                    e6:f3:3b:99:93:13:24:d9:cb:12:5f:f3:74:0d:66:e6:
                    48:01:26:17:1d:36:8a:5a:e0:34:ab:c1:4e:51:f7:82:
                    f0:a7:3e:15:0a:7e:60:2b:c3:f7:e1:b8:3b:1b:ca:ff:
                    9f:68:aa:bb:ac:83:4d:58:54:41:b7:9a:21:b7:54:d3:
                    36:a8:9d:1d:31:17:5d:ab:8f:03:cb:6b:06:bf:74:8b:
                    16:7d:ac:f5:13:78:2d:8f:28:71:6c:22:7c:ab:43:4d:
                    a8:6a:6b:38:41:2f:a4:04:22:39:99:ae:1e:16:55:8f:
                    3d:4d:b8:ef:24:f0:99:94:8f:07:0a:62:f2:8c:06:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:53:9d:10:ce:22:5c:d1:fe:29:1c:e7:6b:d5:9a:c0:
        78:f5:7f:ab:02:26:c0:51:a5:e5:c0:e6:c3:f5:3d:f6:
        dd:a2:8b:6c:ac:ef:ee:fa:b1:b8:28:4b:a7:d2:92:8f:
        f2:c6:84:a7:3b:1f:a5:0c:a4:f4:16:b2:7d:84:0f:ca:
        67:44:7b:7e:27:9f:a8:7c:20:f3:a4:de:24:93:83:68:
        e6:b9:d0:95:6f:47:af:58:6b:a2:fc:02:d4:db:1e:d8:
        a9:5e:73:00:6f:e5:ba:ea:fe:7f:a9:ed:fa:cc:2f:ee:
        fa:1c:7d:57:40:a4:07:13:b3:b5:28:28:68:1b:71:a6:
        90:8c:b7:4f:8a:7c:22:1e:1b:98:73:01:2e:b8:34:2b:
        c0:cb:77:48:33:7d:e9:3c:c3:b7:d8:f8:6d:e0:9f:e5:
        9b:d3:bb:ff:b7:dd:71:a2:b4:6b:26:72:f6:08:0c:89:
        e3:37:b1:7f:21:35:00:38:8e:5b:2e:e6:b2:da:8c:37:
        83:2f:c6:55:ef:1a:9e:e6:05:f3:61:23:7f:16:e1:53:
        cf:4c:7b:e1:4d:e5:9a:ba:9a:80:88:57:8f:91:89:bd:
        a9:88:6c:4a:44:e0:9e:ae:07:2a:54:e7:d4:d8:b3:ba:
        d3:4f:ed:52:3d:7f:fc:5f:64:22:bf:63:a3:a8:9d:6f
    Fingerprint (SHA-256):
        10:47:B7:57:89:97:CC:05:2F:F8:43:4C:D6:78:76:6D:26:F8:9E:C5:55:4A:FE:53:F4:37:08:C3:ED:AF:74:53
    Fingerprint (SHA1):
        A4:27:1D:53:7F:DD:5C:E9:50:4A:DE:B3:B2:5B:93:BF:FA:E6:68:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153215 (0x1dee3fff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:32:28 2017
            Not After : Mon May 02 15:32:28 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ae:8b:fe:84:35:53:07:40:11:0a:4c:c4:37:81:00:
                    db:2a:89:3f:1f:8d:90:7a:c6:f6:60:15:21:76:24:e9:
                    4e:11:ba:9d:cf:07:1b:ce:e6:19:ed:0e:9b:7f:f1:a2:
                    64:96:16:0e:a7:dc:19:38:7c:fb:a5:53:3e:f4:62:f2:
                    e4:01:ef:24:24:69:2e:e9:71:65:1b:b1:e2:47:d8:68:
                    64:5a:63:41:2b:f4:a8:81:a0:9e:bc:ab:c6:83:d9:26:
                    ef:7f:a8:e2:01:af:b7:8d:8d:8b:37:10:37:14:84:06:
                    cc:63:df:50:23:c3:8e:ff:39:a4:77:9e:a9:86:82:12:
                    46:32:37:e4:d6:ba:a0:eb:5d:ad:e5:5a:f3:95:df:0b:
                    68:dd:c7:5d:3d:d5:e2:76:eb:2c:19:f7:50:e2:11:79:
                    00:67:a2:c4:cc:03:37:d0:f1:2c:c9:9a:bb:56:ef:79:
                    ed:ff:38:a1:82:6b:9b:03:bf:48:18:55:e9:2e:26:2d:
                    1f:6b:c0:ab:a4:2f:3d:ba:2e:9c:aa:b2:ba:c9:f6:3d:
                    09:22:7e:21:27:2b:4c:b3:37:76:62:61:90:24:f6:d3:
                    71:e5:75:42:87:50:3a:9b:c7:8a:21:59:7d:a5:bb:0a:
                    5d:92:f2:0f:05:ef:e1:79:1c:d4:34:56:55:e1:84:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:93:36:88:fa:14:e7:e6:7d:e3:70:4c:41:80:38:98:
        70:96:69:85:d6:d7:f9:05:f1:9e:d0:3c:c7:c6:72:ab:
        0e:d7:5d:fa:a9:88:2a:fd:78:4f:8b:33:25:3a:ce:47:
        2b:b2:16:40:f8:c2:5a:de:f9:81:a9:d2:70:ad:c5:6d:
        1e:6b:02:a6:9e:25:62:a3:58:b3:80:eb:91:c3:75:b7:
        14:ec:90:95:ee:e6:1d:84:cd:38:83:92:d6:2e:2c:29:
        bb:3b:4e:15:44:ef:ed:bc:fd:a5:78:80:24:cf:19:39:
        34:e7:de:35:86:b3:ec:48:5a:ea:48:cf:98:d2:fd:1f:
        dc:31:18:a4:00:2f:bd:9e:21:16:9f:ce:a7:b6:a6:7c:
        d2:a5:9d:e3:37:de:62:84:1e:37:77:06:6a:fe:9d:ea:
        ee:a3:b3:5e:e2:85:a2:6d:54:a9:08:1f:6b:5b:bd:0d:
        2e:6a:41:3f:02:d1:39:f8:29:14:7c:d0:6f:c5:b3:7a:
        a8:0b:d7:9e:97:a0:98:62:13:76:a0:57:e1:d5:63:f9:
        af:bf:0f:ba:f0:dc:bc:ee:fe:78:d2:bb:46:76:db:2c:
        ca:b2:e5:cd:72:c1:22:2d:d2:a3:6b:16:17:67:d4:44:
        18:65:5b:05:63:fc:d0:e3:76:70:a0:b4:aa:62:63:f6
    Fingerprint (SHA-256):
        CC:20:CA:1C:AB:08:A4:8E:AD:3A:A1:48:BF:85:DF:8A:C6:B0:86:F4:BF:4B:D9:78:9A:9A:AD:88:90:78:BA:CE
    Fingerprint (SHA1):
        14:5C:9B:FE:24:A6:03:CE:A3:0C:09:FD:21:C8:33:A5:65:D3:BC:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2704: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153216 (0x1dee4000)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:32:29 2017
            Not After : Mon May 02 15:32:29 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:d2:16:78:a7:f7:19:a6:6c:4f:2f:36:be:33:fe:84:
                    53:5a:6d:a0:04:ad:d7:a1:e7:f0:53:63:1e:2f:7c:0f:
                    c3:f8:e2:75:9b:ee:2d:51:71:0d:65:5d:60:81:bf:60:
                    08:8e:01:5d:b9:64:d6:1f:a9:8b:43:5d:86:e3:b1:9a:
                    3e:81:d3:81:b4:72:65:b3:d8:cf:a6:54:9e:a2:b5:ea:
                    05:48:07:2b:82:74:93:e0:5d:9f:c2:64:1b:fd:81:03:
                    07:fc:db:49:56:4d:a3:0b:83:3d:42:a3:75:e3:21:86:
                    a2:3f:49:bb:ba:d8:16:d4:c8:66:6d:3d:e0:80:b0:f0:
                    e5:f8:3d:11:e5:0e:66:67:a0:c5:78:bf:d7:7f:26:a0:
                    13:0d:85:a6:d5:4a:d6:20:07:12:97:08:dc:c1:be:85:
                    ea:59:f1:81:53:77:4c:76:a4:62:6e:45:4f:2c:f1:0f:
                    99:10:d1:f0:d2:f2:96:ec:29:93:a9:10:9e:2f:f1:0d:
                    c1:2b:2f:a2:d0:3c:05:c4:30:b6:98:f3:09:66:04:e8:
                    02:fb:a0:0c:32:5b:82:e4:eb:23:b1:ff:1c:e8:f0:8a:
                    05:c6:14:3d:8d:f3:10:9d:b0:3b:88:72:74:14:4e:d8:
                    5f:67:29:07:05:db:87:32:84:d9:26:28:72:27:7c:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:1c:04:0e:dd:45:9b:71:b2:6d:24:52:5c:fa:e3:d9:
        f8:e8:ca:c0:ba:20:e4:32:7f:b1:a8:5c:e0:14:96:ee:
        24:9b:8e:e6:7a:10:d3:ef:61:ad:95:f8:45:0f:7f:ae:
        b8:91:aa:14:ed:e6:fb:0e:40:35:cf:ca:ca:49:e5:69:
        f8:c5:07:e2:a6:27:1f:36:48:cf:25:65:55:3e:bc:0c:
        2a:53:55:1b:1b:1d:cb:ae:46:ca:f2:39:8c:4f:49:e7:
        4a:e7:3f:b3:f3:ad:d1:c4:83:2f:94:13:83:24:83:d2:
        6f:35:d0:a5:a6:6d:92:ae:95:ee:88:87:88:9a:89:2f:
        d7:66:b7:23:66:f1:4a:cc:f9:14:61:85:80:cf:95:e1:
        46:46:90:69:58:03:c3:a1:05:90:1a:f5:f9:d9:0e:53:
        30:de:93:b9:b6:9c:fc:fd:ad:1c:a0:8e:0f:53:57:a8:
        4d:b6:79:93:14:1e:9e:81:b2:17:1e:e6:eb:78:bd:02:
        dc:d5:0c:1d:da:0e:1a:4d:36:61:1d:bf:46:98:af:15:
        1d:5e:4a:a0:e2:fb:68:ce:cd:32:a1:f9:e3:32:50:55:
        4c:e8:49:0f:18:98:30:9e:5a:fd:95:6f:5b:cc:06:16:
        a6:e9:3e:54:de:10:1b:db:ba:56:ac:55:b7:49:b5:28
    Fingerprint (SHA-256):
        ED:88:71:B6:1C:49:16:81:61:FC:1D:69:6E:D1:40:45:7E:14:6C:E8:39:03:A0:7F:22:51:5B:2C:93:24:65:8A
    Fingerprint (SHA1):
        43:7E:36:17:F5:1E:D3:83:98:AB:93:B0:D2:F9:4B:3B:33:FA:DF:77
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2705: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153217 (0x1dee4001)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:32:29 2017
            Not After : Mon May 02 15:32:29 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7e:10:14:98:bd:d5:fa:9b:32:c0:a4:53:ac:f6:b2:
                    23:6b:f7:ae:37:19:18:ed:2c:54:29:d5:53:d5:f4:fb:
                    b3:d7:04:94:b5:4b:c1:4a:99:a0:9e:b5:96:28:49:59:
                    f8:fa:85:a0:80:b7:3a:24:29:97:ca:b9:92:37:f5:45:
                    88:86:a5:91:0c:09:dd:63:18:b4:40:6e:2c:97:a0:6b:
                    a0:b7:bf:be:5a:0e:1e:e9:8e:60:c3:6e:07:f4:b9:f1:
                    62:1f:ac:f8:68:74:c8:33:0f:07:9a:85:29:c4:9c:37:
                    5c:f7:aa:05:8a:2a:2f:a3:4f:7c:14:3d:60:b0:9b:ee:
                    e3:ae:62:34:e6:cd:40:e7:a5:11:98:6a:44:d2:51:47:
                    34:73:9f:4f:19:0d:5f:89:88:66:07:45:67:08:9f:52:
                    62:df:6c:38:fe:5d:b2:9f:0c:bb:3f:43:3e:74:ff:1a:
                    9c:aa:39:53:9c:3e:09:68:3d:e0:1a:1c:29:70:ba:ec:
                    0d:e4:7c:9a:48:6d:09:9d:50:9c:2d:d0:fd:2b:c9:ac:
                    45:2f:34:f8:c2:1d:88:94:e4:21:6e:f7:d3:ee:2a:b0:
                    bb:08:be:b0:6d:a4:de:ee:cc:98:e3:f6:1b:d0:df:11:
                    46:a2:cc:a0:2f:5f:26:bb:16:db:ae:66:50:c7:cb:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:db:2a:b3:63:b7:f1:fb:9d:32:99:55:30:78:df:4f:
        8a:a3:e7:98:9c:7b:fa:eb:b0:90:17:3d:6b:f4:b6:ab:
        83:58:bf:fe:81:ee:05:ac:1c:68:bc:e1:d7:09:f7:dc:
        f1:26:fd:17:15:1d:38:9e:9e:48:d6:97:f8:d8:25:44:
        14:e1:8e:ed:d3:69:28:06:cd:99:03:33:86:99:26:a6:
        c1:f8:5d:88:d5:fe:ed:c2:e5:ec:3f:1a:e3:ce:82:a8:
        25:05:d2:8c:c7:84:95:4a:c7:5a:42:69:e8:78:b6:6f:
        1d:11:32:33:ae:67:5f:82:38:a8:d8:3a:a3:3d:50:17:
        67:ae:21:3d:08:4f:f0:8c:6b:7e:fa:1a:f9:b2:72:82:
        a4:7b:3a:f4:ba:21:84:2c:8c:bd:a2:15:c8:b4:81:cf:
        d9:34:ad:e2:70:2a:b9:95:0f:ac:fb:1b:96:84:c8:9b:
        f6:47:14:fe:e0:9b:69:2d:59:af:cb:c6:f6:d3:91:e6:
        1e:99:b9:ca:b7:cc:3d:67:34:d8:7a:eb:ce:12:81:25:
        8f:77:39:88:b2:36:65:0f:cc:72:2c:09:ac:1a:fc:dd:
        94:b5:fc:78:98:d3:9e:87:bd:c7:0f:ee:15:1d:91:31:
        60:95:58:82:dc:11:e4:13:a0:92:80:87:a2:6c:a2:d2
    Fingerprint (SHA-256):
        6E:5C:A8:E0:CE:AB:DE:11:24:57:6A:3C:A3:C7:04:83:97:88:16:9A:4B:E0:60:E4:25:C0:57:F2:88:EF:BB:20
    Fingerprint (SHA1):
        D4:CB:59:56:71:75:21:BF:41:61:F6:43:FA:51:C7:F9:08:2C:E0:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2706: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153218 (0x1dee4002)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:32:30 2017
            Not After : Mon May 02 15:32:30 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:2e:80:ef:58:7a:c4:92:52:bc:07:16:b6:f9:d7:1f:
                    80:a3:80:03:61:a2:4e:7a:af:8d:82:7b:7f:d5:a6:80:
                    e4:56:8a:f1:58:77:9a:64:b0:9c:89:fb:eb:9d:52:94:
                    46:f6:06:81:a8:02:ab:4b:78:53:8d:33:0e:21:ff:39:
                    0c:62:03:00:9d:3e:38:0c:56:64:eb:b3:26:af:63:8d:
                    14:61:4e:27:a2:8a:3e:98:a8:83:35:16:be:17:0a:fc:
                    7c:75:d2:6c:40:bd:a8:6a:27:28:cd:e1:49:48:71:b1:
                    02:e2:2a:07:ee:96:eb:a6:71:1b:6f:34:5c:3e:c6:c3:
                    a7:64:eb:dd:60:3d:cb:a1:aa:cb:1a:b5:45:bc:6e:12:
                    ef:15:cd:8f:c8:6a:46:be:37:f3:99:d0:bb:8c:13:7e:
                    8d:a1:07:c0:e9:94:fe:2d:3f:a5:ac:d5:a7:a0:cb:3a:
                    0d:71:0f:2f:6a:84:b7:4a:0e:c1:78:06:ae:8b:25:0e:
                    99:41:3f:75:56:fd:88:21:55:6b:b8:ea:83:13:73:6c:
                    c1:36:13:b2:a0:31:b1:72:58:ce:2a:2f:b1:d2:81:f5:
                    48:5c:42:df:29:84:77:10:03:0f:b9:5b:af:e6:a9:af:
                    91:53:4f:35:65:09:d0:b3:74:25:7b:eb:64:cd:f3:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:30:e8:7c:ff:4e:c7:25:ee:f8:34:76:28:4c:c1:46:
        82:ce:5a:c7:f7:ea:8f:f7:ca:36:96:c6:5c:12:5c:f8:
        f1:87:8d:41:09:a1:92:c8:f8:11:e5:be:9b:5b:6c:e4:
        c2:c1:d7:e5:33:4a:62:9f:80:05:8d:da:3f:1c:01:48:
        86:00:39:64:6d:c7:99:58:fd:ae:ac:a4:85:b0:5e:2a:
        2f:0e:57:52:94:15:64:71:82:00:5e:c1:51:be:d1:f5:
        c7:1d:bf:39:45:71:07:b9:ae:33:cb:56:ce:e5:2b:57:
        84:76:55:42:39:58:78:a6:f4:44:1c:de:1a:41:bb:39:
        8e:31:12:f0:37:e1:ab:45:55:ff:ec:e7:e1:52:c9:df:
        83:e4:b9:94:9f:09:e7:14:e9:0d:2d:88:78:07:e4:82:
        34:cd:91:aa:e1:f3:eb:12:6b:21:75:d7:76:95:c6:83:
        9b:a0:c8:6e:10:0d:65:8f:a9:50:eb:b1:9f:f0:97:b7:
        97:29:aa:23:be:99:e5:12:20:72:52:73:b7:00:e3:ef:
        3d:ed:c3:4e:7d:34:07:50:51:63:ee:45:e9:40:39:de:
        03:87:92:3e:66:56:a5:53:1d:49:21:cf:b0:95:8c:4e:
        d8:d6:21:c4:21:76:d6:bb:95:02:9c:ee:cd:76:2e:aa
    Fingerprint (SHA-256):
        B4:8B:9E:F8:F1:4A:06:0C:12:21:E5:BE:37:21:D0:B1:C5:A1:2E:8E:23:BB:5C:7E:A3:83:2C:4F:3A:54:5C:F3
    Fingerprint (SHA1):
        E5:06:C1:8D:26:45:72:A6:64:91:07:5A:C4:66:4E:0D:4F:A7:A8:5D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2707: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153219 (0x1dee4003)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:32:30 2017
            Not After : Mon May 02 15:32:30 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:f2:a2:1d:44:11:23:d4:c3:2e:22:95:04:fb:c1:1d:
                    f9:43:08:5b:cb:26:03:32:c0:71:6c:46:9c:81:7a:66:
                    bd:11:f6:12:4e:ab:d9:6f:10:37:9f:9e:5e:2a:2b:e1:
                    d1:6d:28:64:50:98:ef:94:2e:1a:d3:ad:ab:c9:6e:35:
                    c2:8d:d3:f9:24:55:95:0b:f0:5a:39:59:87:ee:e7:ff:
                    b5:31:b6:ca:fc:85:e2:94:f5:80:2e:dd:53:7a:8a:c1:
                    06:eb:d6:9c:7f:39:0d:9a:1a:67:4b:e5:ea:e0:f2:d3:
                    70:9d:7a:aa:2e:9b:9e:05:e3:4b:e1:24:7b:91:6d:84:
                    ca:c8:1b:4b:d9:45:c4:c9:6c:4b:67:32:5a:53:e7:22:
                    e4:7a:05:25:5c:ff:cf:47:fc:50:cf:fd:fc:8f:ef:e2:
                    f0:e1:b5:16:29:8a:ed:23:99:44:80:a8:f3:b2:93:21:
                    74:1e:12:37:ed:d8:63:b9:1b:86:cb:19:4d:cc:a1:46:
                    26:c1:5c:05:46:67:d5:e5:c0:6d:cc:6f:51:2f:7b:5c:
                    66:cb:dc:b7:4f:50:4e:dd:0b:f2:0e:47:4b:ae:fb:01:
                    9e:11:06:b9:0b:53:c4:50:b8:0e:9f:28:6e:6b:a1:5b:
                    69:e5:0d:82:f1:cc:c7:ca:2f:09:93:22:7f:3f:72:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:43:9d:09:57:9c:8b:95:37:59:63:9e:c2:ea:90:3c:
        33:06:d1:69:99:c2:d3:34:bc:22:ca:8e:08:15:94:ab:
        ec:31:1c:54:0d:1b:15:ed:eb:75:73:df:46:09:64:95:
        e6:e0:6a:82:ce:47:09:bc:11:cd:e5:db:32:3d:a2:a2:
        66:d5:cb:0d:3b:92:ca:7b:89:5e:31:42:e4:ed:62:f2:
        33:13:26:96:e4:86:77:40:e3:6b:10:a9:c7:64:1b:34:
        2e:0d:d7:49:ec:a8:60:3a:9b:2e:4b:d1:16:7c:da:8f:
        8a:e1:a7:fa:32:ba:0d:b4:50:aa:68:65:b1:52:b0:fb:
        7d:37:05:f4:9c:6d:2c:53:a9:0e:0c:f8:74:4c:30:66:
        ba:ca:e0:d3:e3:69:2f:e0:48:de:03:ae:bd:67:d6:0d:
        33:7f:e2:b2:d8:e2:98:2b:c3:84:c4:f4:5f:38:f3:b7:
        56:45:51:4b:ce:64:84:ff:e2:05:e7:2a:5f:38:c3:b3:
        f3:39:df:4f:cd:45:f6:3b:4e:eb:ad:c0:67:eb:39:34:
        7e:9c:48:94:eb:ab:43:2f:5b:77:f5:75:6e:ac:69:cb:
        57:ae:7a:98:99:f2:be:97:0e:00:c5:b3:f4:a5:99:26:
        64:4c:3e:14:4f:0a:5f:b1:6b:c6:16:85:c9:ff:8c:00
    Fingerprint (SHA-256):
        50:DC:E4:12:49:CB:A1:9C:26:1E:52:B6:81:C2:7E:38:18:95:B7:90:F7:53:FB:8C:B1:B6:C4:3E:15:13:12:FE
    Fingerprint (SHA1):
        14:56:B4:0F:D9:90:89:41:58:08:4E:2F:A5:16:08:E1:A9:64:72:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2708: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153220 (0x1dee4004)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:32:31 2017
            Not After : Mon May 02 15:32:31 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:79:2b:37:22:01:c4:3a:25:5b:30:e2:6a:b4:ab:d3:
                    46:84:76:bf:be:a2:12:83:10:d4:62:a4:63:5d:46:aa:
                    39:88:da:9b:61:bb:c6:57:ea:61:47:db:f5:56:0c:da:
                    71:7b:37:ca:8f:13:6c:a1:24:3c:95:b6:f2:b3:df:6e:
                    68:1f:f5:21:6a:29:b7:2b:eb:48:17:80:52:00:50:0b:
                    6f:21:1a:27:3e:e8:96:b8:6d:1e:b2:ba:ae:c6:40:a1:
                    4c:69:74:c9:c7:e6:d1:3c:05:e2:ca:ec:ef:89:0a:30:
                    22:15:2e:09:8e:bc:ee:6b:cc:8d:8d:fc:db:5e:f0:58:
                    8d:7f:67:a6:e0:d9:3a:84:9c:d9:c0:51:bc:0d:f5:fb:
                    7e:35:c8:68:64:63:3d:71:01:7e:89:79:cd:9d:4e:77:
                    37:9a:bf:4f:45:c8:33:3b:90:d8:1f:ab:70:f5:ea:9d:
                    c9:4b:84:41:f6:fb:83:a0:36:92:06:8d:5e:42:68:6e:
                    d8:ae:65:c9:e1:5b:c8:21:7c:f4:cf:38:1f:2e:53:eb:
                    86:4f:8e:b1:69:eb:ec:25:34:40:9a:29:c4:7d:14:00:
                    d9:75:a5:12:61:22:a5:d2:54:e2:63:7e:29:85:7a:d4:
                    b4:5a:2c:84:d9:98:2b:cf:4f:4f:2a:b4:a8:03:bb:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:bb:35:a2:66:4a:08:c5:63:ff:dd:e7:e2:d5:2d:d0:
        7d:1b:ec:89:14:9d:9c:26:bd:75:a2:2e:64:e4:53:e2:
        59:7a:32:1d:9d:2f:df:38:49:c2:f5:df:c3:a8:42:58:
        6a:fc:28:b6:1b:c6:49:5c:93:28:71:9d:26:2b:2b:50:
        94:c9:74:f0:b5:5d:f3:db:8b:99:03:2d:76:37:d9:df:
        dd:08:28:b4:28:eb:c1:fa:fb:d3:ba:4e:93:fc:1e:f0:
        f6:80:97:e4:7f:43:d8:f3:46:cd:00:fc:6f:0b:b9:7e:
        16:c9:39:6a:a0:44:0a:70:68:2c:f2:b5:6f:13:81:91:
        f7:d3:e7:3f:89:44:eb:8f:e4:24:4d:aa:b8:b8:cf:ad:
        0a:61:dd:1f:37:b7:72:7c:82:a1:14:0c:3c:2d:50:94:
        48:5d:0b:3d:27:dc:78:41:4b:3d:02:26:e8:54:ad:d7:
        40:d2:d5:39:4c:61:8b:66:2b:71:8d:aa:79:0d:30:c8:
        3b:02:c1:88:00:56:0f:d9:c2:34:ae:21:01:2c:9e:e8:
        07:67:55:d4:e0:19:7a:46:66:c1:b5:77:d4:da:a0:dc:
        5a:f8:c7:8a:b2:55:e0:df:a1:7b:e1:9c:fa:50:57:3d:
        e3:41:52:2e:11:54:18:26:a2:e2:4d:85:5c:ca:c1:c0
    Fingerprint (SHA-256):
        17:83:42:45:C2:A0:56:A1:A8:88:81:E7:A9:C9:0C:F5:9F:E9:EF:3D:C5:F2:7C:19:78:72:C8:55:57:BC:6F:4E
    Fingerprint (SHA1):
        5F:16:37:E9:15:E6:5F:D9:6B:94:D2:42:A8:23:11:23:1A:27:49:71
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2709: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153221 (0x1dee4005)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:32:31 2017
            Not After : Mon May 02 15:32:31 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:7d:0d:ec:1a:7a:5d:93:a1:fc:f4:53:eb:35:15:b0:
                    96:17:74:d9:a8:23:5d:8c:dc:29:c3:03:d0:6f:f4:e9:
                    fb:be:5c:09:2c:46:e5:bf:ea:d0:b2:76:a6:bf:c6:5a:
                    8c:38:2e:6f:cf:7b:61:9d:93:eb:92:18:28:45:b0:cb:
                    95:a0:d7:0a:64:65:26:fc:e7:e7:88:50:9d:1d:10:f0:
                    a8:90:58:ad:20:01:4c:ab:8b:10:d2:5a:9c:ca:e1:15:
                    68:92:5d:0c:78:c4:ad:8c:71:6a:b1:8b:3b:fa:e3:f3:
                    a7:e5:b6:b4:81:78:e0:ab:70:06:8d:e0:12:3c:12:82:
                    37:08:48:30:f2:02:31:30:50:45:df:4b:c2:54:97:ff:
                    08:fb:62:ee:62:71:b3:02:94:fb:21:45:80:c7:1a:52:
                    27:33:f4:93:1b:53:77:26:03:2e:98:6e:3f:e5:00:4d:
                    e4:dc:21:5c:19:72:71:1c:21:d6:7f:02:9f:c8:8d:97:
                    ea:36:a2:7d:ae:f6:73:53:08:65:df:1a:3d:87:e7:31:
                    81:1b:29:af:06:58:59:f5:54:76:eb:c1:70:a3:fe:e2:
                    9c:60:3d:05:6b:b3:cc:20:d0:d9:85:3b:29:4f:b2:e9:
                    83:53:09:6a:a9:14:61:a2:14:4a:ce:14:80:d9:53:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:67:09:50:73:f8:8c:15:ad:e3:23:5a:f3:b1:52:70:
        9b:f3:b2:76:50:38:0a:b2:73:44:59:18:35:1d:90:18:
        ef:a9:1e:31:e0:f0:1d:bd:e4:82:46:ff:fe:04:18:e7:
        d7:a5:fa:2d:48:06:9d:ce:28:fc:85:c4:bc:bd:98:a2:
        c5:e6:96:64:82:bb:b9:ce:af:a9:cb:64:2b:ec:4a:cb:
        af:f3:01:36:38:d4:30:cd:ff:73:b3:69:17:95:bd:e2:
        1d:58:10:f5:28:bb:a0:a0:40:ab:0f:08:ba:ad:46:7c:
        a3:61:82:45:b9:01:db:43:0a:f9:cf:60:69:2d:6a:c4:
        88:a8:d9:3e:94:3c:8c:fd:ee:6a:e7:9a:57:e7:b4:2a:
        9f:55:61:0b:8e:d0:16:0d:4d:dc:3e:09:d6:20:82:34:
        3a:c6:a1:c8:26:11:99:76:8e:5c:aa:87:1b:88:0c:c9:
        6d:a5:89:b6:41:48:fd:91:57:5e:6d:e0:0f:15:db:a6:
        34:b7:09:db:5f:e5:1a:1d:b3:17:f3:4a:b9:f9:70:00:
        44:db:6d:49:36:c6:8f:04:10:ed:0b:2c:01:97:40:4e:
        dd:8e:d5:3f:54:1c:db:02:8d:78:7c:3e:47:8b:e3:a2:
        45:82:52:49:aa:05:e7:52:52:5c:94:70:b4:f6:4b:67
    Fingerprint (SHA-256):
        06:8A:3E:CC:2B:F2:2B:74:02:25:1A:F2:11:6B:97:C2:78:9F:BE:A0:C4:74:CE:25:CB:79:59:EC:82:EF:67:BD
    Fingerprint (SHA1):
        D4:3D:B1:D3:46:84:4E:89:5D:95:40:80:EC:AA:58:C7:54:C7:6D:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2710: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153222 (0x1dee4006)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:32:31 2017
            Not After : Mon May 02 15:32:31 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:24:ca:4a:2d:c9:ce:d5:63:12:92:e3:2b:8d:c8:35:
                    a2:34:8f:c1:25:c3:49:8b:5b:87:5a:c6:ff:11:68:18:
                    04:da:63:43:e8:8c:b3:27:ed:c0:31:d9:3e:d9:01:9f:
                    25:0b:a2:35:fa:19:01:1c:67:80:5d:1c:71:88:ac:1f:
                    ed:a2:8a:16:92:05:64:d1:76:14:72:68:c4:fe:c4:78:
                    ac:57:4e:a1:5a:7f:0a:a3:b4:3d:38:90:8a:ab:8e:31:
                    14:b7:05:59:aa:46:61:04:f5:56:62:46:2e:50:f8:eb:
                    d6:db:43:9e:63:89:6b:58:24:b4:e7:9a:b4:23:cd:ce:
                    07:b9:0a:d4:03:f1:a5:48:2f:b9:82:81:73:83:ce:6c:
                    a7:3d:4c:dc:2d:88:86:aa:a2:24:9f:5b:18:70:b7:11:
                    75:b0:6e:01:89:5d:ff:45:64:8e:67:05:47:ef:02:ab:
                    f3:60:d6:a3:bb:17:6e:b3:57:e2:80:05:a1:4b:a4:0a:
                    60:cc:9a:98:e3:71:a2:2f:5a:15:ab:b0:b8:b7:78:e6:
                    bf:08:14:89:e2:49:83:1c:9f:5a:08:4b:14:7b:5c:20:
                    b0:6a:4f:66:f3:5f:3d:28:28:0a:46:68:9b:13:66:72:
                    db:f7:0e:ab:df:90:0e:36:f2:cb:06:e6:dd:15:ff:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:99:f1:c0:a5:13:24:77:63:49:fa:fb:1a:dd:81:2a:
        dc:3a:20:23:8c:61:77:b1:85:93:03:eb:6b:45:8b:6f:
        2c:5f:5f:04:06:3a:02:82:18:f4:cb:f7:ee:93:95:a4:
        02:ed:ba:43:4b:a6:f7:40:ac:8b:8f:d5:8e:b5:af:5a:
        d0:ed:29:9b:08:42:7b:2f:c3:e9:0a:6b:79:1c:83:10:
        80:38:a6:b0:37:b7:f9:3e:84:ee:09:81:51:e4:7a:92:
        05:db:89:71:cd:3c:cf:f3:6a:c2:ca:18:2a:0b:4b:b3:
        6a:d7:67:27:f3:24:1d:bc:28:df:59:ea:ca:ff:d6:71:
        e8:68:fd:42:16:43:42:33:b2:26:e6:87:51:51:e4:89:
        c5:8f:2a:5e:b8:56:04:35:46:c6:e1:09:05:60:19:92:
        21:71:4c:be:b0:98:68:f2:72:1a:d3:d2:40:a5:a1:b9:
        18:fc:1b:d5:a7:5d:a0:e9:be:4c:e8:83:ad:d0:4c:32:
        93:7a:40:08:7d:6e:6b:b6:aa:1a:bc:2f:98:89:85:17:
        d1:20:b7:c8:8a:8a:18:5b:90:85:8d:7a:9a:3f:01:5e:
        15:b2:41:4d:92:81:75:dc:82:a0:9a:c6:1e:4b:e1:cb:
        b0:62:7e:b4:c8:01:19:d7:81:86:dd:f8:1e:37:d3:d5
    Fingerprint (SHA-256):
        0C:46:43:F9:52:68:70:D7:4A:3E:A7:74:7C:FF:AC:8E:0A:0F:DA:D8:FC:D7:8C:53:6C:CD:94:8B:7F:A1:41:DE
    Fingerprint (SHA1):
        C4:C1:2E:17:44:02:62:9A:C5:F9:15:38:F7:2D:16:39:07:8F:76:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2711: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2712: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153237 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2713: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2714: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2715: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2716: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153238   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2717: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2718: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2719: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2720: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153239   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2721: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2722: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2723: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2724: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153240   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2725: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2726: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2727: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153237 (0x1dee4015)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:36 2017
            Not After : Mon May 02 15:32:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:45:fa:0c:e2:f4:b4:51:b6:55:7a:79:47:66:18:3f:
                    df:3c:f1:56:db:14:7a:fd:40:42:f0:30:36:fb:c7:39:
                    c5:77:fd:6f:28:9d:44:60:ca:11:cd:75:ef:d5:33:bd:
                    d7:4f:05:c5:5d:3d:c0:eb:af:9a:59:0a:c7:98:1a:7c:
                    4a:25:94:31:88:c6:13:04:22:e0:a0:c2:25:a8:0f:6b:
                    8e:46:c8:92:dc:c8:76:e4:47:b7:b9:7c:9a:33:f0:b2:
                    91:a7:55:3a:27:22:43:01:a9:9f:0c:f3:f3:87:81:82:
                    69:f3:d8:6a:06:87:43:2d:68:4b:8e:c7:ba:f2:96:b4:
                    63:14:e8:d6:85:7a:ce:a7:e5:06:5b:ad:fc:36:d5:15:
                    7c:b4:a3:93:39:7f:19:ad:07:48:e5:63:6e:ae:27:1d:
                    6a:32:aa:e6:99:95:9c:20:b6:40:72:95:1c:e4:5d:6c:
                    af:e5:30:b3:20:25:8b:d6:b8:25:75:61:a5:e7:3b:c3:
                    8e:89:27:a8:e9:cd:0e:ff:eb:6b:a3:fb:58:3d:d6:b3:
                    e9:72:94:ee:5a:88:48:99:eb:a6:93:84:6e:17:fc:92:
                    a8:b6:00:41:77:35:60:46:8a:48:48:ac:ce:a2:4d:c7:
                    f1:a9:28:c4:6f:46:88:90:e9:e4:8e:f0:75:f9:a6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:bc:70:c7:01:d7:a6:27:98:7f:49:89:61:b7:9d:4a:
        a2:7b:c7:3a:15:fa:b4:05:d7:da:60:31:00:0f:a3:d4:
        81:b8:e6:a2:ae:39:5b:a5:d8:8a:70:7d:00:6b:a9:02:
        d2:be:76:6d:10:3b:6e:47:4c:ba:a0:8b:01:36:45:13:
        69:0d:c0:2f:df:5e:96:f3:34:0c:09:f6:35:42:47:73:
        8c:f0:45:e1:49:95:b6:22:8e:9b:f5:f4:e2:1a:ad:dc:
        7d:80:bc:91:c9:7c:ec:11:5a:e9:01:63:10:9e:87:8c:
        af:0e:dc:b6:90:71:fd:ca:b7:e7:a9:62:c2:2f:f0:8c:
        7e:48:14:a0:f8:8e:ba:17:9d:83:62:96:71:c1:c8:b4:
        fa:74:34:84:5b:7e:46:30:51:5d:9b:b5:1c:2e:2e:65:
        db:6e:4d:fe:ae:df:5f:04:26:57:17:b5:56:2c:d2:44:
        11:63:7e:dc:4e:d2:f2:1a:82:4f:70:7b:36:10:ea:f5:
        ce:2c:59:a6:ee:73:86:cf:20:56:ff:47:cd:ae:66:f0:
        db:72:ad:7f:02:f3:a1:52:62:55:15:b0:03:a0:da:91:
        98:e4:3c:a0:83:9d:59:57:59:b7:dd:85:dd:c8:dd:d5:
        59:50:ac:a1:81:e0:7e:1b:a3:b3:4e:bd:ab:51:9f:8e
    Fingerprint (SHA-256):
        4F:65:74:CB:8A:0C:B2:98:42:3D:DE:BF:1A:5A:6B:10:16:DA:17:5C:30:9E:BB:48:05:25:9A:A5:6B:AF:C0:3D
    Fingerprint (SHA1):
        BA:7C:14:3F:C4:6B:3F:38:77:FD:98:6C:36:EA:E3:55:34:95:CE:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2728: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2729: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153238 (0x1dee4016)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:36 2017
            Not After : Mon May 02 15:32:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:4b:67:cf:18:b1:45:42:53:e8:14:9c:77:4a:5b:56:
                    33:16:52:2f:42:9a:1c:22:9a:e7:5f:1e:61:ea:79:70:
                    95:06:bf:11:a2:1e:09:4b:c6:58:80:60:36:90:fa:32:
                    33:50:5b:f7:a8:a1:6e:14:37:7a:c3:38:11:15:50:97:
                    77:94:7c:6f:24:1d:56:56:e3:6d:fd:fb:51:f9:47:0b:
                    35:25:e6:72:06:74:0c:9c:ee:56:3d:a5:f8:4c:c8:f2:
                    04:e2:6a:2b:27:68:ce:02:46:e2:00:d0:bb:85:46:7f:
                    ba:f2:46:de:d2:de:66:07:d1:cb:3d:6a:11:18:a3:fe:
                    07:2d:b6:74:e8:03:33:ca:2f:19:62:3b:e6:74:e3:43:
                    c8:45:c3:0d:0a:2e:76:72:93:2b:63:36:4b:a6:5d:4e:
                    9d:56:65:49:9c:9b:83:04:d3:ec:2f:bf:ca:67:09:12:
                    aa:48:d6:60:c6:12:58:e3:46:c3:94:da:06:c9:74:5d:
                    06:9c:95:16:66:f2:82:f3:a0:6d:0d:bc:69:78:ce:94:
                    42:f4:02:38:62:79:0d:9a:45:53:92:9a:9a:08:30:17:
                    6a:86:c1:33:d3:d6:74:cf:73:ef:4f:a1:bf:21:96:c8:
                    2f:1f:0b:72:9e:4c:d0:df:d6:05:1e:9c:5a:2a:c9:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:05:a5:06:e8:d6:8d:8e:9d:74:bc:38:fd:5e:c1:b5:
        84:e3:ad:9b:d3:c6:ed:e3:2d:e8:d4:93:68:8a:b8:1b:
        24:41:09:2b:30:d9:3d:c6:ce:89:c0:57:e5:00:a4:67:
        e3:83:53:1e:2b:c4:ea:25:90:d9:a6:99:b6:83:27:cd:
        3a:bf:c9:47:c9:83:d0:ae:f7:58:cd:5f:77:0e:09:b1:
        ca:51:e0:0d:26:fb:cb:5f:54:1c:ec:4a:8d:b4:d8:04:
        83:07:d4:52:65:79:f5:a9:22:e4:47:02:09:90:46:5e:
        9f:6b:b4:06:25:50:d0:a7:ed:9a:f0:c4:93:6a:e7:21:
        af:27:46:3a:b4:d1:58:79:5e:20:08:f4:90:8f:7b:44:
        7e:45:3b:b8:5b:c5:ab:6e:76:c9:90:35:f7:27:fe:b4:
        16:4f:55:5f:2d:4b:50:fa:4f:c3:6d:ce:23:c5:87:aa:
        61:88:eb:5e:b2:8b:c4:d1:a7:2d:b4:5d:fe:8a:a5:1d:
        19:8c:03:08:30:d8:e1:15:57:39:71:b4:eb:1c:c5:bd:
        05:9c:38:09:70:9d:38:01:8d:9e:d4:3f:38:41:b4:d6:
        be:d9:67:1d:6c:8e:c7:0e:da:e2:00:81:0c:c3:d5:a7:
        00:04:cb:05:96:fe:96:4c:85:13:13:35:e4:a3:d2:a4
    Fingerprint (SHA-256):
        EB:D1:C2:08:B2:9B:4A:C0:4B:E8:26:B9:74:E6:EE:E7:CC:80:B5:5C:94:38:51:2D:36:06:B6:17:78:6D:FC:BA
    Fingerprint (SHA1):
        C8:F4:CC:EC:5C:28:27:51:EF:B1:DB:97:8C:A6:E8:85:47:66:07:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2730: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2731: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153239 (0x1dee4017)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:37 2017
            Not After : Mon May 02 15:32:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ff:c6:16:7c:11:d5:13:0a:50:7a:ed:21:97:cf:ef:
                    12:2d:9f:56:4d:d8:94:8f:ee:63:9c:49:f4:c2:c4:6d:
                    a1:15:18:46:83:cf:17:e5:59:94:df:3e:6d:d6:4b:c5:
                    05:01:f1:68:e9:aa:63:27:35:12:6e:63:fa:7d:62:35:
                    bc:86:6d:d1:0a:ed:c3:56:4b:d8:05:98:ae:6c:f6:c2:
                    60:f2:6b:27:09:95:c9:5d:41:e6:88:04:cb:a6:2f:8b:
                    77:e1:1a:27:2c:d7:1c:7a:21:f5:e4:d5:58:52:d7:bf:
                    02:79:20:3f:bd:dd:3f:b0:1e:2b:32:f5:e2:7f:db:76:
                    f7:cc:93:5e:1c:70:e1:12:00:22:17:43:dc:1f:3d:ef:
                    18:8e:e7:1a:84:1e:04:28:dd:e7:ef:56:d7:bc:23:80:
                    50:c2:fd:94:58:f4:50:f2:8b:9f:ba:8c:b3:99:a7:85:
                    8b:4c:e0:4d:26:a0:7c:fd:d0:5a:b1:9a:63:ae:02:9b:
                    22:5d:3b:5f:01:e5:79:5f:ee:91:21:56:80:a7:aa:c0:
                    d5:14:c3:78:78:62:96:af:b9:c5:4b:94:95:67:f5:3d:
                    b4:ae:a5:6e:c9:ee:c7:91:98:4c:bb:67:94:3d:94:eb:
                    6b:cd:2b:10:fa:61:74:a0:42:7b:dc:31:b0:e8:2c:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:b3:dd:94:34:b3:01:b0:09:5e:09:cb:43:7d:4d:d2:
        01:fc:ed:75:62:ec:84:90:87:2a:41:ab:af:35:55:e7:
        70:03:ef:86:95:b1:08:12:63:a6:d3:34:b6:d4:c8:b5:
        a8:3b:bc:a2:0f:ae:f4:4e:6d:45:7e:e5:59:d7:f3:7c:
        e9:85:b8:fe:ca:f4:a6:3c:50:12:fd:a2:3e:96:46:1b:
        96:e6:1e:07:8d:ce:01:66:c9:3a:ff:02:f1:54:bc:eb:
        75:08:3e:2e:84:fa:3e:18:9a:4e:ae:24:12:e5:99:af:
        05:2c:6a:72:e4:67:e9:8f:22:5b:b0:56:fd:66:d5:7a:
        0e:b4:7b:fe:66:15:7b:a2:5d:6f:6f:fa:ea:4a:63:44:
        fe:bd:2d:ca:a6:5c:e6:45:79:95:af:08:9c:ea:8b:7d:
        2b:85:67:e3:ca:85:f5:83:e4:30:8e:a1:9c:9a:f6:11:
        60:45:1b:4a:fc:1b:1d:ad:1a:5d:ad:6c:b5:38:de:81:
        df:8f:d0:53:1c:a2:49:98:29:6d:22:6e:2b:1a:00:e3:
        56:cd:8d:38:ee:ef:92:9c:c1:3f:45:8b:c5:aa:3c:32:
        93:a2:7b:51:ee:08:15:2b:bf:c5:e1:f6:f6:03:30:91:
        39:b1:be:18:64:46:a6:20:20:f0:cb:2b:55:5a:8d:3d
    Fingerprint (SHA-256):
        E9:F4:D7:2C:73:8D:01:F1:E2:4A:95:8F:33:1B:B7:5A:2C:F9:67:24:82:D3:6E:57:13:E8:98:30:1B:56:9E:A9
    Fingerprint (SHA1):
        B6:8B:00:35:52:AD:D7:64:4B:25:20:09:01:B5:E4:1F:59:1F:CE:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2732: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2733: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2734: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2735: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2736: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153237 (0x1dee4015)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:36 2017
            Not After : Mon May 02 15:32:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:45:fa:0c:e2:f4:b4:51:b6:55:7a:79:47:66:18:3f:
                    df:3c:f1:56:db:14:7a:fd:40:42:f0:30:36:fb:c7:39:
                    c5:77:fd:6f:28:9d:44:60:ca:11:cd:75:ef:d5:33:bd:
                    d7:4f:05:c5:5d:3d:c0:eb:af:9a:59:0a:c7:98:1a:7c:
                    4a:25:94:31:88:c6:13:04:22:e0:a0:c2:25:a8:0f:6b:
                    8e:46:c8:92:dc:c8:76:e4:47:b7:b9:7c:9a:33:f0:b2:
                    91:a7:55:3a:27:22:43:01:a9:9f:0c:f3:f3:87:81:82:
                    69:f3:d8:6a:06:87:43:2d:68:4b:8e:c7:ba:f2:96:b4:
                    63:14:e8:d6:85:7a:ce:a7:e5:06:5b:ad:fc:36:d5:15:
                    7c:b4:a3:93:39:7f:19:ad:07:48:e5:63:6e:ae:27:1d:
                    6a:32:aa:e6:99:95:9c:20:b6:40:72:95:1c:e4:5d:6c:
                    af:e5:30:b3:20:25:8b:d6:b8:25:75:61:a5:e7:3b:c3:
                    8e:89:27:a8:e9:cd:0e:ff:eb:6b:a3:fb:58:3d:d6:b3:
                    e9:72:94:ee:5a:88:48:99:eb:a6:93:84:6e:17:fc:92:
                    a8:b6:00:41:77:35:60:46:8a:48:48:ac:ce:a2:4d:c7:
                    f1:a9:28:c4:6f:46:88:90:e9:e4:8e:f0:75:f9:a6:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:bc:70:c7:01:d7:a6:27:98:7f:49:89:61:b7:9d:4a:
        a2:7b:c7:3a:15:fa:b4:05:d7:da:60:31:00:0f:a3:d4:
        81:b8:e6:a2:ae:39:5b:a5:d8:8a:70:7d:00:6b:a9:02:
        d2:be:76:6d:10:3b:6e:47:4c:ba:a0:8b:01:36:45:13:
        69:0d:c0:2f:df:5e:96:f3:34:0c:09:f6:35:42:47:73:
        8c:f0:45:e1:49:95:b6:22:8e:9b:f5:f4:e2:1a:ad:dc:
        7d:80:bc:91:c9:7c:ec:11:5a:e9:01:63:10:9e:87:8c:
        af:0e:dc:b6:90:71:fd:ca:b7:e7:a9:62:c2:2f:f0:8c:
        7e:48:14:a0:f8:8e:ba:17:9d:83:62:96:71:c1:c8:b4:
        fa:74:34:84:5b:7e:46:30:51:5d:9b:b5:1c:2e:2e:65:
        db:6e:4d:fe:ae:df:5f:04:26:57:17:b5:56:2c:d2:44:
        11:63:7e:dc:4e:d2:f2:1a:82:4f:70:7b:36:10:ea:f5:
        ce:2c:59:a6:ee:73:86:cf:20:56:ff:47:cd:ae:66:f0:
        db:72:ad:7f:02:f3:a1:52:62:55:15:b0:03:a0:da:91:
        98:e4:3c:a0:83:9d:59:57:59:b7:dd:85:dd:c8:dd:d5:
        59:50:ac:a1:81:e0:7e:1b:a3:b3:4e:bd:ab:51:9f:8e
    Fingerprint (SHA-256):
        4F:65:74:CB:8A:0C:B2:98:42:3D:DE:BF:1A:5A:6B:10:16:DA:17:5C:30:9E:BB:48:05:25:9A:A5:6B:AF:C0:3D
    Fingerprint (SHA1):
        BA:7C:14:3F:C4:6B:3F:38:77:FD:98:6C:36:EA:E3:55:34:95:CE:BC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2737: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2738: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153238 (0x1dee4016)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:36 2017
            Not After : Mon May 02 15:32:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:4b:67:cf:18:b1:45:42:53:e8:14:9c:77:4a:5b:56:
                    33:16:52:2f:42:9a:1c:22:9a:e7:5f:1e:61:ea:79:70:
                    95:06:bf:11:a2:1e:09:4b:c6:58:80:60:36:90:fa:32:
                    33:50:5b:f7:a8:a1:6e:14:37:7a:c3:38:11:15:50:97:
                    77:94:7c:6f:24:1d:56:56:e3:6d:fd:fb:51:f9:47:0b:
                    35:25:e6:72:06:74:0c:9c:ee:56:3d:a5:f8:4c:c8:f2:
                    04:e2:6a:2b:27:68:ce:02:46:e2:00:d0:bb:85:46:7f:
                    ba:f2:46:de:d2:de:66:07:d1:cb:3d:6a:11:18:a3:fe:
                    07:2d:b6:74:e8:03:33:ca:2f:19:62:3b:e6:74:e3:43:
                    c8:45:c3:0d:0a:2e:76:72:93:2b:63:36:4b:a6:5d:4e:
                    9d:56:65:49:9c:9b:83:04:d3:ec:2f:bf:ca:67:09:12:
                    aa:48:d6:60:c6:12:58:e3:46:c3:94:da:06:c9:74:5d:
                    06:9c:95:16:66:f2:82:f3:a0:6d:0d:bc:69:78:ce:94:
                    42:f4:02:38:62:79:0d:9a:45:53:92:9a:9a:08:30:17:
                    6a:86:c1:33:d3:d6:74:cf:73:ef:4f:a1:bf:21:96:c8:
                    2f:1f:0b:72:9e:4c:d0:df:d6:05:1e:9c:5a:2a:c9:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:05:a5:06:e8:d6:8d:8e:9d:74:bc:38:fd:5e:c1:b5:
        84:e3:ad:9b:d3:c6:ed:e3:2d:e8:d4:93:68:8a:b8:1b:
        24:41:09:2b:30:d9:3d:c6:ce:89:c0:57:e5:00:a4:67:
        e3:83:53:1e:2b:c4:ea:25:90:d9:a6:99:b6:83:27:cd:
        3a:bf:c9:47:c9:83:d0:ae:f7:58:cd:5f:77:0e:09:b1:
        ca:51:e0:0d:26:fb:cb:5f:54:1c:ec:4a:8d:b4:d8:04:
        83:07:d4:52:65:79:f5:a9:22:e4:47:02:09:90:46:5e:
        9f:6b:b4:06:25:50:d0:a7:ed:9a:f0:c4:93:6a:e7:21:
        af:27:46:3a:b4:d1:58:79:5e:20:08:f4:90:8f:7b:44:
        7e:45:3b:b8:5b:c5:ab:6e:76:c9:90:35:f7:27:fe:b4:
        16:4f:55:5f:2d:4b:50:fa:4f:c3:6d:ce:23:c5:87:aa:
        61:88:eb:5e:b2:8b:c4:d1:a7:2d:b4:5d:fe:8a:a5:1d:
        19:8c:03:08:30:d8:e1:15:57:39:71:b4:eb:1c:c5:bd:
        05:9c:38:09:70:9d:38:01:8d:9e:d4:3f:38:41:b4:d6:
        be:d9:67:1d:6c:8e:c7:0e:da:e2:00:81:0c:c3:d5:a7:
        00:04:cb:05:96:fe:96:4c:85:13:13:35:e4:a3:d2:a4
    Fingerprint (SHA-256):
        EB:D1:C2:08:B2:9B:4A:C0:4B:E8:26:B9:74:E6:EE:E7:CC:80:B5:5C:94:38:51:2D:36:06:B6:17:78:6D:FC:BA
    Fingerprint (SHA1):
        C8:F4:CC:EC:5C:28:27:51:EF:B1:DB:97:8C:A6:E8:85:47:66:07:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2739: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2740: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153239 (0x1dee4017)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:37 2017
            Not After : Mon May 02 15:32:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ff:c6:16:7c:11:d5:13:0a:50:7a:ed:21:97:cf:ef:
                    12:2d:9f:56:4d:d8:94:8f:ee:63:9c:49:f4:c2:c4:6d:
                    a1:15:18:46:83:cf:17:e5:59:94:df:3e:6d:d6:4b:c5:
                    05:01:f1:68:e9:aa:63:27:35:12:6e:63:fa:7d:62:35:
                    bc:86:6d:d1:0a:ed:c3:56:4b:d8:05:98:ae:6c:f6:c2:
                    60:f2:6b:27:09:95:c9:5d:41:e6:88:04:cb:a6:2f:8b:
                    77:e1:1a:27:2c:d7:1c:7a:21:f5:e4:d5:58:52:d7:bf:
                    02:79:20:3f:bd:dd:3f:b0:1e:2b:32:f5:e2:7f:db:76:
                    f7:cc:93:5e:1c:70:e1:12:00:22:17:43:dc:1f:3d:ef:
                    18:8e:e7:1a:84:1e:04:28:dd:e7:ef:56:d7:bc:23:80:
                    50:c2:fd:94:58:f4:50:f2:8b:9f:ba:8c:b3:99:a7:85:
                    8b:4c:e0:4d:26:a0:7c:fd:d0:5a:b1:9a:63:ae:02:9b:
                    22:5d:3b:5f:01:e5:79:5f:ee:91:21:56:80:a7:aa:c0:
                    d5:14:c3:78:78:62:96:af:b9:c5:4b:94:95:67:f5:3d:
                    b4:ae:a5:6e:c9:ee:c7:91:98:4c:bb:67:94:3d:94:eb:
                    6b:cd:2b:10:fa:61:74:a0:42:7b:dc:31:b0:e8:2c:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:b3:dd:94:34:b3:01:b0:09:5e:09:cb:43:7d:4d:d2:
        01:fc:ed:75:62:ec:84:90:87:2a:41:ab:af:35:55:e7:
        70:03:ef:86:95:b1:08:12:63:a6:d3:34:b6:d4:c8:b5:
        a8:3b:bc:a2:0f:ae:f4:4e:6d:45:7e:e5:59:d7:f3:7c:
        e9:85:b8:fe:ca:f4:a6:3c:50:12:fd:a2:3e:96:46:1b:
        96:e6:1e:07:8d:ce:01:66:c9:3a:ff:02:f1:54:bc:eb:
        75:08:3e:2e:84:fa:3e:18:9a:4e:ae:24:12:e5:99:af:
        05:2c:6a:72:e4:67:e9:8f:22:5b:b0:56:fd:66:d5:7a:
        0e:b4:7b:fe:66:15:7b:a2:5d:6f:6f:fa:ea:4a:63:44:
        fe:bd:2d:ca:a6:5c:e6:45:79:95:af:08:9c:ea:8b:7d:
        2b:85:67:e3:ca:85:f5:83:e4:30:8e:a1:9c:9a:f6:11:
        60:45:1b:4a:fc:1b:1d:ad:1a:5d:ad:6c:b5:38:de:81:
        df:8f:d0:53:1c:a2:49:98:29:6d:22:6e:2b:1a:00:e3:
        56:cd:8d:38:ee:ef:92:9c:c1:3f:45:8b:c5:aa:3c:32:
        93:a2:7b:51:ee:08:15:2b:bf:c5:e1:f6:f6:03:30:91:
        39:b1:be:18:64:46:a6:20:20:f0:cb:2b:55:5a:8d:3d
    Fingerprint (SHA-256):
        E9:F4:D7:2C:73:8D:01:F1:E2:4A:95:8F:33:1B:B7:5A:2C:F9:67:24:82:D3:6E:57:13:E8:98:30:1B:56:9E:A9
    Fingerprint (SHA1):
        B6:8B:00:35:52:AD:D7:64:4B:25:20:09:01:B5:E4:1F:59:1F:CE:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2741: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2742: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2743: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153241 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2744: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2745: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2746: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2747: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153242   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2748: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2749: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2750: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2751: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153243   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2752: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2753: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2754: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2755: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153244   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2756: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2757: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2758: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2759: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153245   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2760: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2762: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153241 (0x1dee4019)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:89:fa:e5:5f:28:c5:06:57:9a:5a:3f:ae:2f:44:80:
                    e2:a1:96:68:a5:ee:6c:d9:0f:47:e1:5d:0b:81:66:45:
                    89:c8:01:3d:67:68:d3:a0:d6:2a:7a:fe:13:56:22:a9:
                    57:99:d7:23:5f:66:51:31:e7:98:3a:fd:c7:db:1e:3c:
                    5c:70:9a:98:8f:4a:12:ea:3c:ff:d1:3f:10:3d:0b:51:
                    d6:b3:f0:80:16:c5:b6:a8:93:a4:67:5a:e6:1b:23:2c:
                    19:07:05:b8:a4:4e:ba:f0:f6:66:75:e8:67:88:39:65:
                    05:e5:e9:2e:8b:a2:68:50:ba:d6:24:17:22:2c:83:a3:
                    3b:67:ea:66:a9:bb:c9:e7:e2:d9:d4:ed:f0:31:5d:00:
                    4b:44:6e:0e:3b:0c:9c:49:46:5f:3e:d8:a9:7b:02:1b:
                    fa:d2:d8:43:db:d3:12:e9:87:e2:4e:5d:0b:66:38:2f:
                    01:3e:fb:46:18:2c:57:ef:82:f9:34:47:69:34:52:14:
                    61:c5:ef:31:e6:67:3b:93:7d:0f:f1:13:c9:e1:1c:3e:
                    99:93:e1:5f:0a:9b:cb:f3:af:c3:21:17:68:a3:ca:b4:
                    c7:3f:3c:4b:32:d8:ca:28:fc:1a:4a:8f:cf:75:ff:b8:
                    aa:c1:c8:7a:ec:51:df:33:65:9f:eb:99:82:31:9c:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:ac:d3:98:90:c4:7b:d7:12:09:3f:42:3b:84:6d:6b:
        4f:4d:21:dd:d9:b8:53:11:12:e8:5d:84:c0:42:73:00:
        a5:e2:8a:f0:63:88:31:f4:eb:8e:42:fb:86:01:83:9c:
        85:8d:9b:ea:3c:01:7e:6f:59:91:7e:97:85:fd:ee:b2:
        41:d7:0d:a4:9f:9d:6c:d1:cc:27:04:cc:3c:c0:c2:5a:
        c2:cb:85:ca:4f:1d:c2:49:4f:b0:d0:e7:e2:50:d5:f8:
        7b:44:52:9d:34:19:82:2f:fe:26:a2:cc:4d:f4:28:ef:
        fa:4e:cb:32:74:76:83:95:cb:ee:e3:e3:3e:f1:65:9d:
        dc:d9:e8:52:c2:3f:a0:42:67:45:a4:54:b7:61:2c:d2:
        1b:50:55:eb:a9:e8:5f:11:82:fb:7d:24:ad:d2:52:95:
        b2:22:ee:fc:59:cd:22:9d:bb:f4:1b:27:db:fe:82:8b:
        66:7f:13:92:ca:e7:2f:5d:fe:4b:86:40:f6:9d:f8:dd:
        3d:df:c6:ac:c8:8b:5a:f7:a3:78:6d:9f:7f:be:a6:d8:
        ab:d4:a6:85:0f:8b:46:b0:71:ac:6e:e4:b0:0c:55:0e:
        c5:8b:55:ed:64:79:4d:92:9b:31:29:82:af:8e:02:23:
        66:d1:32:ff:82:2c:b0:b5:e0:9b:3b:d2:a0:2c:fa:51
    Fingerprint (SHA-256):
        FE:21:67:25:8A:00:3E:CE:33:9B:2C:30:46:89:E2:6A:FA:6C:5A:BF:2D:52:5F:2A:CA:21:B8:A1:00:7E:24:6A
    Fingerprint (SHA1):
        F7:AC:62:A3:70:A3:C0:87:30:8D:49:A4:BE:A6:66:C0:08:AD:F4:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2763: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2764: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153242 (0x1dee401a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ee:8b:ca:0a:da:15:35:41:90:e0:7b:84:8d:65:7d:
                    48:8f:f3:f7:fb:31:87:12:e1:e5:d8:30:e4:1d:cb:a3:
                    ba:4d:48:da:f2:3c:4e:d2:a9:0c:7b:a9:71:09:8e:2f:
                    53:3a:30:58:e8:b2:88:8f:11:73:f0:b9:0a:ed:d0:c1:
                    f0:57:6d:f3:8e:8e:57:c2:94:21:35:0b:74:58:ff:e6:
                    8e:2b:7c:a0:ff:94:69:72:d3:7b:aa:51:03:af:fa:a7:
                    62:aa:da:2c:5a:71:e8:47:2e:f2:fc:0b:ef:c7:b0:48:
                    ea:a3:62:93:3b:02:fb:c4:99:b5:e8:6e:a6:74:42:3d:
                    9b:e7:27:02:69:8a:2d:4c:27:6b:20:d6:fa:73:7b:5c:
                    6a:48:64:1a:a1:93:d6:02:67:20:ac:45:c3:21:40:94:
                    07:c7:6b:db:2a:14:3c:ea:cd:a7:a7:7b:89:ad:e4:6e:
                    38:79:2f:83:6c:b7:20:c8:18:35:c1:40:14:26:72:88:
                    ea:bc:b0:9b:b3:3e:1e:b4:59:06:f1:18:da:91:63:c6:
                    50:ee:4d:71:cc:6d:98:ba:6a:12:61:1d:47:f3:4b:00:
                    52:d8:72:28:29:3c:6e:2e:b8:7c:2b:1f:a9:33:fa:71:
                    4f:83:fc:8a:5c:76:ac:b4:86:ef:d7:ca:1e:ef:5e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:c9:74:27:7a:15:40:6d:81:80:28:86:53:e8:c4:dd:
        55:2a:43:bb:6b:94:6e:8e:de:b6:88:11:af:c0:a6:48:
        bd:a5:f0:95:25:59:0a:aa:e4:9d:2a:9a:a2:91:8a:df:
        e7:2b:28:b2:a0:30:79:22:d6:c8:ae:bd:6d:90:ad:c1:
        90:d8:07:31:2b:3c:c8:cb:df:a7:7b:30:4c:60:b6:dd:
        4b:b1:25:eb:e8:2e:64:d1:74:17:7a:a0:57:8a:94:f5:
        8a:a7:eb:d5:cd:6c:40:a0:14:3a:bb:4f:c8:09:bc:e2:
        6a:56:e9:f2:f9:00:aa:5b:a1:d7:07:e2:6d:b0:36:79:
        9c:89:09:f2:bb:a5:22:b6:d0:c5:95:86:16:31:1a:b9:
        00:9b:8c:ff:f8:40:69:97:cd:8d:2f:95:3e:15:39:99:
        8a:cb:ca:52:a3:28:ce:4f:cd:63:ba:0f:42:5d:53:4f:
        19:1f:d7:f2:30:98:37:f1:49:0d:1a:02:a2:02:a4:c6:
        54:c3:d6:b2:3c:05:e7:42:12:6c:0b:a5:45:a4:6c:ea:
        89:c6:86:db:bb:ea:d1:3e:ad:16:9e:9a:70:f1:39:be:
        fd:60:40:f6:81:53:0d:6a:e3:81:4a:01:da:73:40:f9:
        a2:8a:ed:ca:7a:89:a6:76:fa:c4:f6:ab:c9:cb:cb:1c
    Fingerprint (SHA-256):
        51:A3:64:2D:AD:F3:46:C9:CA:0B:58:E1:9E:02:8A:BF:0E:F9:F4:97:22:1C:02:C6:5A:73:36:AF:9B:3B:CC:79
    Fingerprint (SHA1):
        68:55:5D:3F:D9:89:49:53:8E:B0:06:24:55:D7:7D:35:35:66:1C:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2765: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2766: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153243 (0x1dee401b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:39 2017
            Not After : Mon May 02 15:32:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:54:3b:42:7f:5f:13:de:e4:6d:63:df:31:68:c5:31:
                    08:c8:ed:0c:82:c9:77:6d:cd:f6:80:e8:bf:1c:8a:c9:
                    64:cb:30:2a:97:c9:9a:f7:35:3d:62:4d:0f:9e:3e:5a:
                    27:a9:fa:cd:db:36:73:c5:ab:c2:66:7a:0f:99:50:88:
                    48:60:ad:14:da:dd:e7:cb:a6:dc:09:57:f9:9b:e8:91:
                    93:65:4f:8e:47:dd:81:10:84:8d:c1:90:4b:b7:58:fc:
                    91:cc:16:12:47:1e:15:3b:28:d6:f6:2d:db:80:54:1f:
                    65:58:f0:62:db:f0:1b:fd:6e:32:8a:ad:69:e0:b7:f1:
                    b4:06:b9:fe:9f:b1:e7:a9:05:37:8f:7b:71:f4:f4:93:
                    56:5d:43:47:19:65:91:a4:e2:43:24:ba:21:4b:64:3a:
                    bb:a9:6c:59:bc:d6:9f:75:56:13:e7:1a:e5:36:71:b3:
                    2e:86:c3:a2:69:57:c5:9c:89:d2:d1:0c:ef:7e:24:9b:
                    04:94:96:b0:25:eb:80:ff:2b:4d:cd:96:fb:63:71:7c:
                    95:93:5c:fa:d5:b0:93:be:74:b9:49:55:44:44:14:2d:
                    6c:00:8d:5f:f5:93:4d:fe:fa:30:5d:61:d3:53:06:7c:
                    43:73:56:4c:af:b6:41:71:ec:39:24:16:1d:09:ad:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:ef:0c:ab:c9:96:b1:54:a1:0f:2d:87:1c:b5:fc:8e:
        ca:cf:eb:57:22:df:2a:e8:ba:e4:e9:d4:a4:98:51:0b:
        10:cc:a2:fd:53:ae:ea:9f:86:c4:3d:2d:77:77:d9:eb:
        fe:f4:3b:37:db:73:5a:74:2c:58:8b:17:16:52:ea:38:
        d9:ad:fa:85:8c:88:c0:37:ab:ee:a7:56:97:3f:15:38:
        58:d4:6c:e9:d5:3f:b8:22:6b:fe:3f:77:9f:27:51:d6:
        29:05:e9:fd:b8:a7:f5:d0:59:35:b6:fd:73:70:32:46:
        e2:af:96:26:88:92:8f:95:18:90:e7:6d:6c:71:8f:22:
        89:90:54:7c:80:46:bf:04:cd:8f:61:1a:82:33:f7:fb:
        76:df:97:1d:a8:c3:bd:90:da:04:fd:92:d5:b7:fc:47:
        62:5b:d2:f8:b4:25:38:9f:9f:0a:d6:1a:fd:5a:b1:6b:
        6e:27:ff:2d:1d:a3:e2:f8:0a:3e:31:ee:92:2b:55:c5:
        52:47:ef:79:61:ac:d8:7b:5d:9a:6c:4a:ce:6e:0e:36:
        8c:82:63:1c:bb:2c:3e:22:0d:15:ae:bc:95:6b:60:e4:
        f8:99:c8:a0:12:75:ba:89:f9:a6:59:df:b4:6c:23:2b:
        05:66:2d:bb:77:ed:f2:67:1d:05:cd:6a:9e:0b:c3:1a
    Fingerprint (SHA-256):
        89:A3:CE:07:0C:E4:E5:60:79:0E:E3:AC:7F:1B:54:92:5E:90:9C:35:89:04:38:83:76:0B:1B:6C:61:B7:86:AB
    Fingerprint (SHA1):
        E9:71:6B:D7:C7:32:93:0A:5A:0D:E9:BE:BA:4B:1C:21:08:FB:68:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2767: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2768: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2769: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2770: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2771: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153241 (0x1dee4019)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:89:fa:e5:5f:28:c5:06:57:9a:5a:3f:ae:2f:44:80:
                    e2:a1:96:68:a5:ee:6c:d9:0f:47:e1:5d:0b:81:66:45:
                    89:c8:01:3d:67:68:d3:a0:d6:2a:7a:fe:13:56:22:a9:
                    57:99:d7:23:5f:66:51:31:e7:98:3a:fd:c7:db:1e:3c:
                    5c:70:9a:98:8f:4a:12:ea:3c:ff:d1:3f:10:3d:0b:51:
                    d6:b3:f0:80:16:c5:b6:a8:93:a4:67:5a:e6:1b:23:2c:
                    19:07:05:b8:a4:4e:ba:f0:f6:66:75:e8:67:88:39:65:
                    05:e5:e9:2e:8b:a2:68:50:ba:d6:24:17:22:2c:83:a3:
                    3b:67:ea:66:a9:bb:c9:e7:e2:d9:d4:ed:f0:31:5d:00:
                    4b:44:6e:0e:3b:0c:9c:49:46:5f:3e:d8:a9:7b:02:1b:
                    fa:d2:d8:43:db:d3:12:e9:87:e2:4e:5d:0b:66:38:2f:
                    01:3e:fb:46:18:2c:57:ef:82:f9:34:47:69:34:52:14:
                    61:c5:ef:31:e6:67:3b:93:7d:0f:f1:13:c9:e1:1c:3e:
                    99:93:e1:5f:0a:9b:cb:f3:af:c3:21:17:68:a3:ca:b4:
                    c7:3f:3c:4b:32:d8:ca:28:fc:1a:4a:8f:cf:75:ff:b8:
                    aa:c1:c8:7a:ec:51:df:33:65:9f:eb:99:82:31:9c:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:ac:d3:98:90:c4:7b:d7:12:09:3f:42:3b:84:6d:6b:
        4f:4d:21:dd:d9:b8:53:11:12:e8:5d:84:c0:42:73:00:
        a5:e2:8a:f0:63:88:31:f4:eb:8e:42:fb:86:01:83:9c:
        85:8d:9b:ea:3c:01:7e:6f:59:91:7e:97:85:fd:ee:b2:
        41:d7:0d:a4:9f:9d:6c:d1:cc:27:04:cc:3c:c0:c2:5a:
        c2:cb:85:ca:4f:1d:c2:49:4f:b0:d0:e7:e2:50:d5:f8:
        7b:44:52:9d:34:19:82:2f:fe:26:a2:cc:4d:f4:28:ef:
        fa:4e:cb:32:74:76:83:95:cb:ee:e3:e3:3e:f1:65:9d:
        dc:d9:e8:52:c2:3f:a0:42:67:45:a4:54:b7:61:2c:d2:
        1b:50:55:eb:a9:e8:5f:11:82:fb:7d:24:ad:d2:52:95:
        b2:22:ee:fc:59:cd:22:9d:bb:f4:1b:27:db:fe:82:8b:
        66:7f:13:92:ca:e7:2f:5d:fe:4b:86:40:f6:9d:f8:dd:
        3d:df:c6:ac:c8:8b:5a:f7:a3:78:6d:9f:7f:be:a6:d8:
        ab:d4:a6:85:0f:8b:46:b0:71:ac:6e:e4:b0:0c:55:0e:
        c5:8b:55:ed:64:79:4d:92:9b:31:29:82:af:8e:02:23:
        66:d1:32:ff:82:2c:b0:b5:e0:9b:3b:d2:a0:2c:fa:51
    Fingerprint (SHA-256):
        FE:21:67:25:8A:00:3E:CE:33:9B:2C:30:46:89:E2:6A:FA:6C:5A:BF:2D:52:5F:2A:CA:21:B8:A1:00:7E:24:6A
    Fingerprint (SHA1):
        F7:AC:62:A3:70:A3:C0:87:30:8D:49:A4:BE:A6:66:C0:08:AD:F4:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2772: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2773: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153242 (0x1dee401a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ee:8b:ca:0a:da:15:35:41:90:e0:7b:84:8d:65:7d:
                    48:8f:f3:f7:fb:31:87:12:e1:e5:d8:30:e4:1d:cb:a3:
                    ba:4d:48:da:f2:3c:4e:d2:a9:0c:7b:a9:71:09:8e:2f:
                    53:3a:30:58:e8:b2:88:8f:11:73:f0:b9:0a:ed:d0:c1:
                    f0:57:6d:f3:8e:8e:57:c2:94:21:35:0b:74:58:ff:e6:
                    8e:2b:7c:a0:ff:94:69:72:d3:7b:aa:51:03:af:fa:a7:
                    62:aa:da:2c:5a:71:e8:47:2e:f2:fc:0b:ef:c7:b0:48:
                    ea:a3:62:93:3b:02:fb:c4:99:b5:e8:6e:a6:74:42:3d:
                    9b:e7:27:02:69:8a:2d:4c:27:6b:20:d6:fa:73:7b:5c:
                    6a:48:64:1a:a1:93:d6:02:67:20:ac:45:c3:21:40:94:
                    07:c7:6b:db:2a:14:3c:ea:cd:a7:a7:7b:89:ad:e4:6e:
                    38:79:2f:83:6c:b7:20:c8:18:35:c1:40:14:26:72:88:
                    ea:bc:b0:9b:b3:3e:1e:b4:59:06:f1:18:da:91:63:c6:
                    50:ee:4d:71:cc:6d:98:ba:6a:12:61:1d:47:f3:4b:00:
                    52:d8:72:28:29:3c:6e:2e:b8:7c:2b:1f:a9:33:fa:71:
                    4f:83:fc:8a:5c:76:ac:b4:86:ef:d7:ca:1e:ef:5e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:c9:74:27:7a:15:40:6d:81:80:28:86:53:e8:c4:dd:
        55:2a:43:bb:6b:94:6e:8e:de:b6:88:11:af:c0:a6:48:
        bd:a5:f0:95:25:59:0a:aa:e4:9d:2a:9a:a2:91:8a:df:
        e7:2b:28:b2:a0:30:79:22:d6:c8:ae:bd:6d:90:ad:c1:
        90:d8:07:31:2b:3c:c8:cb:df:a7:7b:30:4c:60:b6:dd:
        4b:b1:25:eb:e8:2e:64:d1:74:17:7a:a0:57:8a:94:f5:
        8a:a7:eb:d5:cd:6c:40:a0:14:3a:bb:4f:c8:09:bc:e2:
        6a:56:e9:f2:f9:00:aa:5b:a1:d7:07:e2:6d:b0:36:79:
        9c:89:09:f2:bb:a5:22:b6:d0:c5:95:86:16:31:1a:b9:
        00:9b:8c:ff:f8:40:69:97:cd:8d:2f:95:3e:15:39:99:
        8a:cb:ca:52:a3:28:ce:4f:cd:63:ba:0f:42:5d:53:4f:
        19:1f:d7:f2:30:98:37:f1:49:0d:1a:02:a2:02:a4:c6:
        54:c3:d6:b2:3c:05:e7:42:12:6c:0b:a5:45:a4:6c:ea:
        89:c6:86:db:bb:ea:d1:3e:ad:16:9e:9a:70:f1:39:be:
        fd:60:40:f6:81:53:0d:6a:e3:81:4a:01:da:73:40:f9:
        a2:8a:ed:ca:7a:89:a6:76:fa:c4:f6:ab:c9:cb:cb:1c
    Fingerprint (SHA-256):
        51:A3:64:2D:AD:F3:46:C9:CA:0B:58:E1:9E:02:8A:BF:0E:F9:F4:97:22:1C:02:C6:5A:73:36:AF:9B:3B:CC:79
    Fingerprint (SHA1):
        68:55:5D:3F:D9:89:49:53:8E:B0:06:24:55:D7:7D:35:35:66:1C:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2774: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2775: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153243 (0x1dee401b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:39 2017
            Not After : Mon May 02 15:32:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:54:3b:42:7f:5f:13:de:e4:6d:63:df:31:68:c5:31:
                    08:c8:ed:0c:82:c9:77:6d:cd:f6:80:e8:bf:1c:8a:c9:
                    64:cb:30:2a:97:c9:9a:f7:35:3d:62:4d:0f:9e:3e:5a:
                    27:a9:fa:cd:db:36:73:c5:ab:c2:66:7a:0f:99:50:88:
                    48:60:ad:14:da:dd:e7:cb:a6:dc:09:57:f9:9b:e8:91:
                    93:65:4f:8e:47:dd:81:10:84:8d:c1:90:4b:b7:58:fc:
                    91:cc:16:12:47:1e:15:3b:28:d6:f6:2d:db:80:54:1f:
                    65:58:f0:62:db:f0:1b:fd:6e:32:8a:ad:69:e0:b7:f1:
                    b4:06:b9:fe:9f:b1:e7:a9:05:37:8f:7b:71:f4:f4:93:
                    56:5d:43:47:19:65:91:a4:e2:43:24:ba:21:4b:64:3a:
                    bb:a9:6c:59:bc:d6:9f:75:56:13:e7:1a:e5:36:71:b3:
                    2e:86:c3:a2:69:57:c5:9c:89:d2:d1:0c:ef:7e:24:9b:
                    04:94:96:b0:25:eb:80:ff:2b:4d:cd:96:fb:63:71:7c:
                    95:93:5c:fa:d5:b0:93:be:74:b9:49:55:44:44:14:2d:
                    6c:00:8d:5f:f5:93:4d:fe:fa:30:5d:61:d3:53:06:7c:
                    43:73:56:4c:af:b6:41:71:ec:39:24:16:1d:09:ad:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:ef:0c:ab:c9:96:b1:54:a1:0f:2d:87:1c:b5:fc:8e:
        ca:cf:eb:57:22:df:2a:e8:ba:e4:e9:d4:a4:98:51:0b:
        10:cc:a2:fd:53:ae:ea:9f:86:c4:3d:2d:77:77:d9:eb:
        fe:f4:3b:37:db:73:5a:74:2c:58:8b:17:16:52:ea:38:
        d9:ad:fa:85:8c:88:c0:37:ab:ee:a7:56:97:3f:15:38:
        58:d4:6c:e9:d5:3f:b8:22:6b:fe:3f:77:9f:27:51:d6:
        29:05:e9:fd:b8:a7:f5:d0:59:35:b6:fd:73:70:32:46:
        e2:af:96:26:88:92:8f:95:18:90:e7:6d:6c:71:8f:22:
        89:90:54:7c:80:46:bf:04:cd:8f:61:1a:82:33:f7:fb:
        76:df:97:1d:a8:c3:bd:90:da:04:fd:92:d5:b7:fc:47:
        62:5b:d2:f8:b4:25:38:9f:9f:0a:d6:1a:fd:5a:b1:6b:
        6e:27:ff:2d:1d:a3:e2:f8:0a:3e:31:ee:92:2b:55:c5:
        52:47:ef:79:61:ac:d8:7b:5d:9a:6c:4a:ce:6e:0e:36:
        8c:82:63:1c:bb:2c:3e:22:0d:15:ae:bc:95:6b:60:e4:
        f8:99:c8:a0:12:75:ba:89:f9:a6:59:df:b4:6c:23:2b:
        05:66:2d:bb:77:ed:f2:67:1d:05:cd:6a:9e:0b:c3:1a
    Fingerprint (SHA-256):
        89:A3:CE:07:0C:E4:E5:60:79:0E:E3:AC:7F:1B:54:92:5E:90:9C:35:89:04:38:83:76:0B:1B:6C:61:B7:86:AB
    Fingerprint (SHA1):
        E9:71:6B:D7:C7:32:93:0A:5A:0D:E9:BE:BA:4B:1C:21:08:FB:68:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2777: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153241 (0x1dee4019)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:89:fa:e5:5f:28:c5:06:57:9a:5a:3f:ae:2f:44:80:
                    e2:a1:96:68:a5:ee:6c:d9:0f:47:e1:5d:0b:81:66:45:
                    89:c8:01:3d:67:68:d3:a0:d6:2a:7a:fe:13:56:22:a9:
                    57:99:d7:23:5f:66:51:31:e7:98:3a:fd:c7:db:1e:3c:
                    5c:70:9a:98:8f:4a:12:ea:3c:ff:d1:3f:10:3d:0b:51:
                    d6:b3:f0:80:16:c5:b6:a8:93:a4:67:5a:e6:1b:23:2c:
                    19:07:05:b8:a4:4e:ba:f0:f6:66:75:e8:67:88:39:65:
                    05:e5:e9:2e:8b:a2:68:50:ba:d6:24:17:22:2c:83:a3:
                    3b:67:ea:66:a9:bb:c9:e7:e2:d9:d4:ed:f0:31:5d:00:
                    4b:44:6e:0e:3b:0c:9c:49:46:5f:3e:d8:a9:7b:02:1b:
                    fa:d2:d8:43:db:d3:12:e9:87:e2:4e:5d:0b:66:38:2f:
                    01:3e:fb:46:18:2c:57:ef:82:f9:34:47:69:34:52:14:
                    61:c5:ef:31:e6:67:3b:93:7d:0f:f1:13:c9:e1:1c:3e:
                    99:93:e1:5f:0a:9b:cb:f3:af:c3:21:17:68:a3:ca:b4:
                    c7:3f:3c:4b:32:d8:ca:28:fc:1a:4a:8f:cf:75:ff:b8:
                    aa:c1:c8:7a:ec:51:df:33:65:9f:eb:99:82:31:9c:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:ac:d3:98:90:c4:7b:d7:12:09:3f:42:3b:84:6d:6b:
        4f:4d:21:dd:d9:b8:53:11:12:e8:5d:84:c0:42:73:00:
        a5:e2:8a:f0:63:88:31:f4:eb:8e:42:fb:86:01:83:9c:
        85:8d:9b:ea:3c:01:7e:6f:59:91:7e:97:85:fd:ee:b2:
        41:d7:0d:a4:9f:9d:6c:d1:cc:27:04:cc:3c:c0:c2:5a:
        c2:cb:85:ca:4f:1d:c2:49:4f:b0:d0:e7:e2:50:d5:f8:
        7b:44:52:9d:34:19:82:2f:fe:26:a2:cc:4d:f4:28:ef:
        fa:4e:cb:32:74:76:83:95:cb:ee:e3:e3:3e:f1:65:9d:
        dc:d9:e8:52:c2:3f:a0:42:67:45:a4:54:b7:61:2c:d2:
        1b:50:55:eb:a9:e8:5f:11:82:fb:7d:24:ad:d2:52:95:
        b2:22:ee:fc:59:cd:22:9d:bb:f4:1b:27:db:fe:82:8b:
        66:7f:13:92:ca:e7:2f:5d:fe:4b:86:40:f6:9d:f8:dd:
        3d:df:c6:ac:c8:8b:5a:f7:a3:78:6d:9f:7f:be:a6:d8:
        ab:d4:a6:85:0f:8b:46:b0:71:ac:6e:e4:b0:0c:55:0e:
        c5:8b:55:ed:64:79:4d:92:9b:31:29:82:af:8e:02:23:
        66:d1:32:ff:82:2c:b0:b5:e0:9b:3b:d2:a0:2c:fa:51
    Fingerprint (SHA-256):
        FE:21:67:25:8A:00:3E:CE:33:9B:2C:30:46:89:E2:6A:FA:6C:5A:BF:2D:52:5F:2A:CA:21:B8:A1:00:7E:24:6A
    Fingerprint (SHA1):
        F7:AC:62:A3:70:A3:C0:87:30:8D:49:A4:BE:A6:66:C0:08:AD:F4:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153241 (0x1dee4019)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:89:fa:e5:5f:28:c5:06:57:9a:5a:3f:ae:2f:44:80:
                    e2:a1:96:68:a5:ee:6c:d9:0f:47:e1:5d:0b:81:66:45:
                    89:c8:01:3d:67:68:d3:a0:d6:2a:7a:fe:13:56:22:a9:
                    57:99:d7:23:5f:66:51:31:e7:98:3a:fd:c7:db:1e:3c:
                    5c:70:9a:98:8f:4a:12:ea:3c:ff:d1:3f:10:3d:0b:51:
                    d6:b3:f0:80:16:c5:b6:a8:93:a4:67:5a:e6:1b:23:2c:
                    19:07:05:b8:a4:4e:ba:f0:f6:66:75:e8:67:88:39:65:
                    05:e5:e9:2e:8b:a2:68:50:ba:d6:24:17:22:2c:83:a3:
                    3b:67:ea:66:a9:bb:c9:e7:e2:d9:d4:ed:f0:31:5d:00:
                    4b:44:6e:0e:3b:0c:9c:49:46:5f:3e:d8:a9:7b:02:1b:
                    fa:d2:d8:43:db:d3:12:e9:87:e2:4e:5d:0b:66:38:2f:
                    01:3e:fb:46:18:2c:57:ef:82:f9:34:47:69:34:52:14:
                    61:c5:ef:31:e6:67:3b:93:7d:0f:f1:13:c9:e1:1c:3e:
                    99:93:e1:5f:0a:9b:cb:f3:af:c3:21:17:68:a3:ca:b4:
                    c7:3f:3c:4b:32:d8:ca:28:fc:1a:4a:8f:cf:75:ff:b8:
                    aa:c1:c8:7a:ec:51:df:33:65:9f:eb:99:82:31:9c:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:ac:d3:98:90:c4:7b:d7:12:09:3f:42:3b:84:6d:6b:
        4f:4d:21:dd:d9:b8:53:11:12:e8:5d:84:c0:42:73:00:
        a5:e2:8a:f0:63:88:31:f4:eb:8e:42:fb:86:01:83:9c:
        85:8d:9b:ea:3c:01:7e:6f:59:91:7e:97:85:fd:ee:b2:
        41:d7:0d:a4:9f:9d:6c:d1:cc:27:04:cc:3c:c0:c2:5a:
        c2:cb:85:ca:4f:1d:c2:49:4f:b0:d0:e7:e2:50:d5:f8:
        7b:44:52:9d:34:19:82:2f:fe:26:a2:cc:4d:f4:28:ef:
        fa:4e:cb:32:74:76:83:95:cb:ee:e3:e3:3e:f1:65:9d:
        dc:d9:e8:52:c2:3f:a0:42:67:45:a4:54:b7:61:2c:d2:
        1b:50:55:eb:a9:e8:5f:11:82:fb:7d:24:ad:d2:52:95:
        b2:22:ee:fc:59:cd:22:9d:bb:f4:1b:27:db:fe:82:8b:
        66:7f:13:92:ca:e7:2f:5d:fe:4b:86:40:f6:9d:f8:dd:
        3d:df:c6:ac:c8:8b:5a:f7:a3:78:6d:9f:7f:be:a6:d8:
        ab:d4:a6:85:0f:8b:46:b0:71:ac:6e:e4:b0:0c:55:0e:
        c5:8b:55:ed:64:79:4d:92:9b:31:29:82:af:8e:02:23:
        66:d1:32:ff:82:2c:b0:b5:e0:9b:3b:d2:a0:2c:fa:51
    Fingerprint (SHA-256):
        FE:21:67:25:8A:00:3E:CE:33:9B:2C:30:46:89:E2:6A:FA:6C:5A:BF:2D:52:5F:2A:CA:21:B8:A1:00:7E:24:6A
    Fingerprint (SHA1):
        F7:AC:62:A3:70:A3:C0:87:30:8D:49:A4:BE:A6:66:C0:08:AD:F4:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153242 (0x1dee401a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ee:8b:ca:0a:da:15:35:41:90:e0:7b:84:8d:65:7d:
                    48:8f:f3:f7:fb:31:87:12:e1:e5:d8:30:e4:1d:cb:a3:
                    ba:4d:48:da:f2:3c:4e:d2:a9:0c:7b:a9:71:09:8e:2f:
                    53:3a:30:58:e8:b2:88:8f:11:73:f0:b9:0a:ed:d0:c1:
                    f0:57:6d:f3:8e:8e:57:c2:94:21:35:0b:74:58:ff:e6:
                    8e:2b:7c:a0:ff:94:69:72:d3:7b:aa:51:03:af:fa:a7:
                    62:aa:da:2c:5a:71:e8:47:2e:f2:fc:0b:ef:c7:b0:48:
                    ea:a3:62:93:3b:02:fb:c4:99:b5:e8:6e:a6:74:42:3d:
                    9b:e7:27:02:69:8a:2d:4c:27:6b:20:d6:fa:73:7b:5c:
                    6a:48:64:1a:a1:93:d6:02:67:20:ac:45:c3:21:40:94:
                    07:c7:6b:db:2a:14:3c:ea:cd:a7:a7:7b:89:ad:e4:6e:
                    38:79:2f:83:6c:b7:20:c8:18:35:c1:40:14:26:72:88:
                    ea:bc:b0:9b:b3:3e:1e:b4:59:06:f1:18:da:91:63:c6:
                    50:ee:4d:71:cc:6d:98:ba:6a:12:61:1d:47:f3:4b:00:
                    52:d8:72:28:29:3c:6e:2e:b8:7c:2b:1f:a9:33:fa:71:
                    4f:83:fc:8a:5c:76:ac:b4:86:ef:d7:ca:1e:ef:5e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:c9:74:27:7a:15:40:6d:81:80:28:86:53:e8:c4:dd:
        55:2a:43:bb:6b:94:6e:8e:de:b6:88:11:af:c0:a6:48:
        bd:a5:f0:95:25:59:0a:aa:e4:9d:2a:9a:a2:91:8a:df:
        e7:2b:28:b2:a0:30:79:22:d6:c8:ae:bd:6d:90:ad:c1:
        90:d8:07:31:2b:3c:c8:cb:df:a7:7b:30:4c:60:b6:dd:
        4b:b1:25:eb:e8:2e:64:d1:74:17:7a:a0:57:8a:94:f5:
        8a:a7:eb:d5:cd:6c:40:a0:14:3a:bb:4f:c8:09:bc:e2:
        6a:56:e9:f2:f9:00:aa:5b:a1:d7:07:e2:6d:b0:36:79:
        9c:89:09:f2:bb:a5:22:b6:d0:c5:95:86:16:31:1a:b9:
        00:9b:8c:ff:f8:40:69:97:cd:8d:2f:95:3e:15:39:99:
        8a:cb:ca:52:a3:28:ce:4f:cd:63:ba:0f:42:5d:53:4f:
        19:1f:d7:f2:30:98:37:f1:49:0d:1a:02:a2:02:a4:c6:
        54:c3:d6:b2:3c:05:e7:42:12:6c:0b:a5:45:a4:6c:ea:
        89:c6:86:db:bb:ea:d1:3e:ad:16:9e:9a:70:f1:39:be:
        fd:60:40:f6:81:53:0d:6a:e3:81:4a:01:da:73:40:f9:
        a2:8a:ed:ca:7a:89:a6:76:fa:c4:f6:ab:c9:cb:cb:1c
    Fingerprint (SHA-256):
        51:A3:64:2D:AD:F3:46:C9:CA:0B:58:E1:9E:02:8A:BF:0E:F9:F4:97:22:1C:02:C6:5A:73:36:AF:9B:3B:CC:79
    Fingerprint (SHA1):
        68:55:5D:3F:D9:89:49:53:8E:B0:06:24:55:D7:7D:35:35:66:1C:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153242 (0x1dee401a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:32:38 2017
            Not After : Mon May 02 15:32:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ee:8b:ca:0a:da:15:35:41:90:e0:7b:84:8d:65:7d:
                    48:8f:f3:f7:fb:31:87:12:e1:e5:d8:30:e4:1d:cb:a3:
                    ba:4d:48:da:f2:3c:4e:d2:a9:0c:7b:a9:71:09:8e:2f:
                    53:3a:30:58:e8:b2:88:8f:11:73:f0:b9:0a:ed:d0:c1:
                    f0:57:6d:f3:8e:8e:57:c2:94:21:35:0b:74:58:ff:e6:
                    8e:2b:7c:a0:ff:94:69:72:d3:7b:aa:51:03:af:fa:a7:
                    62:aa:da:2c:5a:71:e8:47:2e:f2:fc:0b:ef:c7:b0:48:
                    ea:a3:62:93:3b:02:fb:c4:99:b5:e8:6e:a6:74:42:3d:
                    9b:e7:27:02:69:8a:2d:4c:27:6b:20:d6:fa:73:7b:5c:
                    6a:48:64:1a:a1:93:d6:02:67:20:ac:45:c3:21:40:94:
                    07:c7:6b:db:2a:14:3c:ea:cd:a7:a7:7b:89:ad:e4:6e:
                    38:79:2f:83:6c:b7:20:c8:18:35:c1:40:14:26:72:88:
                    ea:bc:b0:9b:b3:3e:1e:b4:59:06:f1:18:da:91:63:c6:
                    50:ee:4d:71:cc:6d:98:ba:6a:12:61:1d:47:f3:4b:00:
                    52:d8:72:28:29:3c:6e:2e:b8:7c:2b:1f:a9:33:fa:71:
                    4f:83:fc:8a:5c:76:ac:b4:86:ef:d7:ca:1e:ef:5e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:c9:74:27:7a:15:40:6d:81:80:28:86:53:e8:c4:dd:
        55:2a:43:bb:6b:94:6e:8e:de:b6:88:11:af:c0:a6:48:
        bd:a5:f0:95:25:59:0a:aa:e4:9d:2a:9a:a2:91:8a:df:
        e7:2b:28:b2:a0:30:79:22:d6:c8:ae:bd:6d:90:ad:c1:
        90:d8:07:31:2b:3c:c8:cb:df:a7:7b:30:4c:60:b6:dd:
        4b:b1:25:eb:e8:2e:64:d1:74:17:7a:a0:57:8a:94:f5:
        8a:a7:eb:d5:cd:6c:40:a0:14:3a:bb:4f:c8:09:bc:e2:
        6a:56:e9:f2:f9:00:aa:5b:a1:d7:07:e2:6d:b0:36:79:
        9c:89:09:f2:bb:a5:22:b6:d0:c5:95:86:16:31:1a:b9:
        00:9b:8c:ff:f8:40:69:97:cd:8d:2f:95:3e:15:39:99:
        8a:cb:ca:52:a3:28:ce:4f:cd:63:ba:0f:42:5d:53:4f:
        19:1f:d7:f2:30:98:37:f1:49:0d:1a:02:a2:02:a4:c6:
        54:c3:d6:b2:3c:05:e7:42:12:6c:0b:a5:45:a4:6c:ea:
        89:c6:86:db:bb:ea:d1:3e:ad:16:9e:9a:70:f1:39:be:
        fd:60:40:f6:81:53:0d:6a:e3:81:4a:01:da:73:40:f9:
        a2:8a:ed:ca:7a:89:a6:76:fa:c4:f6:ab:c9:cb:cb:1c
    Fingerprint (SHA-256):
        51:A3:64:2D:AD:F3:46:C9:CA:0B:58:E1:9E:02:8A:BF:0E:F9:F4:97:22:1C:02:C6:5A:73:36:AF:9B:3B:CC:79
    Fingerprint (SHA1):
        68:55:5D:3F:D9:89:49:53:8E:B0:06:24:55:D7:7D:35:35:66:1C:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153243 (0x1dee401b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:39 2017
            Not After : Mon May 02 15:32:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:54:3b:42:7f:5f:13:de:e4:6d:63:df:31:68:c5:31:
                    08:c8:ed:0c:82:c9:77:6d:cd:f6:80:e8:bf:1c:8a:c9:
                    64:cb:30:2a:97:c9:9a:f7:35:3d:62:4d:0f:9e:3e:5a:
                    27:a9:fa:cd:db:36:73:c5:ab:c2:66:7a:0f:99:50:88:
                    48:60:ad:14:da:dd:e7:cb:a6:dc:09:57:f9:9b:e8:91:
                    93:65:4f:8e:47:dd:81:10:84:8d:c1:90:4b:b7:58:fc:
                    91:cc:16:12:47:1e:15:3b:28:d6:f6:2d:db:80:54:1f:
                    65:58:f0:62:db:f0:1b:fd:6e:32:8a:ad:69:e0:b7:f1:
                    b4:06:b9:fe:9f:b1:e7:a9:05:37:8f:7b:71:f4:f4:93:
                    56:5d:43:47:19:65:91:a4:e2:43:24:ba:21:4b:64:3a:
                    bb:a9:6c:59:bc:d6:9f:75:56:13:e7:1a:e5:36:71:b3:
                    2e:86:c3:a2:69:57:c5:9c:89:d2:d1:0c:ef:7e:24:9b:
                    04:94:96:b0:25:eb:80:ff:2b:4d:cd:96:fb:63:71:7c:
                    95:93:5c:fa:d5:b0:93:be:74:b9:49:55:44:44:14:2d:
                    6c:00:8d:5f:f5:93:4d:fe:fa:30:5d:61:d3:53:06:7c:
                    43:73:56:4c:af:b6:41:71:ec:39:24:16:1d:09:ad:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:ef:0c:ab:c9:96:b1:54:a1:0f:2d:87:1c:b5:fc:8e:
        ca:cf:eb:57:22:df:2a:e8:ba:e4:e9:d4:a4:98:51:0b:
        10:cc:a2:fd:53:ae:ea:9f:86:c4:3d:2d:77:77:d9:eb:
        fe:f4:3b:37:db:73:5a:74:2c:58:8b:17:16:52:ea:38:
        d9:ad:fa:85:8c:88:c0:37:ab:ee:a7:56:97:3f:15:38:
        58:d4:6c:e9:d5:3f:b8:22:6b:fe:3f:77:9f:27:51:d6:
        29:05:e9:fd:b8:a7:f5:d0:59:35:b6:fd:73:70:32:46:
        e2:af:96:26:88:92:8f:95:18:90:e7:6d:6c:71:8f:22:
        89:90:54:7c:80:46:bf:04:cd:8f:61:1a:82:33:f7:fb:
        76:df:97:1d:a8:c3:bd:90:da:04:fd:92:d5:b7:fc:47:
        62:5b:d2:f8:b4:25:38:9f:9f:0a:d6:1a:fd:5a:b1:6b:
        6e:27:ff:2d:1d:a3:e2:f8:0a:3e:31:ee:92:2b:55:c5:
        52:47:ef:79:61:ac:d8:7b:5d:9a:6c:4a:ce:6e:0e:36:
        8c:82:63:1c:bb:2c:3e:22:0d:15:ae:bc:95:6b:60:e4:
        f8:99:c8:a0:12:75:ba:89:f9:a6:59:df:b4:6c:23:2b:
        05:66:2d:bb:77:ed:f2:67:1d:05:cd:6a:9e:0b:c3:1a
    Fingerprint (SHA-256):
        89:A3:CE:07:0C:E4:E5:60:79:0E:E3:AC:7F:1B:54:92:5E:90:9C:35:89:04:38:83:76:0B:1B:6C:61:B7:86:AB
    Fingerprint (SHA1):
        E9:71:6B:D7:C7:32:93:0A:5A:0D:E9:BE:BA:4B:1C:21:08:FB:68:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153243 (0x1dee401b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:32:39 2017
            Not After : Mon May 02 15:32:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:54:3b:42:7f:5f:13:de:e4:6d:63:df:31:68:c5:31:
                    08:c8:ed:0c:82:c9:77:6d:cd:f6:80:e8:bf:1c:8a:c9:
                    64:cb:30:2a:97:c9:9a:f7:35:3d:62:4d:0f:9e:3e:5a:
                    27:a9:fa:cd:db:36:73:c5:ab:c2:66:7a:0f:99:50:88:
                    48:60:ad:14:da:dd:e7:cb:a6:dc:09:57:f9:9b:e8:91:
                    93:65:4f:8e:47:dd:81:10:84:8d:c1:90:4b:b7:58:fc:
                    91:cc:16:12:47:1e:15:3b:28:d6:f6:2d:db:80:54:1f:
                    65:58:f0:62:db:f0:1b:fd:6e:32:8a:ad:69:e0:b7:f1:
                    b4:06:b9:fe:9f:b1:e7:a9:05:37:8f:7b:71:f4:f4:93:
                    56:5d:43:47:19:65:91:a4:e2:43:24:ba:21:4b:64:3a:
                    bb:a9:6c:59:bc:d6:9f:75:56:13:e7:1a:e5:36:71:b3:
                    2e:86:c3:a2:69:57:c5:9c:89:d2:d1:0c:ef:7e:24:9b:
                    04:94:96:b0:25:eb:80:ff:2b:4d:cd:96:fb:63:71:7c:
                    95:93:5c:fa:d5:b0:93:be:74:b9:49:55:44:44:14:2d:
                    6c:00:8d:5f:f5:93:4d:fe:fa:30:5d:61:d3:53:06:7c:
                    43:73:56:4c:af:b6:41:71:ec:39:24:16:1d:09:ad:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:ef:0c:ab:c9:96:b1:54:a1:0f:2d:87:1c:b5:fc:8e:
        ca:cf:eb:57:22:df:2a:e8:ba:e4:e9:d4:a4:98:51:0b:
        10:cc:a2:fd:53:ae:ea:9f:86:c4:3d:2d:77:77:d9:eb:
        fe:f4:3b:37:db:73:5a:74:2c:58:8b:17:16:52:ea:38:
        d9:ad:fa:85:8c:88:c0:37:ab:ee:a7:56:97:3f:15:38:
        58:d4:6c:e9:d5:3f:b8:22:6b:fe:3f:77:9f:27:51:d6:
        29:05:e9:fd:b8:a7:f5:d0:59:35:b6:fd:73:70:32:46:
        e2:af:96:26:88:92:8f:95:18:90:e7:6d:6c:71:8f:22:
        89:90:54:7c:80:46:bf:04:cd:8f:61:1a:82:33:f7:fb:
        76:df:97:1d:a8:c3:bd:90:da:04:fd:92:d5:b7:fc:47:
        62:5b:d2:f8:b4:25:38:9f:9f:0a:d6:1a:fd:5a:b1:6b:
        6e:27:ff:2d:1d:a3:e2:f8:0a:3e:31:ee:92:2b:55:c5:
        52:47:ef:79:61:ac:d8:7b:5d:9a:6c:4a:ce:6e:0e:36:
        8c:82:63:1c:bb:2c:3e:22:0d:15:ae:bc:95:6b:60:e4:
        f8:99:c8:a0:12:75:ba:89:f9:a6:59:df:b4:6c:23:2b:
        05:66:2d:bb:77:ed:f2:67:1d:05:cd:6a:9e:0b:c3:1a
    Fingerprint (SHA-256):
        89:A3:CE:07:0C:E4:E5:60:79:0E:E3:AC:7F:1B:54:92:5E:90:9C:35:89:04:38:83:76:0B:1B:6C:61:B7:86:AB
    Fingerprint (SHA1):
        E9:71:6B:D7:C7:32:93:0A:5A:0D:E9:BE:BA:4B:1C:21:08:FB:68:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2784: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153246 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2786: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153247   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153248   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2793: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2795: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2796: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153249   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2799: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2800: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153250   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2801: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2802: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2803: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2804: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153251   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2805: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2806: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2807: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2808: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153252   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2809: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2810: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2811: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2812: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2813: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2814: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2815: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153246 (0x1dee401e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:41 2017
            Not After : Mon May 02 15:32:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:3c:5a:65:45:57:e8:fd:19:f2:f9:44:f0:4e:ff:20:
                    d4:ff:09:a9:13:8d:b5:f7:42:30:8a:08:26:c0:c7:74:
                    22:8b:2c:5c:b6:e9:4d:92:37:c1:0a:60:3c:ac:3a:cc:
                    89:41:47:ca:90:e4:f7:43:10:b8:92:5d:38:db:34:12:
                    83:18:c5:48:d3:c8:28:87:75:28:05:ed:e3:2a:17:1e:
                    ea:67:8e:87:f0:7f:a9:8d:98:e8:0b:02:a6:8d:2d:69:
                    55:60:15:16:8f:d8:ca:f5:1f:b4:cb:81:25:52:c8:7a:
                    49:68:9f:b0:95:cb:87:e8:6c:78:2d:7d:dd:69:e3:11:
                    40:26:4e:7f:8e:8a:ab:bd:37:42:3c:60:25:90:62:9f:
                    c5:55:07:66:73:54:a9:99:97:22:6d:7a:72:df:d5:67:
                    cb:8d:e3:ea:d8:c6:49:49:96:8e:b2:68:1f:33:02:9e:
                    47:fe:9d:fd:ec:a2:04:a9:7f:b0:48:c7:80:98:74:44:
                    00:ee:cb:cf:1c:d6:06:f9:47:be:62:5b:82:30:5e:ea:
                    36:bd:f8:a8:1e:0d:cd:14:ad:73:7f:71:fe:70:48:21:
                    c8:d8:8f:7d:de:39:a5:97:f1:4e:2f:26:91:65:86:97:
                    23:2c:67:50:87:d1:f6:b8:71:b8:39:a0:97:11:21:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:e6:4e:8f:d7:5e:06:1b:12:92:47:af:ed:c7:c1:e6:
        28:68:12:2e:2f:65:69:f9:fb:d5:67:1b:26:eb:04:2d:
        15:13:51:d0:dd:e0:c6:19:2a:80:45:52:c1:9e:68:2a:
        e5:20:07:d6:98:72:fa:3c:81:2d:07:ea:09:be:37:89:
        47:5e:52:24:fb:d0:5f:45:21:29:ce:9c:1c:50:61:79:
        48:6f:40:f6:12:34:db:25:4e:16:c9:fd:cf:fd:7b:13:
        f6:e9:eb:c1:a3:2c:df:b0:41:d1:84:41:ac:9b:cd:08:
        20:3f:96:ec:1f:c0:e7:70:cf:c3:50:04:3b:c5:db:c0:
        8e:fb:54:ea:c4:27:d9:2b:a6:16:ab:3e:5d:1e:a8:8c:
        0b:ee:65:c7:0d:5e:35:5a:ed:b5:4d:55:ac:e5:0a:ae:
        dd:b1:d2:fa:65:2a:95:31:e0:a4:96:d4:2c:62:a1:f9:
        31:12:a6:5a:34:2a:0e:7c:fb:8e:35:27:ff:c3:e6:71:
        80:0a:78:51:02:18:ba:bb:45:34:7a:53:90:1a:ce:ce:
        d6:96:6d:28:76:b8:cf:62:30:9e:05:ca:af:89:bb:9d:
        f1:eb:70:76:a4:8f:8a:e3:2f:fc:9b:d2:79:b9:77:5d:
        9b:e6:08:0c:d2:69:aa:13:ab:61:cb:a0:1b:7a:66:62
    Fingerprint (SHA-256):
        FE:7F:F3:E9:C0:85:85:C4:CC:3E:FA:6A:2C:66:FE:C5:F8:ED:22:3F:77:F7:67:FB:CF:97:8C:47:1F:7A:38:CE
    Fingerprint (SHA1):
        4E:04:80:20:B0:22:D7:9D:DB:DA:6F:7D:97:1F:61:7E:BA:C8:8A:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2816: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2817: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2818: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2819: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153246 (0x1dee401e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:41 2017
            Not After : Mon May 02 15:32:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:3c:5a:65:45:57:e8:fd:19:f2:f9:44:f0:4e:ff:20:
                    d4:ff:09:a9:13:8d:b5:f7:42:30:8a:08:26:c0:c7:74:
                    22:8b:2c:5c:b6:e9:4d:92:37:c1:0a:60:3c:ac:3a:cc:
                    89:41:47:ca:90:e4:f7:43:10:b8:92:5d:38:db:34:12:
                    83:18:c5:48:d3:c8:28:87:75:28:05:ed:e3:2a:17:1e:
                    ea:67:8e:87:f0:7f:a9:8d:98:e8:0b:02:a6:8d:2d:69:
                    55:60:15:16:8f:d8:ca:f5:1f:b4:cb:81:25:52:c8:7a:
                    49:68:9f:b0:95:cb:87:e8:6c:78:2d:7d:dd:69:e3:11:
                    40:26:4e:7f:8e:8a:ab:bd:37:42:3c:60:25:90:62:9f:
                    c5:55:07:66:73:54:a9:99:97:22:6d:7a:72:df:d5:67:
                    cb:8d:e3:ea:d8:c6:49:49:96:8e:b2:68:1f:33:02:9e:
                    47:fe:9d:fd:ec:a2:04:a9:7f:b0:48:c7:80:98:74:44:
                    00:ee:cb:cf:1c:d6:06:f9:47:be:62:5b:82:30:5e:ea:
                    36:bd:f8:a8:1e:0d:cd:14:ad:73:7f:71:fe:70:48:21:
                    c8:d8:8f:7d:de:39:a5:97:f1:4e:2f:26:91:65:86:97:
                    23:2c:67:50:87:d1:f6:b8:71:b8:39:a0:97:11:21:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:e6:4e:8f:d7:5e:06:1b:12:92:47:af:ed:c7:c1:e6:
        28:68:12:2e:2f:65:69:f9:fb:d5:67:1b:26:eb:04:2d:
        15:13:51:d0:dd:e0:c6:19:2a:80:45:52:c1:9e:68:2a:
        e5:20:07:d6:98:72:fa:3c:81:2d:07:ea:09:be:37:89:
        47:5e:52:24:fb:d0:5f:45:21:29:ce:9c:1c:50:61:79:
        48:6f:40:f6:12:34:db:25:4e:16:c9:fd:cf:fd:7b:13:
        f6:e9:eb:c1:a3:2c:df:b0:41:d1:84:41:ac:9b:cd:08:
        20:3f:96:ec:1f:c0:e7:70:cf:c3:50:04:3b:c5:db:c0:
        8e:fb:54:ea:c4:27:d9:2b:a6:16:ab:3e:5d:1e:a8:8c:
        0b:ee:65:c7:0d:5e:35:5a:ed:b5:4d:55:ac:e5:0a:ae:
        dd:b1:d2:fa:65:2a:95:31:e0:a4:96:d4:2c:62:a1:f9:
        31:12:a6:5a:34:2a:0e:7c:fb:8e:35:27:ff:c3:e6:71:
        80:0a:78:51:02:18:ba:bb:45:34:7a:53:90:1a:ce:ce:
        d6:96:6d:28:76:b8:cf:62:30:9e:05:ca:af:89:bb:9d:
        f1:eb:70:76:a4:8f:8a:e3:2f:fc:9b:d2:79:b9:77:5d:
        9b:e6:08:0c:d2:69:aa:13:ab:61:cb:a0:1b:7a:66:62
    Fingerprint (SHA-256):
        FE:7F:F3:E9:C0:85:85:C4:CC:3E:FA:6A:2C:66:FE:C5:F8:ED:22:3F:77:F7:67:FB:CF:97:8C:47:1F:7A:38:CE
    Fingerprint (SHA1):
        4E:04:80:20:B0:22:D7:9D:DB:DA:6F:7D:97:1F:61:7E:BA:C8:8A:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2820: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2821: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2822: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153253 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2823: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2824: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2825: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2826: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153254   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2827: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2828: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2829: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2830: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153255   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2831: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2832: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2833: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2834: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153256   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2835: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2836: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2837: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2838: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153257   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2839: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2840: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2841: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2842: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153258   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2843: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2844: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2845: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2846: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153259   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2847: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2848: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2849: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2850: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153260   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2851: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2852: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2853: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2854: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153261   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2855: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2856: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2857: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2858: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153262   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2859: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2860: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2861: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2862: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153263   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2863: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2864: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2865: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2866: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153264   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2867: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2868: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2869: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2870: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153265   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2871: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2872: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2873: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2874: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153266   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2875: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2876: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2877: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2878: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153267   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2879: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2880: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2881: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2882: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153268   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2883: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2884: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2885: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2886: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153269   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2887: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2888: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2889: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2890: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153270   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2891: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2892: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2893: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2894: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153271   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2896: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2898: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153272   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153273   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2906: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153274   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2910: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153275   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2914: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153276   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153277   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153278   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153279   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2930: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153280   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2934: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153281   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2938: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153282   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2942: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2943: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2944: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2945: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2946: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2947: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2948: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2949: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2950: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2951: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2952: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2953: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2954: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2955: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2956: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2957: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2958: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2959: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2960: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2961: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2962: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2963: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153253 (0x1dee4025)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:32:45 2017
            Not After : Mon May 02 15:32:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:d1:23:c9:04:0a:89:1e:71:43:58:16:e5:23:9b:dc:
                    66:99:e2:76:b7:48:7e:67:56:05:67:47:01:04:fa:b7:
                    94:28:56:66:08:d7:1e:ed:61:53:89:a8:c8:9d:7f:86:
                    13:35:7b:39:5c:cc:f8:4e:16:8e:e8:ca:cf:be:f7:d3:
                    d9:01:08:07:b9:ec:27:62:31:42:95:ee:6d:76:d3:67:
                    31:9c:da:6f:60:ac:81:26:9c:b6:51:3d:e8:ab:43:9d:
                    e7:cf:e8:6a:45:b2:ea:45:e5:db:b1:c3:ec:3a:8f:35:
                    1b:ec:c2:84:6a:12:87:b1:78:9c:0c:12:89:3a:15:a4:
                    f8:5a:48:0d:ac:9e:ef:e8:ae:87:b6:25:f5:09:97:3f:
                    48:75:63:ed:5c:1b:8f:87:4e:92:f6:be:47:3f:ea:f5:
                    a6:d4:3b:9b:3a:6c:9f:52:f8:91:90:8e:1c:64:71:8f:
                    6c:8c:0c:6c:af:0a:ae:20:af:47:86:d0:6a:61:d3:4d:
                    8b:75:e6:5c:74:16:da:6a:49:f9:bf:aa:9c:87:7f:84:
                    39:0b:c9:bb:d0:22:21:f5:bd:c1:67:0a:5e:98:d8:07:
                    c0:96:19:bc:eb:9d:f8:56:52:46:3b:88:13:3e:e9:35:
                    28:61:19:ed:db:52:a7:2d:ba:7e:76:82:4e:a0:01:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:50:9d:43:68:51:25:f0:ed:ee:6c:1a:f0:74:eb:39:
        02:d7:19:fc:9c:d5:02:4b:9d:8e:c5:7f:2f:25:51:23:
        2d:ac:dc:c9:f4:8f:fe:bc:4e:d9:68:4a:9b:9e:7c:71:
        2a:83:6d:54:2f:44:27:b2:7d:a2:29:0c:2a:d4:c5:0e:
        36:be:0a:0f:b5:c9:a5:01:76:f9:12:ed:83:95:cd:7f:
        8f:e9:dd:9e:6a:a0:68:7e:3c:d5:0a:f3:bd:23:bd:b9:
        fa:4c:1c:0b:16:17:dc:3b:ad:5c:dd:0c:aa:56:19:15:
        55:6b:74:50:ab:b5:68:15:a7:dc:69:ae:41:20:47:46:
        04:cf:51:c2:74:53:95:44:b0:b1:42:15:88:39:c1:62:
        04:9f:c7:3d:e4:4c:c1:5c:3b:13:79:47:e8:38:7c:ff:
        28:32:30:1d:e7:07:b0:2a:df:3b:20:65:79:d6:99:37:
        dc:40:d7:ee:25:78:fb:e2:41:4c:1c:f4:0a:38:8f:41:
        42:77:8b:50:ac:b4:90:33:29:e1:4e:d2:de:cf:98:d3:
        6a:3d:7b:b5:2f:a8:13:38:78:3a:d9:69:5b:ee:4c:e7:
        1f:6a:f0:88:cd:1c:3d:31:93:50:92:10:ce:88:06:58:
        46:8b:3f:19:62:28:11:c6:f1:ed:86:9b:23:98:3b:1c
    Fingerprint (SHA-256):
        62:6B:F8:27:28:57:79:30:B3:D8:0B:6A:D5:9C:B4:F7:D4:80:0A:3E:A9:B0:80:2F:3E:C1:7E:A9:C6:E6:C9:DD
    Fingerprint (SHA1):
        1B:24:D0:92:3C:54:86:DB:00:0C:0B:82:19:CF:0A:17:9B:7B:33:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2964: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2965: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2966: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153283 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2967: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2968: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #2969: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2970: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153284   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2971: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #2973: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153285   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #2977: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2978: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153286   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #2981: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2982: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153287   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #2985: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153288   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #2989: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2990: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153289   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2993: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153283 (0x1dee4043)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:01 2017
            Not After : Mon May 02 15:33:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:4d:18:25:d1:55:e8:62:92:3d:ad:75:b2:b4:98:e2:
                    74:b8:d2:3e:ac:13:3d:9d:98:ea:04:08:fc:a0:ee:61:
                    ca:74:ff:21:51:65:32:d5:7d:03:91:9d:31:6c:6f:3f:
                    bf:db:ec:a8:0e:47:fb:6f:88:33:6b:f6:8b:cc:90:9b:
                    41:87:d5:f0:3c:44:a3:28:e1:a0:81:d8:41:fe:63:45:
                    3b:97:b7:1f:31:34:f7:07:fc:9b:d1:5d:e4:63:cd:1b:
                    36:7c:b9:c2:13:48:e2:19:9b:1f:46:a0:01:d4:db:85:
                    6c:36:19:00:a5:6f:64:bb:8b:49:f7:76:c6:80:f9:43:
                    4a:7c:69:c2:db:89:92:77:46:62:67:c4:51:3f:07:76:
                    64:63:fe:6b:96:24:35:7e:ee:4a:b7:1c:96:43:b5:9e:
                    1d:84:3d:f0:5c:e5:6b:9b:d0:c9:04:79:63:c5:70:96:
                    0a:42:31:76:3c:f1:c6:f7:a9:fa:6d:d6:a6:e8:07:14:
                    e4:6e:4b:39:d0:63:98:e5:c0:6f:7a:b5:0b:c1:53:13:
                    4e:f7:ca:33:6b:ea:d4:6e:42:b9:a0:30:60:b0:5e:b8:
                    f1:b9:61:84:8c:be:02:ff:cf:2f:08:62:c8:0a:2c:29:
                    10:f6:85:09:85:08:35:0c:1d:1e:88:54:97:d6:34:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:1f:4e:01:3c:87:32:5f:9a:34:d8:7f:6c:ae:5e:80:
        e9:8b:47:44:2e:39:e1:b5:34:d4:c4:08:2a:d6:e0:42:
        14:82:f8:40:33:33:2f:a4:95:a9:67:cb:31:78:4a:76:
        bd:59:a7:99:00:88:0d:92:3a:1a:6a:1b:cc:c8:d3:ce:
        33:5c:7d:8e:7c:7d:40:85:a2:4d:1f:3b:aa:0e:8b:22:
        58:1f:e6:59:32:18:11:ed:0c:5b:af:c2:51:56:66:6e:
        31:45:1f:5a:8b:ef:a8:08:5d:0c:66:c5:97:b9:93:21:
        2e:0b:fe:7e:4d:0e:b0:63:0b:09:87:b1:07:80:72:0f:
        e1:94:f1:44:e3:fc:27:06:4d:1d:66:3d:18:65:2b:38:
        b1:d4:5a:0a:c9:6b:a8:2f:ae:2f:8f:80:ae:f3:73:d9:
        7e:75:e6:8c:04:d9:b7:95:05:91:78:c5:2b:fa:9a:4c:
        90:83:9a:59:6b:20:b5:72:51:fb:b7:09:5b:12:ff:43:
        2a:b0:20:28:1e:e0:54:32:17:c2:3a:00:d6:06:a4:86:
        75:5f:4e:ba:7d:87:46:da:bc:f4:3e:36:77:63:7e:f1:
        51:8d:36:16:82:36:53:51:9b:46:e1:a6:6b:c8:94:98:
        a8:46:a5:c5:ca:1e:b2:e9:58:49:40:db:90:b9:1e:c0
    Fingerprint (SHA-256):
        8F:DA:E3:B9:2D:22:60:0F:5C:1A:0E:CF:DB:ED:4C:DD:A9:02:4A:6D:DF:5B:E5:5B:4B:89:17:1C:B1:F3:01:6C
    Fingerprint (SHA1):
        58:D9:21:1C:09:4C:2A:41:29:70:19:67:6D:57:85:B8:AB:AE:B0:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2994: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2995: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2996: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2997: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153283 (0x1dee4043)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:01 2017
            Not After : Mon May 02 15:33:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:4d:18:25:d1:55:e8:62:92:3d:ad:75:b2:b4:98:e2:
                    74:b8:d2:3e:ac:13:3d:9d:98:ea:04:08:fc:a0:ee:61:
                    ca:74:ff:21:51:65:32:d5:7d:03:91:9d:31:6c:6f:3f:
                    bf:db:ec:a8:0e:47:fb:6f:88:33:6b:f6:8b:cc:90:9b:
                    41:87:d5:f0:3c:44:a3:28:e1:a0:81:d8:41:fe:63:45:
                    3b:97:b7:1f:31:34:f7:07:fc:9b:d1:5d:e4:63:cd:1b:
                    36:7c:b9:c2:13:48:e2:19:9b:1f:46:a0:01:d4:db:85:
                    6c:36:19:00:a5:6f:64:bb:8b:49:f7:76:c6:80:f9:43:
                    4a:7c:69:c2:db:89:92:77:46:62:67:c4:51:3f:07:76:
                    64:63:fe:6b:96:24:35:7e:ee:4a:b7:1c:96:43:b5:9e:
                    1d:84:3d:f0:5c:e5:6b:9b:d0:c9:04:79:63:c5:70:96:
                    0a:42:31:76:3c:f1:c6:f7:a9:fa:6d:d6:a6:e8:07:14:
                    e4:6e:4b:39:d0:63:98:e5:c0:6f:7a:b5:0b:c1:53:13:
                    4e:f7:ca:33:6b:ea:d4:6e:42:b9:a0:30:60:b0:5e:b8:
                    f1:b9:61:84:8c:be:02:ff:cf:2f:08:62:c8:0a:2c:29:
                    10:f6:85:09:85:08:35:0c:1d:1e:88:54:97:d6:34:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:1f:4e:01:3c:87:32:5f:9a:34:d8:7f:6c:ae:5e:80:
        e9:8b:47:44:2e:39:e1:b5:34:d4:c4:08:2a:d6:e0:42:
        14:82:f8:40:33:33:2f:a4:95:a9:67:cb:31:78:4a:76:
        bd:59:a7:99:00:88:0d:92:3a:1a:6a:1b:cc:c8:d3:ce:
        33:5c:7d:8e:7c:7d:40:85:a2:4d:1f:3b:aa:0e:8b:22:
        58:1f:e6:59:32:18:11:ed:0c:5b:af:c2:51:56:66:6e:
        31:45:1f:5a:8b:ef:a8:08:5d:0c:66:c5:97:b9:93:21:
        2e:0b:fe:7e:4d:0e:b0:63:0b:09:87:b1:07:80:72:0f:
        e1:94:f1:44:e3:fc:27:06:4d:1d:66:3d:18:65:2b:38:
        b1:d4:5a:0a:c9:6b:a8:2f:ae:2f:8f:80:ae:f3:73:d9:
        7e:75:e6:8c:04:d9:b7:95:05:91:78:c5:2b:fa:9a:4c:
        90:83:9a:59:6b:20:b5:72:51:fb:b7:09:5b:12:ff:43:
        2a:b0:20:28:1e:e0:54:32:17:c2:3a:00:d6:06:a4:86:
        75:5f:4e:ba:7d:87:46:da:bc:f4:3e:36:77:63:7e:f1:
        51:8d:36:16:82:36:53:51:9b:46:e1:a6:6b:c8:94:98:
        a8:46:a5:c5:ca:1e:b2:e9:58:49:40:db:90:b9:1e:c0
    Fingerprint (SHA-256):
        8F:DA:E3:B9:2D:22:60:0F:5C:1A:0E:CF:DB:ED:4C:DD:A9:02:4A:6D:DF:5B:E5:5B:4B:89:17:1C:B1:F3:01:6C
    Fingerprint (SHA1):
        58:D9:21:1C:09:4C:2A:41:29:70:19:67:6D:57:85:B8:AB:AE:B0:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2998: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2999: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3000: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3001: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153290 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3002: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3003: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3004: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3005: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153291   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3006: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3007: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3008: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3009: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153292   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3010: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3011: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3012: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3013: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153293   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3014: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3015: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3016: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3017: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3018: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3019: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153290 (0x1dee404a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:06 2017
            Not After : Mon May 02 15:33:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:4d:6e:92:c4:2f:89:df:af:92:4d:55:88:2b:9f:3f:
                    10:76:68:bf:27:7a:c5:94:0b:7c:1a:e5:7e:e1:ca:d7:
                    61:9a:37:e9:25:ff:6c:29:0a:07:4b:a0:21:25:26:33:
                    5f:aa:cb:14:6e:cc:0b:54:be:34:d1:2f:99:0b:f7:20:
                    8e:d4:f6:e2:7d:d7:c2:1b:61:d3:65:47:00:c9:53:b8:
                    13:1a:b5:ad:8b:22:6b:00:57:a6:83:41:8d:4a:66:4b:
                    4b:50:e8:e4:3e:0b:ac:5c:1d:e8:7f:31:97:f3:fd:e4:
                    fd:69:48:a0:f3:3c:b2:66:2b:bd:d4:57:7c:8b:c1:df:
                    0d:17:b5:63:a8:60:c5:2d:aa:d8:44:18:c6:53:7e:ee:
                    49:f1:e5:fa:b0:20:14:19:71:ec:0d:51:7b:d0:fe:0d:
                    3f:a0:47:8d:b7:58:8a:14:80:ed:7b:8d:c4:b3:d2:44:
                    be:0e:4c:48:a4:ff:0c:40:96:08:50:c4:3f:e0:43:85:
                    63:b2:fa:af:1a:c7:95:b4:cf:24:35:7c:0e:84:2b:ad:
                    93:5a:e6:57:30:61:0a:46:ba:f2:17:cf:3b:0b:32:1d:
                    45:88:dd:dd:6d:42:48:53:11:f5:e4:64:a2:8c:5e:de:
                    01:8b:a1:07:c0:b2:5b:5b:b0:49:5d:5f:8a:1a:98:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:d8:66:af:bc:fc:4b:13:05:2a:1b:da:18:90:27:de:
        72:9a:26:d2:f8:c4:ad:2f:26:2f:37:af:b1:67:b8:eb:
        de:52:e3:db:07:a7:c4:53:dd:70:70:8d:36:2f:b3:d1:
        57:de:dc:18:fd:e3:08:b4:70:3b:4e:4d:ff:75:30:30:
        a9:b1:d6:f9:ee:bf:df:67:c2:ef:73:0f:2b:19:00:be:
        e0:19:fe:b5:4c:77:9d:86:42:f9:7b:5f:5c:53:8a:e0:
        85:9e:b6:bd:85:e8:e5:34:f3:c4:1f:7c:65:d4:b6:66:
        27:42:34:ab:00:ab:cf:18:28:a5:47:93:88:b4:a9:0b:
        54:6a:15:2a:18:45:e2:ba:a6:a0:b4:ad:87:10:90:5c:
        14:be:d6:14:b7:13:5a:f1:1f:f4:0f:75:04:c3:ab:92:
        1e:e5:5a:74:bb:3d:2b:5a:78:3b:89:5e:9d:15:44:40:
        11:96:51:88:81:63:cc:45:dc:39:6b:4a:1d:3f:cf:ac:
        08:a8:21:be:67:76:4f:62:0c:80:7d:af:df:84:56:34:
        fa:27:26:d2:67:a8:6b:f3:fe:1a:8d:3d:ca:4b:17:2d:
        33:91:79:0a:51:fd:fd:83:84:9c:ba:64:c4:c6:25:c9:
        0e:3f:14:11:c0:47:da:b8:2f:61:8f:f9:71:4a:c9:3d
    Fingerprint (SHA-256):
        99:D4:15:7E:BC:3F:74:FF:D1:83:53:C7:30:A6:E9:68:C0:41:46:2B:2B:52:D5:18:9D:EA:DF:AE:30:AA:0E:C1
    Fingerprint (SHA1):
        62:92:4B:0B:F4:20:78:00:F5:2E:86:B6:A7:95:48:6A:C9:03:2C:47
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153291 (0x1dee404b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:06 2017
            Not After : Mon May 02 15:33:06 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:66:5e:e8:37:31:cb:e4:f0:3a:88:0f:23:7f:8e:54:
                    5c:bb:10:01:46:97:2f:d1:63:5b:2f:27:f1:c6:10:af:
                    0d:d3:43:16:22:1d:bf:e0:26:bf:fe:6d:a5:9c:62:25:
                    65:e5:31:f5:3a:32:75:da:07:2b:8d:12:61:92:73:e3:
                    f0:e8:bb:a6:71:a2:6c:f2:c0:c1:9b:e1:7b:dd:71:c6:
                    c2:0c:a8:30:43:10:bb:75:c2:b3:94:f3:d7:b6:91:79:
                    a6:71:b4:ab:83:e9:c4:ed:42:bc:cc:cf:2a:a5:3f:95:
                    73:a2:ec:d2:7d:1a:5e:e9:13:5d:ab:a2:46:68:0a:00:
                    2c:8f:c4:55:39:ef:7f:eb:62:c6:2d:1e:ac:66:63:6c:
                    c0:9e:04:2f:f3:33:21:2b:1c:17:2a:17:9a:b7:9d:62:
                    fc:91:9f:36:e4:fa:ae:6d:ad:e6:ad:29:83:f3:3f:c9:
                    35:93:d7:86:b6:19:6d:9a:97:54:b5:ca:40:07:b8:8b:
                    8f:07:42:63:15:1e:44:21:19:88:22:e8:b4:3f:a7:11:
                    f6:a6:dd:cb:54:82:d9:df:d2:b0:25:3a:f5:9a:09:f4:
                    dd:8f:47:a5:6c:9e:b7:ef:51:6d:97:93:d9:c2:29:25:
                    90:b2:a2:9a:74:51:06:1a:c6:2b:b3:65:d3:92:b5:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:a3:ac:5e:48:66:d1:9f:bb:33:58:4f:0c:ff:1f:1e:
        2e:61:26:d5:c0:9d:9e:86:fc:93:29:c2:56:1b:4e:07:
        8e:0f:24:00:20:5d:1d:a7:63:42:cf:9c:41:03:54:d1:
        35:47:48:a7:cb:d3:40:91:fe:77:70:11:aa:4f:38:2a:
        7d:a5:67:50:65:69:f9:d0:d6:55:95:ef:3c:e7:df:d9:
        2d:2c:79:7d:f7:ca:dd:97:d0:5b:30:f1:b2:4d:96:0e:
        d4:54:09:15:6a:0f:fa:20:15:32:06:c0:14:e1:0b:eb:
        2d:a6:72:3d:8e:d3:e7:11:23:02:f2:f0:ad:19:12:eb:
        c7:b2:d0:42:ca:22:03:78:88:82:e9:ff:8f:dd:22:a4:
        3b:f1:14:da:b7:5d:3d:25:62:00:9c:d3:71:58:1f:0e:
        87:d6:dd:b9:e5:38:f5:70:ff:41:17:d4:e5:8d:d3:05:
        1b:c6:da:80:02:78:dd:e8:f3:88:81:8d:ea:80:0c:8c:
        b4:c7:f6:dc:b8:b1:25:19:22:67:fd:79:45:d0:eb:de:
        29:51:d4:8e:77:34:36:23:d9:13:4f:94:a5:b3:03:cd:
        68:fd:be:62:fe:e2:8e:f7:47:77:70:23:49:02:30:cb:
        51:a0:c6:62:f5:4f:98:a3:ff:5d:71:09:85:9b:11:b9
    Fingerprint (SHA-256):
        0E:E1:40:E4:C5:51:0E:A8:49:15:1C:6A:3F:64:DC:73:7E:87:0A:61:79:8F:76:59:99:98:41:97:CA:E3:A2:F7
    Fingerprint (SHA1):
        8E:A6:9F:99:8B:1C:28:BA:D9:25:54:20:57:74:8C:07:36:87:EB:D9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3023: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3024: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153292 (0x1dee404c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:06 2017
            Not After : Mon May 02 15:33:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:88:a7:61:0a:02:47:bb:7f:ad:83:a4:2d:21:6d:f6:
                    e1:54:1e:e9:98:1a:c3:61:0d:0b:80:3f:00:b1:82:11:
                    d0:de:ae:2a:43:7d:a0:aa:6a:4c:52:ad:33:70:4c:33:
                    aa:cf:f8:0d:40:c2:14:27:1b:de:ab:d4:47:82:4a:4a:
                    f3:06:15:1e:fa:c2:70:bb:e9:e1:3c:ba:09:20:13:2f:
                    19:5b:72:b7:37:20:67:8e:37:33:6a:88:47:00:d6:1b:
                    4f:9e:66:1e:e6:98:56:5b:a1:7d:51:87:94:a8:1b:d4:
                    d5:73:f7:f5:b2:c1:f7:bc:58:29:46:b2:4a:9b:63:5d:
                    c8:2e:18:cc:2f:ab:95:14:80:1e:72:8a:3c:7f:c6:6e:
                    1c:ee:dd:82:b0:2f:37:b0:0a:37:17:ee:9a:f6:88:8d:
                    00:ba:28:71:28:7d:b5:f5:c7:be:26:af:76:d8:c2:01:
                    39:fc:d3:24:7b:29:5c:1d:fe:df:18:d3:ab:22:36:76:
                    2c:e6:74:ff:22:1c:28:c6:5d:3f:3f:06:ac:52:6d:e5:
                    34:1d:e1:3d:47:1c:2d:48:73:0c:2f:42:93:ae:ce:c5:
                    da:64:38:34:a2:bc:11:3a:35:b8:e0:84:fc:32:d3:5c:
                    2d:a2:99:1e:de:15:ee:6d:35:82:cf:a0:47:e7:4d:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:8e:93:d5:4a:3a:06:4d:b6:d6:57:47:01:56:b9:c2:
        c5:b4:e8:8b:cd:f0:98:bd:88:b5:6d:3d:70:79:83:b9:
        73:c0:ce:32:88:b1:96:29:cd:01:38:c8:02:db:b7:9f:
        64:3b:2e:37:11:a4:0f:fd:34:1f:a5:5a:5d:5e:89:7a:
        96:81:53:06:b8:e3:b0:6e:44:fc:c4:29:f0:b4:7c:dd:
        a1:08:ad:24:3d:6c:39:e0:81:2b:87:9f:b8:d9:d1:81:
        89:df:12:68:ea:81:30:06:ee:ba:a8:20:ea:78:f3:ff:
        a7:54:23:8f:66:36:3c:b1:72:ee:17:82:de:a8:e6:7f:
        8e:b7:7e:93:58:1f:fd:d6:f5:ee:c4:f8:0c:21:f4:ef:
        c3:bf:c1:50:9a:14:39:c0:a8:37:8f:82:83:c1:ab:b8:
        5d:b4:a4:d2:4d:d3:3f:32:0b:c7:cb:04:4d:bb:f9:c1:
        15:fb:5c:9a:d4:56:a3:0c:c5:97:db:3c:48:50:57:79:
        52:e0:1d:e0:a0:b9:86:a0:f2:c0:7f:90:df:02:41:4f:
        59:aa:9a:6c:1f:42:5b:a2:ae:69:5b:b7:50:8e:ba:b9:
        52:d3:cb:26:45:d2:b6:e4:10:b0:3d:dd:45:8a:57:14:
        4a:25:c6:5e:75:a4:c1:9f:54:f1:08:2e:ed:b3:5f:87
    Fingerprint (SHA-256):
        A7:4B:50:DB:81:E7:B2:A8:15:48:C4:8E:78:2A:A3:A6:FF:32:68:6F:4B:78:5E:70:63:0D:E8:F9:5A:27:67:83
    Fingerprint (SHA1):
        DC:AE:4B:14:0C:A1:FE:D9:82:E4:D0:FD:39:4C:40:68:0B:D6:FC:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3026: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153294 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3027: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3028: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3029: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3030: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153295   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3031: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3032: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3033: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3034: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153296   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3035: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3036: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3037: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3038: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153297   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3039: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3040: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3041: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3042: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153298   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3043: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3045: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3046: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3047: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3048: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3049: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153294 (0x1dee404e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:07 2017
            Not After : Mon May 02 15:33:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:b9:a1:1d:bb:c2:57:64:a9:17:e9:2c:cd:a8:8c:5b:
                    2a:27:55:89:a9:eb:18:d4:51:01:e4:2d:d3:1d:25:9e:
                    9b:ee:19:f8:69:d9:74:73:f0:6a:05:b1:bf:92:10:be:
                    df:69:c3:1b:1c:98:cb:0b:c4:8b:70:b3:ca:6c:e6:84:
                    51:af:a7:41:77:cb:4c:cd:3f:db:96:23:36:ca:3e:07:
                    76:4b:59:02:59:8e:e0:d4:69:aa:97:90:95:3c:3d:2a:
                    b7:cd:bb:0b:ae:6d:99:b0:29:2a:f8:7f:34:04:38:35:
                    9b:a8:b8:a1:81:42:32:78:b4:ce:cd:b0:8b:19:67:b1:
                    31:1d:12:62:5d:f0:53:c1:30:70:5e:1b:e7:8a:b6:f2:
                    00:1f:3c:6d:70:7b:d5:87:28:01:e7:48:2a:2f:ce:4f:
                    f1:60:d5:23:c2:f5:7c:37:37:c1:fa:9b:c6:ec:1b:62:
                    0c:a5:f9:ce:7b:b5:fc:65:74:21:48:f8:1e:20:84:49:
                    1a:da:67:8c:f5:8d:cf:1e:44:f7:54:47:ac:5e:38:87:
                    4c:0c:b0:b9:c5:de:2c:bb:32:bb:b1:c6:29:90:77:ae:
                    00:9d:1d:ff:c9:cf:9c:22:9e:5f:be:33:7a:79:a4:74:
                    5e:b9:d9:f1:c0:d3:b8:3d:09:78:ba:ab:d0:22:28:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:66:2d:a2:b8:c5:98:ba:c7:e9:1d:f4:25:ce:f7:ce:
        1c:22:ea:1a:b0:0e:33:33:45:66:05:32:db:f2:51:a5:
        db:79:a1:88:40:97:7f:d6:c2:0e:3c:c6:2b:59:9c:97:
        a0:48:9e:77:c1:3c:5a:51:27:29:bd:1c:0e:28:f1:05:
        aa:90:51:74:b6:2d:3c:48:ca:b0:e1:a5:c4:23:cc:92:
        c9:62:49:6e:b3:44:72:59:48:07:8c:f1:00:ac:e2:81:
        d4:08:60:41:cb:a8:0a:a8:b6:51:4e:52:23:7e:7d:0a:
        f4:bd:91:d3:4d:36:23:37:d9:eb:ea:01:3b:13:14:68:
        1c:4a:f8:59:22:bf:57:ff:f9:95:a5:ca:de:3d:d9:5a:
        be:55:e2:eb:92:cb:5c:ac:22:2c:d9:b5:b9:6f:e4:61:
        c0:81:bc:1e:e7:26:5e:d8:96:67:f8:f2:88:17:3a:ec:
        aa:d8:5e:d9:63:5b:c8:d4:d3:a3:a8:07:42:70:8d:a3:
        fd:49:a7:9f:89:e5:15:85:71:e5:cd:7f:33:6e:59:c0:
        1a:a6:60:e1:d0:9a:6d:79:7e:ef:15:f2:fd:48:c8:a2:
        42:5e:58:d1:a5:09:a5:fe:bc:45:6f:73:36:82:b7:e8:
        2e:c1:30:bf:0e:da:47:f1:71:65:4f:ac:02:17:da:37
    Fingerprint (SHA-256):
        7E:B7:0A:C5:BB:E3:E8:85:8A:CC:59:55:56:31:F2:84:80:3B:D9:6A:64:28:B7:95:77:0B:DF:FA:F5:69:99:0A
    Fingerprint (SHA1):
        5C:B3:00:A3:FA:9C:BA:B5:81:C6:51:5F:EB:01:71:DC:1C:9A:94:1D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3050: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3051: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153295 (0x1dee404f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:08 2017
            Not After : Mon May 02 15:33:08 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:86:15:e0:2b:7a:51:1e:5e:23:ba:a1:6e:78:6a:f6:
                    68:ac:01:42:38:3a:cb:0d:7f:31:9c:2b:9f:6c:d9:57:
                    95:86:f9:61:7b:bd:3c:cd:94:e1:5b:37:b0:e6:02:28:
                    42:57:6e:41:c0:14:72:0f:f5:d7:70:cf:97:6c:d4:d2:
                    dd:f5:77:8b:c2:ff:f4:3b:4d:f5:f1:b7:db:f2:d5:05:
                    1e:49:e1:0a:62:1a:9f:03:75:90:56:63:23:7a:b1:df:
                    3a:48:35:84:83:14:00:c8:44:18:f9:ba:c8:8b:51:78:
                    eb:89:df:6f:97:32:24:aa:0b:de:cb:f4:e4:a4:6c:9d:
                    51:76:b3:ab:41:b6:9c:87:27:35:73:f2:9a:0a:e8:c3:
                    1a:25:37:9a:d5:b4:29:32:66:4b:d3:5c:3e:65:33:c8:
                    c5:b0:08:9d:d8:db:18:4d:62:8d:05:42:95:84:4b:ca:
                    5f:39:fb:1d:86:f3:ff:62:fe:a1:c7:f4:cb:28:3b:30:
                    a3:c0:62:fb:ad:d3:44:7a:c7:56:95:70:66:be:76:ae:
                    22:9a:4b:13:f7:fe:70:75:1f:6d:79:ea:49:d0:71:b8:
                    98:e0:ec:32:e0:bc:1f:a8:1d:e7:47:ef:ad:fe:22:d8:
                    9d:1e:d4:a6:18:d9:6b:97:f9:26:ec:c2:7a:9e:f7:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:2c:6a:ae:e2:f5:83:7f:71:92:45:79:ba:68:70:c3:
        88:e5:2d:e8:0f:94:ce:0f:10:57:74:40:2b:87:96:9d:
        f5:65:74:b2:16:d5:2a:de:1e:5e:a4:43:c3:4e:9e:da:
        01:a3:e0:fb:48:77:59:18:bb:f3:2e:e6:e4:c4:41:23:
        09:e6:92:48:37:4a:70:89:c0:5d:8e:d2:4c:a8:8b:cd:
        50:08:6e:b3:54:d9:61:56:b5:5c:53:17:eb:70:6c:81:
        89:4e:d5:d5:41:e0:be:eb:85:53:f3:1b:4f:2a:cb:81:
        a0:51:35:c9:18:c7:3c:78:af:ce:79:29:8f:6b:db:44:
        5a:72:05:e3:e9:42:bc:fd:0d:08:6b:02:e3:02:8f:bc:
        fb:f7:eb:ea:65:bd:b5:35:dc:69:27:dc:57:4c:01:d9:
        26:06:04:69:8c:dd:bf:09:6f:54:02:9e:9f:d3:29:1a:
        fc:e5:25:49:11:4e:0b:22:0b:b6:da:a6:a8:0a:d1:46:
        9d:98:55:b4:32:f0:3e:91:61:47:e7:40:33:40:3e:5e:
        77:37:9a:e9:d1:86:3d:ce:dc:06:24:4d:fd:8d:cf:37:
        24:3f:a3:34:c3:ef:09:27:88:df:a8:e9:f1:ea:47:fd:
        46:fa:ae:a4:00:f1:bf:bb:52:fc:ee:6c:7d:0f:93:20
    Fingerprint (SHA-256):
        0B:A7:84:FF:3F:38:C9:77:83:09:60:70:FC:D5:49:22:F6:95:A1:5A:21:07:BD:2D:DE:74:ED:74:22:F6:68:9D
    Fingerprint (SHA1):
        83:70:80:9A:97:48:05:0D:4D:A2:D5:C3:91:C7:BC:18:2F:7F:2A:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3052: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3053: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3054: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153296 (0x1dee4050)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:08 2017
            Not After : Mon May 02 15:33:08 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:3a:8c:e0:bf:e7:28:55:f0:92:81:ed:94:68:45:ee:
                    c9:d1:4c:47:51:62:f8:90:2d:95:89:a8:f2:55:8e:5f:
                    3a:6a:1c:fe:eb:59:cc:cf:c7:e2:82:8f:e1:e5:ac:a2:
                    cd:8b:30:37:a9:3a:57:24:b5:8a:43:34:d6:c1:0c:07:
                    55:da:3e:a4:d4:35:ea:4f:34:08:a7:93:d9:49:46:2d:
                    ee:f4:f5:ba:75:19:62:16:43:32:ea:12:e5:fc:ba:a2:
                    7b:38:c2:36:5c:50:23:79:a6:fd:37:d1:8a:7b:58:82:
                    18:40:a7:27:31:a3:dd:c2:08:0e:17:7d:78:11:6a:dc:
                    12:2e:a4:38:58:a3:2f:59:72:c0:e8:96:e0:9e:08:80:
                    57:c7:78:e4:b3:1d:7e:58:3d:13:e8:b3:9c:1f:82:57:
                    89:27:12:c1:ba:5d:47:29:a1:14:28:94:66:b1:37:1b:
                    53:8e:ee:82:29:4e:e3:c5:81:de:ef:74:fc:05:2c:2d:
                    9e:02:ed:a4:e7:f8:14:de:7a:f7:d5:92:6e:e5:84:12:
                    33:65:1a:a2:63:6e:57:70:3f:96:cf:19:53:79:e2:f8:
                    3f:40:6d:4d:5a:a0:f3:96:45:35:ae:ba:cd:7f:df:02:
                    b4:b6:f7:86:ca:eb:2c:39:ec:0a:fb:96:d5:23:61:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:99:cf:cf:5a:a0:ff:c8:22:08:13:43:70:98:da:ba:
        e9:ad:a0:d5:23:47:89:46:c0:21:c1:00:e0:ac:de:cc:
        7d:9e:f3:76:13:9a:de:69:60:c9:e5:e7:c8:47:b8:6a:
        b4:5f:e8:26:2c:c6:ea:a1:ff:9c:65:3d:e2:45:e2:fc:
        0a:ab:c5:c4:35:4c:44:f4:6d:70:5a:aa:40:28:8a:83:
        74:1b:5a:f8:34:f3:2d:b9:d0:4e:90:d8:47:88:67:e4:
        cb:87:c8:75:a2:37:cc:88:d3:df:42:9b:72:94:c4:d8:
        f5:e9:98:bd:47:7a:e3:b9:94:6c:86:62:e7:db:c8:bc:
        10:02:a0:63:9f:35:04:b8:e7:bd:f9:08:1a:a2:f2:a0:
        bd:0e:20:5f:5e:c7:4a:91:6e:f0:aa:a5:5e:72:33:bd:
        5e:6d:9b:7c:53:5b:67:85:16:6e:1e:bf:31:e1:00:6f:
        e7:2e:c5:1f:a9:ba:b0:fe:6d:dc:fd:c5:3d:09:d9:1c:
        31:29:f7:8f:17:0d:8f:2b:08:b4:19:c3:f6:cf:77:83:
        fc:2f:4c:03:af:60:40:c3:ed:3b:76:31:94:d0:27:c4:
        d4:fb:93:45:68:43:70:36:2e:e6:17:6e:c0:c0:c2:63:
        5e:aa:c6:60:f2:96:e6:a2:ff:21:f1:f7:0e:82:7b:c3
    Fingerprint (SHA-256):
        FA:FF:C2:4C:05:B8:91:B4:69:7F:95:73:E8:D6:8A:7E:13:78:2B:E4:E9:DC:E5:49:10:F4:71:06:BC:AC:DA:E8
    Fingerprint (SHA1):
        4C:05:94:21:6C:28:4B:0F:E1:3E:BF:B8:C9:56:3D:6D:F9:A5:D0:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3055: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3056: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153299 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3057: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3058: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3059: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3060: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153300   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3061: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3062: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3063: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3064: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153301   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502153208.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3065: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3066: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3067: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3068: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153302   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3069: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3070: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3071: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153299 (0x1dee4053)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:09 2017
            Not After : Mon May 02 15:33:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:84:89:b3:2a:3d:5e:19:53:7f:64:9d:03:b9:04:1f:
                    c1:2e:be:1c:92:77:c2:4c:0d:72:c3:92:22:00:5f:4b:
                    ac:80:c8:5c:b5:52:79:c9:2a:09:54:59:34:11:b2:a8:
                    94:6f:41:db:48:38:3e:27:eb:0a:f9:49:2c:70:d2:0b:
                    6a:87:fb:00:9a:cf:19:ad:ee:9f:56:7a:1f:61:6e:cd:
                    7b:60:cc:8a:35:9a:03:24:5a:e1:64:01:db:5d:fd:e0:
                    d7:5e:55:19:68:2f:bc:39:b6:0c:38:44:7c:a0:86:65:
                    73:96:fe:a1:dc:51:7f:07:0b:7b:91:48:b4:a1:2b:b4:
                    cc:34:e5:b7:39:81:a0:bc:8e:11:67:8f:89:f9:62:63:
                    42:96:41:44:38:d1:56:af:db:32:c4:fc:ba:92:5f:ca:
                    02:92:de:40:b4:c0:c8:de:b9:7e:53:50:06:21:0c:6d:
                    13:67:50:bd:66:19:be:78:e0:59:06:c8:ad:d0:69:c9:
                    25:b9:81:97:bb:80:c7:95:9d:f9:d5:c1:3c:65:da:77:
                    f1:9c:ca:d8:ff:65:f5:b8:a0:59:85:96:25:a2:ed:8d:
                    f3:cc:3e:f2:9e:41:3c:e1:31:a3:3f:8c:85:4b:41:90:
                    ba:a0:2f:1a:5b:f9:cd:dd:f9:ef:99:ff:8b:fb:b9:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:6d:ba:3b:be:1a:09:f9:2b:b4:84:b2:6d:2e:bb:9e:
        d8:1a:08:85:6d:ec:7e:99:f4:2c:98:1c:ee:e2:f9:8b:
        e7:62:98:b3:6c:5d:7b:31:a2:ab:d5:88:79:22:dd:6d:
        26:c3:dc:58:89:20:82:0a:c2:74:14:a4:45:48:c8:6f:
        ac:8f:79:0d:fb:db:71:f3:e6:60:fe:eb:14:7c:3d:00:
        48:d4:da:d1:29:cf:8e:9a:82:b1:1b:33:e8:c3:a8:5d:
        70:8e:70:93:dd:4e:29:ba:0d:d1:aa:c3:c5:da:4f:bc:
        98:f5:82:d9:9f:a8:3f:27:bc:c2:34:53:68:5e:d7:fb:
        d0:95:61:12:97:bf:f9:43:af:df:2e:72:90:c5:14:47:
        6d:72:59:5d:97:04:2d:a6:49:1f:59:2c:00:e2:50:65:
        34:8f:1f:34:04:bd:91:d5:e7:95:13:11:05:15:e4:f4:
        4f:32:c1:d6:e8:97:6e:37:64:54:d6:cb:ab:41:40:a5:
        1f:4d:a8:e1:63:4a:39:21:20:4d:55:26:43:9e:c6:b2:
        c9:11:b4:05:5f:4b:91:a1:de:17:84:50:52:c8:5a:41:
        c9:f0:84:a8:db:0d:67:70:19:3d:4b:5a:a8:b2:b7:99:
        ee:96:ae:8a:c3:59:63:22:8c:49:41:a2:81:f3:99:95
    Fingerprint (SHA-256):
        5A:06:1D:2F:1B:AD:FA:8A:A4:00:D2:DF:B2:2A:D0:89:2F:58:5F:C8:63:C1:DF:DC:23:DD:5E:6D:B0:AD:A5:B6
    Fingerprint (SHA1):
        B3:98:5F:85:64:41:A2:66:B0:2C:F4:AB:A4:78:C3:D6:A3:70:F9:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3072: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3073: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153303 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3075: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3076: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153304 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3077: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3078: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3079: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3080: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153305 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3081: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3082: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153306 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3083: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3084: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3085: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3086: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3087: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153307   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153209.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3088: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3089: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3090: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3091: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153308   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3092: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3093: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3094: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3095: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153304 (0x1dee4058)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:12 2017
            Not After : Mon May 02 15:33:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:68:fe:1b:67:87:37:90:69:66:e9:69:a5:dd:bb:a9:
                    37:cb:ee:cb:dd:5b:c7:e1:5f:7c:42:98:40:d3:aa:60:
                    4a:97:d8:9f:37:36:6a:39:bc:c9:44:2c:5f:23:84:5a:
                    27:aa:55:6a:fe:09:f6:ec:72:19:1b:e7:06:1f:e0:75:
                    47:73:cd:ad:ed:25:59:0c:44:cd:1f:5b:26:fb:ec:1d:
                    da:87:40:71:2b:33:0b:d2:80:39:f7:0d:8d:a5:b0:aa:
                    bd:ab:74:f3:be:84:6c:fd:92:22:ba:e4:ec:ab:4d:ca:
                    56:bf:dd:28:bc:6f:5e:83:d3:d0:32:5a:66:c6:02:a2:
                    6a:9b:0d:f8:df:61:81:41:cf:6c:45:f5:4a:6a:e8:c4:
                    df:b9:c2:3b:89:7c:ab:d0:fa:d4:bc:c9:4a:24:06:b0:
                    e0:86:11:cb:ac:10:7b:f1:34:c3:97:89:22:32:b1:4b:
                    7b:6c:89:6e:86:18:34:c9:b7:75:2c:99:06:23:b3:80:
                    33:d7:fe:ee:8e:e1:65:3c:9d:74:60:54:97:d7:c4:24:
                    a0:83:24:cf:46:91:36:d8:60:9b:ac:6a:7d:21:33:61:
                    f4:ee:37:aa:1f:c3:cc:91:5d:8f:e4:2a:03:d6:96:c9:
                    58:65:eb:1d:2e:17:66:b3:9c:b1:d5:0c:77:69:ff:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:aa:51:06:5b:e4:81:70:0c:19:8b:54:fb:a1:0a:6a:
        a0:4c:de:4c:f7:af:9e:66:5d:00:e9:08:d2:a9:87:e7:
        dc:88:44:75:fe:a9:b8:9f:e9:16:9b:19:b6:5d:32:4e:
        06:71:c3:38:b5:04:b5:55:31:c7:8b:48:86:a0:e7:03:
        cf:39:a3:ec:46:91:03:61:4b:0d:25:07:d0:42:22:37:
        68:d7:59:bb:0a:57:f6:a2:dd:91:2f:8e:72:1f:3a:92:
        2e:14:1a:82:27:20:a3:84:74:e5:23:23:3b:8c:a1:c7:
        24:68:00:1d:d0:e7:b1:47:c3:db:3b:35:65:d6:3c:38:
        1d:81:bb:1a:51:78:a6:6e:59:ec:5a:78:00:6f:60:1d:
        37:2d:cf:24:8f:46:a9:60:e1:c0:4e:31:63:83:ad:46:
        a4:be:df:18:43:2f:c5:b0:2e:f1:e2:48:0c:c2:b3:2a:
        d5:f4:43:fb:f1:74:3a:9e:fd:c2:c5:57:b9:da:3b:6b:
        a6:81:e9:70:cf:a7:69:d6:b9:bc:2b:98:af:61:42:39:
        b1:2d:c7:a1:85:cf:9d:ce:91:1f:90:e6:a3:7c:d3:d0:
        4f:52:a5:66:12:46:1b:16:47:95:8b:c7:3d:88:8b:63:
        20:98:f1:19:cc:52:ff:45:47:39:1d:4f:ca:c2:18:1e
    Fingerprint (SHA-256):
        35:3F:AC:43:12:C2:F4:1E:4E:39:7A:53:65:C4:C9:C5:4F:35:89:53:E5:C3:E2:23:A2:C9:15:93:88:F9:9E:D4
    Fingerprint (SHA1):
        72:D1:6F:97:FF:67:A2:55:C3:AC:67:3D:E1:5E:95:3B:D3:CA:54:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3096: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153304 (0x1dee4058)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:12 2017
            Not After : Mon May 02 15:33:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:68:fe:1b:67:87:37:90:69:66:e9:69:a5:dd:bb:a9:
                    37:cb:ee:cb:dd:5b:c7:e1:5f:7c:42:98:40:d3:aa:60:
                    4a:97:d8:9f:37:36:6a:39:bc:c9:44:2c:5f:23:84:5a:
                    27:aa:55:6a:fe:09:f6:ec:72:19:1b:e7:06:1f:e0:75:
                    47:73:cd:ad:ed:25:59:0c:44:cd:1f:5b:26:fb:ec:1d:
                    da:87:40:71:2b:33:0b:d2:80:39:f7:0d:8d:a5:b0:aa:
                    bd:ab:74:f3:be:84:6c:fd:92:22:ba:e4:ec:ab:4d:ca:
                    56:bf:dd:28:bc:6f:5e:83:d3:d0:32:5a:66:c6:02:a2:
                    6a:9b:0d:f8:df:61:81:41:cf:6c:45:f5:4a:6a:e8:c4:
                    df:b9:c2:3b:89:7c:ab:d0:fa:d4:bc:c9:4a:24:06:b0:
                    e0:86:11:cb:ac:10:7b:f1:34:c3:97:89:22:32:b1:4b:
                    7b:6c:89:6e:86:18:34:c9:b7:75:2c:99:06:23:b3:80:
                    33:d7:fe:ee:8e:e1:65:3c:9d:74:60:54:97:d7:c4:24:
                    a0:83:24:cf:46:91:36:d8:60:9b:ac:6a:7d:21:33:61:
                    f4:ee:37:aa:1f:c3:cc:91:5d:8f:e4:2a:03:d6:96:c9:
                    58:65:eb:1d:2e:17:66:b3:9c:b1:d5:0c:77:69:ff:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:aa:51:06:5b:e4:81:70:0c:19:8b:54:fb:a1:0a:6a:
        a0:4c:de:4c:f7:af:9e:66:5d:00:e9:08:d2:a9:87:e7:
        dc:88:44:75:fe:a9:b8:9f:e9:16:9b:19:b6:5d:32:4e:
        06:71:c3:38:b5:04:b5:55:31:c7:8b:48:86:a0:e7:03:
        cf:39:a3:ec:46:91:03:61:4b:0d:25:07:d0:42:22:37:
        68:d7:59:bb:0a:57:f6:a2:dd:91:2f:8e:72:1f:3a:92:
        2e:14:1a:82:27:20:a3:84:74:e5:23:23:3b:8c:a1:c7:
        24:68:00:1d:d0:e7:b1:47:c3:db:3b:35:65:d6:3c:38:
        1d:81:bb:1a:51:78:a6:6e:59:ec:5a:78:00:6f:60:1d:
        37:2d:cf:24:8f:46:a9:60:e1:c0:4e:31:63:83:ad:46:
        a4:be:df:18:43:2f:c5:b0:2e:f1:e2:48:0c:c2:b3:2a:
        d5:f4:43:fb:f1:74:3a:9e:fd:c2:c5:57:b9:da:3b:6b:
        a6:81:e9:70:cf:a7:69:d6:b9:bc:2b:98:af:61:42:39:
        b1:2d:c7:a1:85:cf:9d:ce:91:1f:90:e6:a3:7c:d3:d0:
        4f:52:a5:66:12:46:1b:16:47:95:8b:c7:3d:88:8b:63:
        20:98:f1:19:cc:52:ff:45:47:39:1d:4f:ca:c2:18:1e
    Fingerprint (SHA-256):
        35:3F:AC:43:12:C2:F4:1E:4E:39:7A:53:65:C4:C9:C5:4F:35:89:53:E5:C3:E2:23:A2:C9:15:93:88:F9:9E:D4
    Fingerprint (SHA1):
        72:D1:6F:97:FF:67:A2:55:C3:AC:67:3D:E1:5E:95:3B:D3:CA:54:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3098: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153309 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3100: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3101: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153310 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3102: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3103: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3104: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3105: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153311 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3106: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3107: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153312 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3108: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3109: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3110: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3111: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3112: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153313   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153210.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3113: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3114: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3115: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3116: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153314   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3117: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3118: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3119: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3120: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153315   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502153211.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3121: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3122: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3123: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3124: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153316   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3125: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3126: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3127: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3128: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153310 (0x1dee405e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:15 2017
            Not After : Mon May 02 15:33:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:65:d5:eb:e0:f5:bb:01:1c:26:dd:47:e9:97:bf:42:
                    28:e0:1b:11:27:39:b3:1b:86:c0:78:03:3e:b8:a2:f5:
                    74:e1:84:55:8a:f1:fe:80:d5:ae:34:1c:d4:8f:cb:f6:
                    19:bb:32:e7:86:56:80:90:73:e4:7b:29:4a:0f:14:e1:
                    ea:f7:3d:76:a1:0b:b0:79:3b:f2:1c:88:4d:38:ac:58:
                    a2:5a:6f:83:ec:30:45:de:b8:a0:80:ef:7f:2c:a2:68:
                    e2:dd:42:61:de:88:92:1e:84:4c:e0:15:9f:df:4d:75:
                    97:35:55:93:ae:64:8d:a8:9a:4e:6d:55:36:e0:cb:af:
                    a3:63:e3:9c:5e:11:01:c3:d0:c5:8c:dc:8f:47:3a:3f:
                    68:fe:e9:86:7f:6e:83:f0:be:2f:b4:25:2e:de:a6:ca:
                    16:00:3d:83:7d:48:c6:40:7a:fb:0f:e1:2b:8d:3e:33:
                    b5:af:00:d4:a4:9f:64:8a:a8:70:20:66:48:63:e6:c2:
                    e5:b6:fe:b4:08:68:42:41:fe:e1:e4:b9:fc:81:98:10:
                    73:a5:05:5e:4a:e0:d7:e8:00:8d:21:58:49:1c:86:d4:
                    bc:0f:46:9a:2d:b6:7b:af:4a:a9:33:4e:a0:c6:3c:0a:
                    37:bf:00:09:f2:a9:8a:32:58:71:5a:7a:6c:02:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:90:a5:c8:78:56:79:6c:56:1e:95:e4:0b:66:2a:f1:
        15:23:7b:05:e7:1e:c1:e1:94:ed:c7:20:22:f2:e0:ac:
        6d:8c:46:41:14:88:61:cb:63:cc:fa:30:52:c6:7a:f6:
        57:bd:69:8a:c7:bb:6e:8b:c6:ed:6c:e0:1c:b4:5d:59:
        29:b1:b5:59:65:c3:9c:56:79:cf:a9:99:e6:7a:af:b6:
        f9:87:9c:b8:44:73:67:de:1e:ac:d2:42:2f:7b:21:a4:
        0d:ca:6a:f6:53:84:d7:dd:b4:b4:21:9f:d6:0b:5c:36:
        e5:14:8e:9a:15:29:e5:61:77:f4:bf:e4:9b:26:35:7f:
        98:fe:d3:c7:da:06:05:75:fe:6b:9d:bc:90:aa:f0:53:
        e9:94:9b:f3:e7:4b:11:ab:c4:57:1b:dc:3a:0c:61:97:
        27:75:be:bc:c6:c6:19:ed:3b:c0:34:a7:7f:93:02:ab:
        e3:ee:69:5e:c6:ba:ff:f4:41:7b:77:82:f6:cf:d1:b9:
        0f:96:5b:04:cd:4f:02:42:8e:12:22:47:4c:f1:60:05:
        e1:ae:3e:c2:4b:29:04:48:60:af:e8:4f:23:41:9d:39:
        3e:de:68:ad:70:d7:44:fc:7a:2f:c8:69:e5:3b:1e:d8:
        44:9b:c0:47:27:a6:ca:9d:4a:4c:e4:c1:e8:1f:c0:e8
    Fingerprint (SHA-256):
        2C:82:72:00:F3:96:2B:BA:2B:66:5F:44:9F:CA:4E:37:BF:28:D3:76:73:BC:74:11:E9:78:B1:EE:46:34:ED:69
    Fingerprint (SHA1):
        32:20:AB:F8:7A:9B:4A:4E:E3:44:9B:9E:5F:AC:C3:4B:E8:B5:65:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3129: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153310 (0x1dee405e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:15 2017
            Not After : Mon May 02 15:33:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:65:d5:eb:e0:f5:bb:01:1c:26:dd:47:e9:97:bf:42:
                    28:e0:1b:11:27:39:b3:1b:86:c0:78:03:3e:b8:a2:f5:
                    74:e1:84:55:8a:f1:fe:80:d5:ae:34:1c:d4:8f:cb:f6:
                    19:bb:32:e7:86:56:80:90:73:e4:7b:29:4a:0f:14:e1:
                    ea:f7:3d:76:a1:0b:b0:79:3b:f2:1c:88:4d:38:ac:58:
                    a2:5a:6f:83:ec:30:45:de:b8:a0:80:ef:7f:2c:a2:68:
                    e2:dd:42:61:de:88:92:1e:84:4c:e0:15:9f:df:4d:75:
                    97:35:55:93:ae:64:8d:a8:9a:4e:6d:55:36:e0:cb:af:
                    a3:63:e3:9c:5e:11:01:c3:d0:c5:8c:dc:8f:47:3a:3f:
                    68:fe:e9:86:7f:6e:83:f0:be:2f:b4:25:2e:de:a6:ca:
                    16:00:3d:83:7d:48:c6:40:7a:fb:0f:e1:2b:8d:3e:33:
                    b5:af:00:d4:a4:9f:64:8a:a8:70:20:66:48:63:e6:c2:
                    e5:b6:fe:b4:08:68:42:41:fe:e1:e4:b9:fc:81:98:10:
                    73:a5:05:5e:4a:e0:d7:e8:00:8d:21:58:49:1c:86:d4:
                    bc:0f:46:9a:2d:b6:7b:af:4a:a9:33:4e:a0:c6:3c:0a:
                    37:bf:00:09:f2:a9:8a:32:58:71:5a:7a:6c:02:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:90:a5:c8:78:56:79:6c:56:1e:95:e4:0b:66:2a:f1:
        15:23:7b:05:e7:1e:c1:e1:94:ed:c7:20:22:f2:e0:ac:
        6d:8c:46:41:14:88:61:cb:63:cc:fa:30:52:c6:7a:f6:
        57:bd:69:8a:c7:bb:6e:8b:c6:ed:6c:e0:1c:b4:5d:59:
        29:b1:b5:59:65:c3:9c:56:79:cf:a9:99:e6:7a:af:b6:
        f9:87:9c:b8:44:73:67:de:1e:ac:d2:42:2f:7b:21:a4:
        0d:ca:6a:f6:53:84:d7:dd:b4:b4:21:9f:d6:0b:5c:36:
        e5:14:8e:9a:15:29:e5:61:77:f4:bf:e4:9b:26:35:7f:
        98:fe:d3:c7:da:06:05:75:fe:6b:9d:bc:90:aa:f0:53:
        e9:94:9b:f3:e7:4b:11:ab:c4:57:1b:dc:3a:0c:61:97:
        27:75:be:bc:c6:c6:19:ed:3b:c0:34:a7:7f:93:02:ab:
        e3:ee:69:5e:c6:ba:ff:f4:41:7b:77:82:f6:cf:d1:b9:
        0f:96:5b:04:cd:4f:02:42:8e:12:22:47:4c:f1:60:05:
        e1:ae:3e:c2:4b:29:04:48:60:af:e8:4f:23:41:9d:39:
        3e:de:68:ad:70:d7:44:fc:7a:2f:c8:69:e5:3b:1e:d8:
        44:9b:c0:47:27:a6:ca:9d:4a:4c:e4:c1:e8:1f:c0:e8
    Fingerprint (SHA-256):
        2C:82:72:00:F3:96:2B:BA:2B:66:5F:44:9F:CA:4E:37:BF:28:D3:76:73:BC:74:11:E9:78:B1:EE:46:34:ED:69
    Fingerprint (SHA1):
        32:20:AB:F8:7A:9B:4A:4E:E3:44:9B:9E:5F:AC:C3:4B:E8:B5:65:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3130: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3131: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153309 (0x1dee405d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:14 2017
            Not After : Mon May 02 15:33:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:57:1f:fc:49:12:5d:d0:84:cb:6d:36:94:9e:1b:95:
                    e8:76:98:f2:e5:9b:06:4e:46:cb:11:dd:89:b8:e7:44:
                    74:63:5c:b5:ac:16:37:8c:a5:fa:18:46:63:15:f8:bb:
                    6e:2e:f3:51:65:69:61:46:e7:73:2a:19:dc:20:b1:95:
                    08:2e:0a:a0:0d:ee:a8:7a:2f:96:1e:c4:fa:b9:37:d4:
                    1d:e8:8e:53:34:0d:7e:c0:6c:2c:b9:61:c1:da:0c:0a:
                    66:ff:b1:b8:32:c6:a7:1d:ac:39:74:45:c1:eb:4b:4b:
                    0f:00:be:5f:83:26:49:77:0b:89:48:7f:6c:f2:92:65:
                    74:20:0b:2e:f8:22:6f:db:25:e8:36:71:42:05:de:6d:
                    4e:1b:41:9b:03:04:65:5f:07:9e:62:08:f0:14:75:d5:
                    3b:4d:aa:2f:d7:5f:59:ce:21:34:1a:5d:a4:e2:1b:36:
                    4f:f4:90:20:94:bd:b2:97:6d:95:70:c0:de:13:31:2c:
                    ea:21:5a:0c:65:83:45:52:15:84:61:0a:75:bc:0e:1a:
                    7c:02:33:d3:7f:9d:1f:3e:7f:d4:95:46:9c:8f:d7:68:
                    dc:bc:54:d0:5a:63:f6:dd:98:16:1f:d3:bc:47:72:c5:
                    78:4f:91:72:8f:b1:db:70:9a:1a:07:06:25:06:45:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:8e:aa:38:a0:6e:3e:6a:27:92:b9:c9:1a:6a:a7:9b:
        45:b6:bd:fa:d2:72:21:1e:0b:bd:e5:9d:0d:f0:49:ed:
        5d:7f:48:57:ff:cf:7d:4a:98:7c:81:6b:93:5f:2d:8f:
        18:40:c9:52:cd:3c:e4:c3:66:74:b2:b4:2e:62:4e:80:
        d1:d3:35:2b:bc:a1:d2:f4:a2:19:fd:83:9f:3f:18:46:
        c5:88:46:95:20:9b:32:00:d7:75:f2:a9:21:1b:5b:49:
        b1:24:f4:74:c3:93:28:76:32:af:1e:34:ec:bf:cc:5e:
        0f:61:f7:3a:2b:e4:76:9a:ff:ab:8f:53:60:e9:3c:a4:
        8f:5e:d3:0b:09:67:e9:b0:e8:6c:cd:4e:62:cc:bf:34:
        fb:68:d2:2b:41:1c:03:66:ba:88:62:88:08:6a:17:f3:
        dc:90:ea:b2:33:83:a6:fc:80:35:7d:9c:ee:6f:ee:33:
        14:86:83:c6:a4:66:3c:3f:8b:92:ad:1a:d7:73:f4:55:
        1e:87:c9:93:71:ea:c5:6c:54:7f:1c:8d:f7:8b:7e:69:
        2f:b6:97:92:6e:40:b4:f1:12:15:4c:da:95:f5:c6:57:
        08:7b:e5:34:fa:09:53:60:12:f8:80:d5:24:5d:99:07:
        93:fc:84:c2:09:f8:47:39:7d:63:47:aa:1f:35:69:e8
    Fingerprint (SHA-256):
        25:5B:C7:FA:0A:1A:34:20:72:D2:57:8F:79:42:AF:6E:F5:FD:1F:28:8B:60:D6:B7:A8:ED:1C:E5:50:44:98:28
    Fingerprint (SHA1):
        61:7A:AD:DC:F6:45:77:73:91:08:18:88:E6:59:7E:0B:F4:4A:10:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3132: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153310 (0x1dee405e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:15 2017
            Not After : Mon May 02 15:33:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:65:d5:eb:e0:f5:bb:01:1c:26:dd:47:e9:97:bf:42:
                    28:e0:1b:11:27:39:b3:1b:86:c0:78:03:3e:b8:a2:f5:
                    74:e1:84:55:8a:f1:fe:80:d5:ae:34:1c:d4:8f:cb:f6:
                    19:bb:32:e7:86:56:80:90:73:e4:7b:29:4a:0f:14:e1:
                    ea:f7:3d:76:a1:0b:b0:79:3b:f2:1c:88:4d:38:ac:58:
                    a2:5a:6f:83:ec:30:45:de:b8:a0:80:ef:7f:2c:a2:68:
                    e2:dd:42:61:de:88:92:1e:84:4c:e0:15:9f:df:4d:75:
                    97:35:55:93:ae:64:8d:a8:9a:4e:6d:55:36:e0:cb:af:
                    a3:63:e3:9c:5e:11:01:c3:d0:c5:8c:dc:8f:47:3a:3f:
                    68:fe:e9:86:7f:6e:83:f0:be:2f:b4:25:2e:de:a6:ca:
                    16:00:3d:83:7d:48:c6:40:7a:fb:0f:e1:2b:8d:3e:33:
                    b5:af:00:d4:a4:9f:64:8a:a8:70:20:66:48:63:e6:c2:
                    e5:b6:fe:b4:08:68:42:41:fe:e1:e4:b9:fc:81:98:10:
                    73:a5:05:5e:4a:e0:d7:e8:00:8d:21:58:49:1c:86:d4:
                    bc:0f:46:9a:2d:b6:7b:af:4a:a9:33:4e:a0:c6:3c:0a:
                    37:bf:00:09:f2:a9:8a:32:58:71:5a:7a:6c:02:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:90:a5:c8:78:56:79:6c:56:1e:95:e4:0b:66:2a:f1:
        15:23:7b:05:e7:1e:c1:e1:94:ed:c7:20:22:f2:e0:ac:
        6d:8c:46:41:14:88:61:cb:63:cc:fa:30:52:c6:7a:f6:
        57:bd:69:8a:c7:bb:6e:8b:c6:ed:6c:e0:1c:b4:5d:59:
        29:b1:b5:59:65:c3:9c:56:79:cf:a9:99:e6:7a:af:b6:
        f9:87:9c:b8:44:73:67:de:1e:ac:d2:42:2f:7b:21:a4:
        0d:ca:6a:f6:53:84:d7:dd:b4:b4:21:9f:d6:0b:5c:36:
        e5:14:8e:9a:15:29:e5:61:77:f4:bf:e4:9b:26:35:7f:
        98:fe:d3:c7:da:06:05:75:fe:6b:9d:bc:90:aa:f0:53:
        e9:94:9b:f3:e7:4b:11:ab:c4:57:1b:dc:3a:0c:61:97:
        27:75:be:bc:c6:c6:19:ed:3b:c0:34:a7:7f:93:02:ab:
        e3:ee:69:5e:c6:ba:ff:f4:41:7b:77:82:f6:cf:d1:b9:
        0f:96:5b:04:cd:4f:02:42:8e:12:22:47:4c:f1:60:05:
        e1:ae:3e:c2:4b:29:04:48:60:af:e8:4f:23:41:9d:39:
        3e:de:68:ad:70:d7:44:fc:7a:2f:c8:69:e5:3b:1e:d8:
        44:9b:c0:47:27:a6:ca:9d:4a:4c:e4:c1:e8:1f:c0:e8
    Fingerprint (SHA-256):
        2C:82:72:00:F3:96:2B:BA:2B:66:5F:44:9F:CA:4E:37:BF:28:D3:76:73:BC:74:11:E9:78:B1:EE:46:34:ED:69
    Fingerprint (SHA1):
        32:20:AB:F8:7A:9B:4A:4E:E3:44:9B:9E:5F:AC:C3:4B:E8:B5:65:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3133: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153310 (0x1dee405e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:15 2017
            Not After : Mon May 02 15:33:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:65:d5:eb:e0:f5:bb:01:1c:26:dd:47:e9:97:bf:42:
                    28:e0:1b:11:27:39:b3:1b:86:c0:78:03:3e:b8:a2:f5:
                    74:e1:84:55:8a:f1:fe:80:d5:ae:34:1c:d4:8f:cb:f6:
                    19:bb:32:e7:86:56:80:90:73:e4:7b:29:4a:0f:14:e1:
                    ea:f7:3d:76:a1:0b:b0:79:3b:f2:1c:88:4d:38:ac:58:
                    a2:5a:6f:83:ec:30:45:de:b8:a0:80:ef:7f:2c:a2:68:
                    e2:dd:42:61:de:88:92:1e:84:4c:e0:15:9f:df:4d:75:
                    97:35:55:93:ae:64:8d:a8:9a:4e:6d:55:36:e0:cb:af:
                    a3:63:e3:9c:5e:11:01:c3:d0:c5:8c:dc:8f:47:3a:3f:
                    68:fe:e9:86:7f:6e:83:f0:be:2f:b4:25:2e:de:a6:ca:
                    16:00:3d:83:7d:48:c6:40:7a:fb:0f:e1:2b:8d:3e:33:
                    b5:af:00:d4:a4:9f:64:8a:a8:70:20:66:48:63:e6:c2:
                    e5:b6:fe:b4:08:68:42:41:fe:e1:e4:b9:fc:81:98:10:
                    73:a5:05:5e:4a:e0:d7:e8:00:8d:21:58:49:1c:86:d4:
                    bc:0f:46:9a:2d:b6:7b:af:4a:a9:33:4e:a0:c6:3c:0a:
                    37:bf:00:09:f2:a9:8a:32:58:71:5a:7a:6c:02:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:90:a5:c8:78:56:79:6c:56:1e:95:e4:0b:66:2a:f1:
        15:23:7b:05:e7:1e:c1:e1:94:ed:c7:20:22:f2:e0:ac:
        6d:8c:46:41:14:88:61:cb:63:cc:fa:30:52:c6:7a:f6:
        57:bd:69:8a:c7:bb:6e:8b:c6:ed:6c:e0:1c:b4:5d:59:
        29:b1:b5:59:65:c3:9c:56:79:cf:a9:99:e6:7a:af:b6:
        f9:87:9c:b8:44:73:67:de:1e:ac:d2:42:2f:7b:21:a4:
        0d:ca:6a:f6:53:84:d7:dd:b4:b4:21:9f:d6:0b:5c:36:
        e5:14:8e:9a:15:29:e5:61:77:f4:bf:e4:9b:26:35:7f:
        98:fe:d3:c7:da:06:05:75:fe:6b:9d:bc:90:aa:f0:53:
        e9:94:9b:f3:e7:4b:11:ab:c4:57:1b:dc:3a:0c:61:97:
        27:75:be:bc:c6:c6:19:ed:3b:c0:34:a7:7f:93:02:ab:
        e3:ee:69:5e:c6:ba:ff:f4:41:7b:77:82:f6:cf:d1:b9:
        0f:96:5b:04:cd:4f:02:42:8e:12:22:47:4c:f1:60:05:
        e1:ae:3e:c2:4b:29:04:48:60:af:e8:4f:23:41:9d:39:
        3e:de:68:ad:70:d7:44:fc:7a:2f:c8:69:e5:3b:1e:d8:
        44:9b:c0:47:27:a6:ca:9d:4a:4c:e4:c1:e8:1f:c0:e8
    Fingerprint (SHA-256):
        2C:82:72:00:F3:96:2B:BA:2B:66:5F:44:9F:CA:4E:37:BF:28:D3:76:73:BC:74:11:E9:78:B1:EE:46:34:ED:69
    Fingerprint (SHA1):
        32:20:AB:F8:7A:9B:4A:4E:E3:44:9B:9E:5F:AC:C3:4B:E8:B5:65:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3134: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3135: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153317 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3136: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3137: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3138: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153318 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3139: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3140: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3141: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3142: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153319   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3143: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3144: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3145: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153320   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3147: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3148: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3149: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3150: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153321 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3151: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3152: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153322 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3153: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3155: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3156: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3157: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153323   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3158: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3159: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3160: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3161: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153324   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3162: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3163: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3164: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3165: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153325   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3166: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3167: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3168: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3169: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153326   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3170: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3171: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3172: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153317 (0x1dee4065)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:19 2017
            Not After : Mon May 02 15:33:19 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:1a:02:52:2b:b9:63:85:86:63:b6:5d:66:ee:fb:9a:
                    17:0e:c5:cb:dc:5c:24:d7:b8:5f:aa:89:5e:88:0d:f8:
                    0f:ef:98:56:d5:8e:31:21:62:9f:58:c5:e3:ff:52:dd:
                    cc:8c:ce:4b:d7:96:a7:40:24:37:ac:e6:dc:89:50:67:
                    56:f6:df:dc:47:27:31:53:71:30:45:aa:88:0b:8e:1d:
                    30:7c:2f:31:58:9f:bc:92:ce:92:b3:a4:97:e2:25:6a:
                    84:56:08:9b:1b:55:f6:c6:66:b5:32:9c:ce:e8:6b:7e:
                    c0:5e:99:6f:99:e1:c6:69:7e:02:65:92:25:19:e8:81:
                    ed:da:f1:57:fb:7c:ff:3f:6b:24:07:42:52:cb:21:1a:
                    83:ae:ce:14:7a:8b:b0:c4:83:00:a4:8a:a0:5b:cd:03:
                    d0:97:f3:e3:64:eb:ec:6a:a4:2d:3b:b6:7b:16:86:39:
                    c0:cd:a3:ec:e0:b2:73:f9:89:aa:8b:7c:e3:be:87:b2:
                    57:77:ae:e0:dd:d2:28:af:3d:48:79:93:98:56:ce:9e:
                    77:1f:10:1a:6e:5f:bf:3c:ba:c5:2b:4c:45:9c:ac:a9:
                    e0:98:a8:3b:ac:06:6d:bf:d5:53:84:13:5e:7d:de:ca:
                    a4:f5:32:af:b4:bd:34:1f:71:c2:aa:46:f6:09:e3:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:d4:e7:59:d5:cc:11:d7:26:cd:52:02:08:64:1f:e0:
        d4:7d:3b:46:54:ae:a5:ea:f8:72:b7:08:6a:fd:78:fb:
        85:0a:ed:65:97:17:ba:7c:db:b2:db:7e:f6:f0:84:05:
        43:13:c3:a6:46:0b:e6:96:81:a2:e5:a1:91:80:c3:90:
        9f:1d:68:db:85:42:53:aa:77:4d:0f:c9:7b:c5:fd:d8:
        21:2e:c4:28:59:31:b4:4b:ce:3a:99:20:4f:03:ba:74:
        eb:23:1f:f7:fc:98:84:fc:87:7c:04:fb:39:ae:65:4b:
        1d:30:84:e2:41:97:5d:c7:2c:dd:bf:f4:d9:50:9d:19:
        f7:2b:73:9d:d2:a1:95:be:1a:4e:e5:71:a1:c1:95:b6:
        18:bb:9f:87:7d:dd:21:1e:c2:38:2c:9f:9c:36:bd:1d:
        98:d6:08:6e:cb:a4:a7:97:30:f7:a7:a5:b0:b8:82:ab:
        0d:d0:47:54:15:a7:5f:83:da:ef:e2:9d:12:9e:16:55:
        a2:7f:71:fa:e7:93:e8:1e:19:b4:33:e0:a5:d1:39:8b:
        9f:19:b6:2d:56:c2:9d:9d:67:ce:d8:04:eb:74:60:ef:
        9d:d8:08:44:94:16:0f:30:f5:27:d2:8b:9e:66:c7:64:
        af:34:e3:9b:0f:09:fb:38:21:ae:38:54:02:00:62:04
    Fingerprint (SHA-256):
        5A:40:9B:43:30:D0:79:E4:0C:C6:55:A2:7E:C4:FB:FF:3E:E2:EF:B0:03:61:64:78:F3:AC:09:2F:4A:DF:ED:2C
    Fingerprint (SHA1):
        86:47:6D:E7:E8:8A:48:7A:5C:FD:07:82:AE:51:E0:6C:83:32:C2:89
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3173: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3174: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3175: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3176: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3177: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3178: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3179: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3180: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3181: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153318 (0x1dee4066)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:19 2017
            Not After : Mon May 02 15:33:19 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:29:48:2c:5b:08:bd:d4:fc:c3:c3:3d:c3:93:76:1b:
                    0a:74:ec:e3:8d:6f:bc:d8:ca:93:20:f3:76:01:3c:45:
                    9e:e8:de:65:c3:62:d5:d0:72:b4:71:fc:62:bd:83:4c:
                    a6:d7:2c:8f:d2:10:c1:9d:3d:85:0a:ba:96:5b:cb:db:
                    d9:da:c0:89:fc:81:51:76:21:20:51:d2:43:31:be:b9:
                    ac:22:0e:eb:6c:f8:9d:16:51:01:03:b0:7f:79:09:5a:
                    00:f4:18:9c:1f:eb:32:f1:ae:a8:eb:be:26:8a:25:49:
                    5e:1e:c4:96:ac:31:78:6d:bd:c6:c5:2b:41:e8:38:6b:
                    7c:9e:be:00:6e:b8:d0:a5:6c:6b:50:cf:7c:24:c2:b5:
                    bd:2d:32:02:67:11:5f:79:03:9a:1c:88:6a:b3:a4:ab:
                    dc:6b:af:90:86:d9:40:36:42:0e:e8:35:cb:06:b8:bd:
                    7d:d9:75:90:b0:0d:57:c9:32:f8:e7:c8:f0:d3:c0:6f:
                    9e:ee:70:fd:ab:b5:f3:5b:cf:a0:fa:f9:59:b0:70:14:
                    f5:4d:8e:3a:8a:59:af:6b:dc:38:51:9a:83:a6:89:5b:
                    b6:57:7f:bc:e1:9c:7c:6f:fd:eb:82:8d:73:47:dd:2a:
                    50:9f:6a:a4:b0:4c:40:9c:33:50:03:cd:e2:86:83:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:d3:37:c0:e1:b4:65:f9:09:3f:73:4f:8f:ca:16:e1:
        dc:7b:69:ad:75:6a:eb:f6:db:5a:6f:42:b9:58:2b:7c:
        ea:f3:be:63:57:f7:19:88:0f:53:cd:17:25:e1:dc:5f:
        a9:a9:66:54:92:37:f6:be:77:2c:4b:67:9c:2e:1f:38:
        f4:c2:bf:e1:d9:3b:7a:9b:6b:09:a2:c4:2b:07:cd:2b:
        f1:80:b1:ee:e0:fd:35:81:29:71:3c:25:6a:4a:7f:2a:
        00:a9:16:44:44:22:7c:fd:a8:73:22:85:b0:5f:c9:98:
        a1:b9:f8:4f:e0:76:67:2b:b2:46:0f:99:01:ef:21:68:
        cf:57:94:25:60:46:a6:49:d7:2b:2b:5d:01:ab:79:d6:
        b3:8a:43:86:97:0f:d5:31:a5:ca:d7:31:fc:0b:66:80:
        4c:7e:d4:33:39:fe:68:7d:fe:ce:dd:6d:a0:83:f2:30:
        c7:d9:02:41:e5:a3:09:b4:6c:3c:37:d0:8d:f4:86:7f:
        11:de:39:89:08:97:14:ae:31:76:e6:0b:22:fc:8a:ff:
        c2:ec:e4:8e:c9:cd:5d:69:a7:26:ac:1d:f8:8c:30:28:
        22:33:25:38:2d:93:7e:4d:44:9f:3b:ac:02:50:46:b0:
        18:de:13:05:04:94:3d:12:c2:a3:91:93:4d:45:c1:03
    Fingerprint (SHA-256):
        D9:05:A9:C3:D9:D6:ED:94:0D:88:94:A0:BC:60:B3:22:58:F2:09:5B:AD:F4:18:9E:A9:FF:8F:73:A2:D1:FF:9A
    Fingerprint (SHA1):
        73:46:BD:D9:37:13:44:73:DC:15:EB:CA:A4:8E:F2:0F:B9:DD:AA:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3182: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3183: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3184: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3185: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3186: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3187: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3188: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3189: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3190: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3191: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3192: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3193: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3194: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3195: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3196: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3197: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3198: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3199: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3200: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153327 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3201: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3202: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3203: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3204: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153328   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3205: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3206: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3207: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3208: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153329   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3209: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3210: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3211: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3212: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153330   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3213: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3214: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3215: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3216: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153331   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3217: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3218: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3219: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3220: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153332   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3221: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3222: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3223: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3224: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153333   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3225: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3227: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3228: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153334   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3229: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3230: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3231: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3232: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153335   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3233: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3234: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3235: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153327 (0x1dee406f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:24 2017
            Not After : Mon May 02 15:33:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    35:7d:54:06:b9:d8:80:2e:b7:4b:31:4d:9f:18:a2:54:
                    4d:6c:81:2e:fb:3c:c1:62:49:8f:e8:bf:48:f9:f9:c3:
                    ed:f5:b9:a5:5d:7f:ff:8f:5a:4f:cc:a8:ae:a4:41:fa:
                    2c:42:97:d2:50:2d:b7:9a:47:58:ae:f5:64:41:d1:fb:
                    b4:c0:80:d7:d3:ce:22:bd:dc:31:8e:dd:43:3f:29:56:
                    5e:14:e0:0f:7f:dd:a8:88:c7:52:c1:80:d6:bd:e6:e3:
                    eb:72:10:88:22:1e:97:bc:28:a5:6e:99:c4:d7:e8:97:
                    1a:87:39:7a:b2:6e:49:6a:df:02:a7:0f:80:85:49:e9:
                    74:91:93:fa:99:4f:33:31:29:2d:ca:7e:10:70:9c:d1:
                    de:1d:d4:63:d1:41:09:ee:0c:c5:a0:31:3d:10:e3:2e:
                    fe:1f:42:d2:40:03:c6:c4:ac:eb:a3:2b:c9:53:0b:65:
                    1f:5c:bc:ff:88:73:83:56:72:8d:da:5d:47:ea:5c:16:
                    33:d5:44:c4:3e:a2:03:98:98:81:5f:0f:f6:11:9e:d9:
                    76:6a:e7:0b:c1:60:8d:ab:cb:bd:1a:0f:02:02:6f:0f:
                    37:82:27:51:70:90:6e:d1:59:e2:07:9b:95:02:0d:1d:
                    3d:b0:cc:a8:4f:54:63:18:c0:07:d9:cb:24:bf:b9:2e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c9:2c:cc:cc:d8:a0:55:57:b5:0f:fd:
        85:8e:6b:08:28:b9:8a:8c:b0:ff:6b:66:75:5c:40:4e:
        a1:02:1c:04:3b:1d:8d:a4:3a:5e:f0:99:ae:51:4a:45:
        2f:d1:9e:de:b2:8e:2b:67:c7:0a:3f:02:bc:15:97
    Fingerprint (SHA-256):
        F4:10:E7:07:D9:F6:5E:A5:DF:D6:D8:ED:A1:97:E1:32:33:BF:2F:42:51:2C:4F:9B:6D:EC:E7:33:75:74:6E:81
    Fingerprint (SHA1):
        91:03:5D:7E:3A:D6:6D:B7:9A:E9:F3:03:8F:5B:7E:0F:1D:42:9A:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3236: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153327 (0x1dee406f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:24 2017
            Not After : Mon May 02 15:33:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    35:7d:54:06:b9:d8:80:2e:b7:4b:31:4d:9f:18:a2:54:
                    4d:6c:81:2e:fb:3c:c1:62:49:8f:e8:bf:48:f9:f9:c3:
                    ed:f5:b9:a5:5d:7f:ff:8f:5a:4f:cc:a8:ae:a4:41:fa:
                    2c:42:97:d2:50:2d:b7:9a:47:58:ae:f5:64:41:d1:fb:
                    b4:c0:80:d7:d3:ce:22:bd:dc:31:8e:dd:43:3f:29:56:
                    5e:14:e0:0f:7f:dd:a8:88:c7:52:c1:80:d6:bd:e6:e3:
                    eb:72:10:88:22:1e:97:bc:28:a5:6e:99:c4:d7:e8:97:
                    1a:87:39:7a:b2:6e:49:6a:df:02:a7:0f:80:85:49:e9:
                    74:91:93:fa:99:4f:33:31:29:2d:ca:7e:10:70:9c:d1:
                    de:1d:d4:63:d1:41:09:ee:0c:c5:a0:31:3d:10:e3:2e:
                    fe:1f:42:d2:40:03:c6:c4:ac:eb:a3:2b:c9:53:0b:65:
                    1f:5c:bc:ff:88:73:83:56:72:8d:da:5d:47:ea:5c:16:
                    33:d5:44:c4:3e:a2:03:98:98:81:5f:0f:f6:11:9e:d9:
                    76:6a:e7:0b:c1:60:8d:ab:cb:bd:1a:0f:02:02:6f:0f:
                    37:82:27:51:70:90:6e:d1:59:e2:07:9b:95:02:0d:1d:
                    3d:b0:cc:a8:4f:54:63:18:c0:07:d9:cb:24:bf:b9:2e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c9:2c:cc:cc:d8:a0:55:57:b5:0f:fd:
        85:8e:6b:08:28:b9:8a:8c:b0:ff:6b:66:75:5c:40:4e:
        a1:02:1c:04:3b:1d:8d:a4:3a:5e:f0:99:ae:51:4a:45:
        2f:d1:9e:de:b2:8e:2b:67:c7:0a:3f:02:bc:15:97
    Fingerprint (SHA-256):
        F4:10:E7:07:D9:F6:5E:A5:DF:D6:D8:ED:A1:97:E1:32:33:BF:2F:42:51:2C:4F:9B:6D:EC:E7:33:75:74:6E:81
    Fingerprint (SHA1):
        91:03:5D:7E:3A:D6:6D:B7:9A:E9:F3:03:8F:5B:7E:0F:1D:42:9A:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3237: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153327 (0x1dee406f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:24 2017
            Not After : Mon May 02 15:33:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    35:7d:54:06:b9:d8:80:2e:b7:4b:31:4d:9f:18:a2:54:
                    4d:6c:81:2e:fb:3c:c1:62:49:8f:e8:bf:48:f9:f9:c3:
                    ed:f5:b9:a5:5d:7f:ff:8f:5a:4f:cc:a8:ae:a4:41:fa:
                    2c:42:97:d2:50:2d:b7:9a:47:58:ae:f5:64:41:d1:fb:
                    b4:c0:80:d7:d3:ce:22:bd:dc:31:8e:dd:43:3f:29:56:
                    5e:14:e0:0f:7f:dd:a8:88:c7:52:c1:80:d6:bd:e6:e3:
                    eb:72:10:88:22:1e:97:bc:28:a5:6e:99:c4:d7:e8:97:
                    1a:87:39:7a:b2:6e:49:6a:df:02:a7:0f:80:85:49:e9:
                    74:91:93:fa:99:4f:33:31:29:2d:ca:7e:10:70:9c:d1:
                    de:1d:d4:63:d1:41:09:ee:0c:c5:a0:31:3d:10:e3:2e:
                    fe:1f:42:d2:40:03:c6:c4:ac:eb:a3:2b:c9:53:0b:65:
                    1f:5c:bc:ff:88:73:83:56:72:8d:da:5d:47:ea:5c:16:
                    33:d5:44:c4:3e:a2:03:98:98:81:5f:0f:f6:11:9e:d9:
                    76:6a:e7:0b:c1:60:8d:ab:cb:bd:1a:0f:02:02:6f:0f:
                    37:82:27:51:70:90:6e:d1:59:e2:07:9b:95:02:0d:1d:
                    3d:b0:cc:a8:4f:54:63:18:c0:07:d9:cb:24:bf:b9:2e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c9:2c:cc:cc:d8:a0:55:57:b5:0f:fd:
        85:8e:6b:08:28:b9:8a:8c:b0:ff:6b:66:75:5c:40:4e:
        a1:02:1c:04:3b:1d:8d:a4:3a:5e:f0:99:ae:51:4a:45:
        2f:d1:9e:de:b2:8e:2b:67:c7:0a:3f:02:bc:15:97
    Fingerprint (SHA-256):
        F4:10:E7:07:D9:F6:5E:A5:DF:D6:D8:ED:A1:97:E1:32:33:BF:2F:42:51:2C:4F:9B:6D:EC:E7:33:75:74:6E:81
    Fingerprint (SHA1):
        91:03:5D:7E:3A:D6:6D:B7:9A:E9:F3:03:8F:5B:7E:0F:1D:42:9A:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3238: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153327 (0x1dee406f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:24 2017
            Not After : Mon May 02 15:33:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    35:7d:54:06:b9:d8:80:2e:b7:4b:31:4d:9f:18:a2:54:
                    4d:6c:81:2e:fb:3c:c1:62:49:8f:e8:bf:48:f9:f9:c3:
                    ed:f5:b9:a5:5d:7f:ff:8f:5a:4f:cc:a8:ae:a4:41:fa:
                    2c:42:97:d2:50:2d:b7:9a:47:58:ae:f5:64:41:d1:fb:
                    b4:c0:80:d7:d3:ce:22:bd:dc:31:8e:dd:43:3f:29:56:
                    5e:14:e0:0f:7f:dd:a8:88:c7:52:c1:80:d6:bd:e6:e3:
                    eb:72:10:88:22:1e:97:bc:28:a5:6e:99:c4:d7:e8:97:
                    1a:87:39:7a:b2:6e:49:6a:df:02:a7:0f:80:85:49:e9:
                    74:91:93:fa:99:4f:33:31:29:2d:ca:7e:10:70:9c:d1:
                    de:1d:d4:63:d1:41:09:ee:0c:c5:a0:31:3d:10:e3:2e:
                    fe:1f:42:d2:40:03:c6:c4:ac:eb:a3:2b:c9:53:0b:65:
                    1f:5c:bc:ff:88:73:83:56:72:8d:da:5d:47:ea:5c:16:
                    33:d5:44:c4:3e:a2:03:98:98:81:5f:0f:f6:11:9e:d9:
                    76:6a:e7:0b:c1:60:8d:ab:cb:bd:1a:0f:02:02:6f:0f:
                    37:82:27:51:70:90:6e:d1:59:e2:07:9b:95:02:0d:1d:
                    3d:b0:cc:a8:4f:54:63:18:c0:07:d9:cb:24:bf:b9:2e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c9:2c:cc:cc:d8:a0:55:57:b5:0f:fd:
        85:8e:6b:08:28:b9:8a:8c:b0:ff:6b:66:75:5c:40:4e:
        a1:02:1c:04:3b:1d:8d:a4:3a:5e:f0:99:ae:51:4a:45:
        2f:d1:9e:de:b2:8e:2b:67:c7:0a:3f:02:bc:15:97
    Fingerprint (SHA-256):
        F4:10:E7:07:D9:F6:5E:A5:DF:D6:D8:ED:A1:97:E1:32:33:BF:2F:42:51:2C:4F:9B:6D:EC:E7:33:75:74:6E:81
    Fingerprint (SHA1):
        91:03:5D:7E:3A:D6:6D:B7:9A:E9:F3:03:8F:5B:7E:0F:1D:42:9A:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3239: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3240: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3241: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3242: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3243: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3244: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3245: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3246: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3247: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3248: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3249: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3250: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3251: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3252: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3253: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3254: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3255: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3256: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3257: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3258: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3259: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3260: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3261: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3262: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3263: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3264: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3265: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3266: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153330Z
nextupdate=20180502153330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:33:30 2017
    Next Update: Wed May 02 15:33:30 2018
    CRL Extensions:
chains.sh: #3267: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153330Z
nextupdate=20180502153330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:33:30 2017
    Next Update: Wed May 02 15:33:30 2018
    CRL Extensions:
chains.sh: #3268: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153331Z
nextupdate=20180502153331Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:33:31 2017
    Next Update: Wed May 02 15:33:31 2018
    CRL Extensions:
chains.sh: #3269: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153331Z
nextupdate=20180502153331Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:33:31 2017
    Next Update: Wed May 02 15:33:31 2018
    CRL Extensions:
chains.sh: #3270: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153332Z
addcert 14 20170502153332Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:33:32 2017
    Next Update: Wed May 02 15:33:31 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:33:32 2017
    CRL Extensions:
chains.sh: #3271: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153333Z
addcert 15 20170502153333Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:33:33 2017
    Next Update: Wed May 02 15:33:30 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:33:33 2017
    CRL Extensions:
chains.sh: #3272: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3273: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3274: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3275: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3276: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3277: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3278: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3279: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3280: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3281: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:27 2017
            Not After : Mon May 02 15:33:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:11:b8:78:45:73:13:09:be:5a:5b:af:ee:ac:5a:32:
                    3c:d0:f0:f4:ef:17:e0:8b:2e:4e:0d:98:e3:de:17:22:
                    11:f3:57:db:86:8b:d3:c0:0a:6f:00:19:af:75:3f:a4:
                    28:da:d0:45:cc:99:ed:42:4e:d1:ef:9b:5a:fe:7d:3b:
                    47:8c:4c:00:af:94:f8:2d:c7:31:af:21:bd:da:46:8f:
                    09:da:b4:0e:78:33:e7:b7:2c:e8:45:93:a9:6f:ce:d8:
                    c8:93:7c:ea:83:ba:b7:e0:12:50:90:77:e6:0c:4d:db:
                    63:31:fb:7f:5b:82:77:e6:44:63:68:70:d9:69:3f:ff:
                    ca:0d:64:6a:05:87:44:34:66:7c:44:ed:84:1d:6e:32:
                    c7:70:46:03:bc:29:44:af:35:32:5a:49:1c:7e:0d:18:
                    fc:a9:ae:22:31:0b:4a:a3:af:cc:be:f8:35:2a:7b:1a:
                    4a:96:da:fb:c3:bb:83:83:92:79:cf:02:84:ac:34:76:
                    71:34:8b:f4:b8:e0:22:0b:8a:a6:64:cf:5b:20:f5:32:
                    37:4d:46:20:a2:91:31:53:ce:12:d4:df:d9:40:d9:fa:
                    87:80:fc:46:f7:32:5a:6b:74:ea:43:a8:3f:b6:f5:89:
                    56:ab:09:9f:6b:01:6b:86:7c:19:07:b5:e5:df:03:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:3f:55:d3:b2:ad:38:fc:d7:bb:46:ed:6c:e8:f1:4a:
        b8:4b:3c:6e:78:89:41:0a:4c:66:ab:16:c1:b7:93:27:
        df:14:67:fe:91:d5:7b:20:d7:84:ae:4c:ef:9e:7d:f5:
        b8:bd:01:be:fc:11:cf:fe:ba:8f:e5:0c:04:f6:f5:7f:
        4a:c6:ce:8d:80:86:d3:61:b4:c3:b6:3c:8c:5a:f6:a5:
        d7:a6:55:b4:69:4f:ed:ee:24:f4:55:99:84:59:6f:a0:
        46:87:16:67:40:f0:3c:8b:51:1f:33:f1:a4:7a:60:80:
        c4:92:77:63:71:69:a4:f6:cd:c4:e6:ab:5b:7b:e9:25:
        13:63:ab:7d:30:3f:25:8a:33:54:64:ce:41:98:45:ab:
        2d:63:49:a3:48:e7:88:e2:14:38:c0:cc:3a:f0:48:0c:
        7f:32:a4:6f:ca:73:aa:0f:95:d9:9a:f9:64:36:b3:65:
        6d:98:c2:6e:00:48:b7:4f:d3:28:e3:9b:f5:95:af:2e:
        ec:d6:57:17:e8:ef:dc:c5:f2:3c:27:6b:e5:de:8f:89:
        d3:ee:4f:8f:24:c7:ae:50:d7:56:f7:9a:94:46:49:ce:
        df:8f:6a:a7:19:a0:c1:f6:8e:ac:f4:1b:6f:e2:19:84:
        69:d4:f2:f0:e5:e1:dd:2d:79:ad:a4:f0:1b:26:fd:00
    Fingerprint (SHA-256):
        CD:C6:2E:81:3B:F0:3E:E2:F1:D8:85:6E:69:8B:F1:D9:7E:30:6F:2E:56:CF:C2:53:5B:F5:BC:1F:E8:79:34:51
    Fingerprint (SHA1):
        0A:75:2B:1B:6E:A5:A2:35:15:4F:18:2B:71:34:F3:57:13:23:1C:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3282: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3283: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:27 2017
            Not After : Mon May 02 15:33:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:11:b8:78:45:73:13:09:be:5a:5b:af:ee:ac:5a:32:
                    3c:d0:f0:f4:ef:17:e0:8b:2e:4e:0d:98:e3:de:17:22:
                    11:f3:57:db:86:8b:d3:c0:0a:6f:00:19:af:75:3f:a4:
                    28:da:d0:45:cc:99:ed:42:4e:d1:ef:9b:5a:fe:7d:3b:
                    47:8c:4c:00:af:94:f8:2d:c7:31:af:21:bd:da:46:8f:
                    09:da:b4:0e:78:33:e7:b7:2c:e8:45:93:a9:6f:ce:d8:
                    c8:93:7c:ea:83:ba:b7:e0:12:50:90:77:e6:0c:4d:db:
                    63:31:fb:7f:5b:82:77:e6:44:63:68:70:d9:69:3f:ff:
                    ca:0d:64:6a:05:87:44:34:66:7c:44:ed:84:1d:6e:32:
                    c7:70:46:03:bc:29:44:af:35:32:5a:49:1c:7e:0d:18:
                    fc:a9:ae:22:31:0b:4a:a3:af:cc:be:f8:35:2a:7b:1a:
                    4a:96:da:fb:c3:bb:83:83:92:79:cf:02:84:ac:34:76:
                    71:34:8b:f4:b8:e0:22:0b:8a:a6:64:cf:5b:20:f5:32:
                    37:4d:46:20:a2:91:31:53:ce:12:d4:df:d9:40:d9:fa:
                    87:80:fc:46:f7:32:5a:6b:74:ea:43:a8:3f:b6:f5:89:
                    56:ab:09:9f:6b:01:6b:86:7c:19:07:b5:e5:df:03:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:3f:55:d3:b2:ad:38:fc:d7:bb:46:ed:6c:e8:f1:4a:
        b8:4b:3c:6e:78:89:41:0a:4c:66:ab:16:c1:b7:93:27:
        df:14:67:fe:91:d5:7b:20:d7:84:ae:4c:ef:9e:7d:f5:
        b8:bd:01:be:fc:11:cf:fe:ba:8f:e5:0c:04:f6:f5:7f:
        4a:c6:ce:8d:80:86:d3:61:b4:c3:b6:3c:8c:5a:f6:a5:
        d7:a6:55:b4:69:4f:ed:ee:24:f4:55:99:84:59:6f:a0:
        46:87:16:67:40:f0:3c:8b:51:1f:33:f1:a4:7a:60:80:
        c4:92:77:63:71:69:a4:f6:cd:c4:e6:ab:5b:7b:e9:25:
        13:63:ab:7d:30:3f:25:8a:33:54:64:ce:41:98:45:ab:
        2d:63:49:a3:48:e7:88:e2:14:38:c0:cc:3a:f0:48:0c:
        7f:32:a4:6f:ca:73:aa:0f:95:d9:9a:f9:64:36:b3:65:
        6d:98:c2:6e:00:48:b7:4f:d3:28:e3:9b:f5:95:af:2e:
        ec:d6:57:17:e8:ef:dc:c5:f2:3c:27:6b:e5:de:8f:89:
        d3:ee:4f:8f:24:c7:ae:50:d7:56:f7:9a:94:46:49:ce:
        df:8f:6a:a7:19:a0:c1:f6:8e:ac:f4:1b:6f:e2:19:84:
        69:d4:f2:f0:e5:e1:dd:2d:79:ad:a4:f0:1b:26:fd:00
    Fingerprint (SHA-256):
        CD:C6:2E:81:3B:F0:3E:E2:F1:D8:85:6E:69:8B:F1:D9:7E:30:6F:2E:56:CF:C2:53:5B:F5:BC:1F:E8:79:34:51
    Fingerprint (SHA1):
        0A:75:2B:1B:6E:A5:A2:35:15:4F:18:2B:71:34:F3:57:13:23:1C:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3284: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3285: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3286: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153336 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3287: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3288: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3289: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3290: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153337   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3291: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3292: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3293: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153227.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3294: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153212.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3295: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3296: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3297: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153227.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3298: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153338   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3299: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3300: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3301: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153227.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3302: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153213.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3303: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3304: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3305: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3306: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153339   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3307: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3308: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3309: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153227.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3310: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153214.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3311: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3312: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3313: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153227.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3314: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153215.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3315: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3316: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153338Z
nextupdate=20180502153338Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:33:38 2017
    Next Update: Wed May 02 15:33:38 2018
    CRL Extensions:
chains.sh: #3317: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153338Z
nextupdate=20180502153338Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:33:38 2017
    Next Update: Wed May 02 15:33:38 2018
    CRL Extensions:
chains.sh: #3318: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153338Z
nextupdate=20180502153338Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:33:38 2017
    Next Update: Wed May 02 15:33:38 2018
    CRL Extensions:
chains.sh: #3319: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153338Z
nextupdate=20180502153338Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:33:38 2017
    Next Update: Wed May 02 15:33:38 2018
    CRL Extensions:
chains.sh: #3320: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153339Z
addcert 20 20170502153339Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:33:39 2017
    Next Update: Wed May 02 15:33:38 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:33:39 2017
    CRL Extensions:
chains.sh: #3321: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153340Z
addcert 40 20170502153340Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:33:40 2017
    Next Update: Wed May 02 15:33:38 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:33:39 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:33:40 2017
    CRL Extensions:
chains.sh: #3322: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3323: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3324: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3325: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153336 (0x1dee4078)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:33 2017
            Not After : Mon May 02 15:33:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:23:a3:da:6f:f3:ba:af:67:6b:88:af:6b:ed:f7:ca:
                    fc:cf:bd:40:d0:83:73:0e:d6:51:a5:42:31:0a:e2:ee:
                    75:ab:86:8a:ca:38:aa:1c:e2:63:0e:e9:0c:83:6d:11:
                    6e:58:c4:ab:69:fa:9e:a7:b6:cc:15:b5:ff:cb:e9:3d:
                    e6:98:4d:70:1f:2e:79:23:ef:bd:c9:5c:58:ee:c1:bc:
                    83:58:b9:e4:e3:21:a5:ad:db:89:01:60:80:3f:c8:40:
                    46:af:44:fb:d7:df:37:50:6d:e7:18:eb:28:7a:8d:e6:
                    f1:d9:28:0d:75:7f:b1:c4:e6:07:50:e5:2f:c3:78:1d:
                    bc:76:d6:4d:b3:38:84:dc:f2:c0:65:6a:c7:94:ff:a3:
                    55:0e:8f:f6:45:f9:09:2a:cc:f5:ce:a7:d7:e8:db:cb:
                    49:56:78:2f:66:b2:e7:76:79:58:62:3a:8a:1b:8c:2a:
                    e4:6f:2d:93:42:20:e2:b6:18:b0:c4:45:ef:c1:94:db:
                    73:41:05:c9:3a:46:ff:84:7c:69:7d:12:09:57:54:83:
                    08:8c:71:ef:b7:43:5d:cb:4f:7b:70:7e:ac:9d:73:6a:
                    63:d4:91:8b:0f:80:10:80:1d:26:9b:b9:d6:04:95:8f:
                    4d:c0:0a:96:c6:5f:8e:11:ef:f2:a8:2d:b6:bc:41:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:ca:e3:ee:b9:7d:cf:00:2f:e4:42:bb:c6:2c:0e:b3:
        44:3e:82:ff:58:b6:b3:9a:0b:4e:ad:0a:13:07:d3:9e:
        1c:aa:33:34:e3:83:91:7c:04:47:c9:62:78:d5:20:6f:
        2b:0e:59:b0:30:4e:8e:76:b4:10:fe:31:da:ee:96:da:
        d8:f0:8f:ec:fd:b9:1c:bc:ae:97:f4:a6:7c:37:ad:f0:
        c7:da:6c:84:5d:43:6c:85:46:c8:71:0a:cf:81:98:df:
        83:b3:c9:e1:ec:3a:d2:ea:95:56:b1:82:69:0c:f0:80:
        0b:ca:96:4f:ab:0f:69:1f:ed:89:3d:45:2b:23:b7:1a:
        0c:3c:e1:d4:ca:69:5f:ea:ff:f7:a3:bd:9b:74:0b:bc:
        cc:1d:69:33:60:36:8c:d2:66:c6:59:47:9f:06:d9:e5:
        13:87:8e:d7:fa:c1:e1:e4:bd:19:c7:58:6e:15:79:69:
        4f:6d:a5:4f:6e:aa:48:db:91:65:92:e4:da:7d:0a:f4:
        b4:93:06:ed:2c:fb:a7:3e:09:20:7b:22:60:2e:94:31:
        06:d4:25:d8:8d:9c:af:a7:5c:1e:85:5b:19:5a:b1:57:
        57:ea:ed:2b:71:34:5c:a0:93:26:6d:68:f9:14:1b:38:
        4f:a8:60:6a:ee:01:59:f0:29:57:7e:a9:02:0b:f1:05
    Fingerprint (SHA-256):
        CE:13:99:6D:59:D5:2C:E6:EF:BD:2B:03:A5:FC:94:B1:77:04:F0:8A:7D:E3:56:64:BD:76:80:5F:94:38:7C:65
    Fingerprint (SHA1):
        DD:C0:E8:94:A7:7B:4D:DF:5C:75:FE:45:E8:D2:D2:19:47:F4:85:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3326: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3327: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153336 (0x1dee4078)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:33 2017
            Not After : Mon May 02 15:33:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:23:a3:da:6f:f3:ba:af:67:6b:88:af:6b:ed:f7:ca:
                    fc:cf:bd:40:d0:83:73:0e:d6:51:a5:42:31:0a:e2:ee:
                    75:ab:86:8a:ca:38:aa:1c:e2:63:0e:e9:0c:83:6d:11:
                    6e:58:c4:ab:69:fa:9e:a7:b6:cc:15:b5:ff:cb:e9:3d:
                    e6:98:4d:70:1f:2e:79:23:ef:bd:c9:5c:58:ee:c1:bc:
                    83:58:b9:e4:e3:21:a5:ad:db:89:01:60:80:3f:c8:40:
                    46:af:44:fb:d7:df:37:50:6d:e7:18:eb:28:7a:8d:e6:
                    f1:d9:28:0d:75:7f:b1:c4:e6:07:50:e5:2f:c3:78:1d:
                    bc:76:d6:4d:b3:38:84:dc:f2:c0:65:6a:c7:94:ff:a3:
                    55:0e:8f:f6:45:f9:09:2a:cc:f5:ce:a7:d7:e8:db:cb:
                    49:56:78:2f:66:b2:e7:76:79:58:62:3a:8a:1b:8c:2a:
                    e4:6f:2d:93:42:20:e2:b6:18:b0:c4:45:ef:c1:94:db:
                    73:41:05:c9:3a:46:ff:84:7c:69:7d:12:09:57:54:83:
                    08:8c:71:ef:b7:43:5d:cb:4f:7b:70:7e:ac:9d:73:6a:
                    63:d4:91:8b:0f:80:10:80:1d:26:9b:b9:d6:04:95:8f:
                    4d:c0:0a:96:c6:5f:8e:11:ef:f2:a8:2d:b6:bc:41:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:ca:e3:ee:b9:7d:cf:00:2f:e4:42:bb:c6:2c:0e:b3:
        44:3e:82:ff:58:b6:b3:9a:0b:4e:ad:0a:13:07:d3:9e:
        1c:aa:33:34:e3:83:91:7c:04:47:c9:62:78:d5:20:6f:
        2b:0e:59:b0:30:4e:8e:76:b4:10:fe:31:da:ee:96:da:
        d8:f0:8f:ec:fd:b9:1c:bc:ae:97:f4:a6:7c:37:ad:f0:
        c7:da:6c:84:5d:43:6c:85:46:c8:71:0a:cf:81:98:df:
        83:b3:c9:e1:ec:3a:d2:ea:95:56:b1:82:69:0c:f0:80:
        0b:ca:96:4f:ab:0f:69:1f:ed:89:3d:45:2b:23:b7:1a:
        0c:3c:e1:d4:ca:69:5f:ea:ff:f7:a3:bd:9b:74:0b:bc:
        cc:1d:69:33:60:36:8c:d2:66:c6:59:47:9f:06:d9:e5:
        13:87:8e:d7:fa:c1:e1:e4:bd:19:c7:58:6e:15:79:69:
        4f:6d:a5:4f:6e:aa:48:db:91:65:92:e4:da:7d:0a:f4:
        b4:93:06:ed:2c:fb:a7:3e:09:20:7b:22:60:2e:94:31:
        06:d4:25:d8:8d:9c:af:a7:5c:1e:85:5b:19:5a:b1:57:
        57:ea:ed:2b:71:34:5c:a0:93:26:6d:68:f9:14:1b:38:
        4f:a8:60:6a:ee:01:59:f0:29:57:7e:a9:02:0b:f1:05
    Fingerprint (SHA-256):
        CE:13:99:6D:59:D5:2C:E6:EF:BD:2B:03:A5:FC:94:B1:77:04:F0:8A:7D:E3:56:64:BD:76:80:5F:94:38:7C:65
    Fingerprint (SHA1):
        DD:C0:E8:94:A7:7B:4D:DF:5C:75:FE:45:E8:D2:D2:19:47:F4:85:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3328: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3329: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3330: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153340 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3331: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3332: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3333: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3334: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153341   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3335: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3336: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3337: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3338: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153342   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3339: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3340: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3341: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3342: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153343   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3343: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3344: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3345: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153344 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3346: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3347: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3348: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3349: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153345   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3350: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3351: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3352: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3353: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153346   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3354: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3355: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3356: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3357: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3358: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153340 (0x1dee407c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:33:40 2017
            Not After : Mon May 02 15:33:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f5:90:3b:30:da:ab:81:a8:64:81:6a:a6:a9:55:ed:
                    ca:ae:00:25:18:29:45:ea:55:fd:1e:94:5d:ae:db:dc:
                    bc:8d:1f:26:01:89:4e:71:59:6e:e2:be:7c:3f:a7:d2:
                    f1:20:aa:20:de:23:44:9a:fd:68:e9:24:19:fb:56:b6:
                    2e:a9:88:69:ad:28:2e:f7:1d:30:d6:34:aa:08:8f:f7:
                    ec:c1:29:95:4d:b6:19:2b:d7:74:bd:c7:16:13:7c:72:
                    91:fe:ed:ec:9e:25:fe:53:54:89:6c:1d:0a:7e:23:29:
                    47:ba:85:54:40:fa:e0:13:a1:91:ca:ca:67:fb:38:9d:
                    46:5c:65:24:8d:0e:2f:d0:fc:68:38:fe:c8:c8:1e:93:
                    35:85:05:92:ce:38:62:80:1b:5a:43:f4:5b:bb:34:eb:
                    5a:f2:6d:50:4c:b9:09:43:d5:af:ff:84:fa:81:19:69:
                    80:37:15:d1:54:02:05:54:55:b8:3e:62:0f:68:d1:fb:
                    28:28:ee:f3:fe:a7:0b:de:55:d9:2f:c5:1d:c5:34:25:
                    c3:d1:c3:0d:4c:54:3e:4c:b1:77:33:a6:67:1f:1c:b8:
                    84:6c:7c:29:cf:8f:f5:e5:33:88:94:f0:0a:a7:80:44:
                    4a:51:a7:52:ce:5c:17:7c:e3:f3:ca:48:fc:74:c7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1d:25:f7:5d:28:88:d0:9b:ea:a9:07:cc:7a:e3:da:
        e6:e4:0e:2f:6c:32:4a:ed:ab:c5:fe:3f:db:15:fe:9c:
        8c:49:95:bf:a4:bc:66:69:70:54:fa:2e:08:06:23:39:
        07:69:24:3c:b0:62:73:11:0a:b0:f4:a1:e4:86:dc:0e:
        4c:b5:00:9b:01:b5:43:0e:a6:34:82:7c:03:4c:35:8c:
        fc:63:55:5c:d4:b1:2e:44:8c:3a:50:cb:10:fd:a1:7a:
        2c:9d:73:16:4f:05:d6:3a:3d:6f:54:39:6b:05:92:6b:
        55:a1:0d:1c:b1:33:ae:c3:cc:b8:3b:f2:bc:2a:c0:5f:
        42:3e:ae:a0:de:cd:dd:cf:01:9f:a5:64:52:be:a4:ba:
        10:91:ac:c6:72:e3:32:2a:f8:38:9e:a9:96:41:88:5f:
        7e:62:28:c1:09:5f:9b:a0:e9:e4:c8:6f:a1:2a:ee:d6:
        f6:9d:ad:ab:61:da:12:31:59:98:b5:7e:ea:5c:2f:46:
        b1:22:26:c9:11:54:c8:b4:c8:21:ed:cb:42:91:25:76:
        98:fd:03:61:67:6f:fa:b2:3c:e5:44:5f:20:a2:99:41:
        1b:ea:6d:1d:42:a0:e8:7e:59:10:62:5e:43:5c:b9:5b:
        80:13:3d:3f:39:1a:72:33:fd:5f:ed:52:6e:e3:ea:29
    Fingerprint (SHA-256):
        3C:FF:A4:05:62:F3:30:0D:25:15:70:96:DB:59:38:D3:FF:42:30:AD:0F:9A:F7:EC:C6:34:36:1C:5E:C4:73:9E
    Fingerprint (SHA1):
        F7:32:50:8F:2B:DF:24:89:C0:B1:5F:86:DD:AA:C1:D5:49:06:45:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3359: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153342 (0x1dee407e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:42 2017
            Not After : Mon May 02 15:33:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:cd:d3:93:c1:57:ac:4e:13:8b:a2:e2:0e:d9:b6:d5:
                    ec:60:97:83:b7:42:bd:9a:5f:46:af:1f:13:e7:26:3e:
                    e5:ea:30:16:ca:87:0f:ac:71:a4:44:0e:ed:21:44:26:
                    f7:77:a2:f4:17:6d:c0:22:46:4d:98:61:28:6b:e6:7e:
                    da:28:24:65:54:d5:30:e0:1e:4b:11:8b:7f:39:49:b3:
                    f7:25:f8:55:72:a3:b6:d9:b6:c8:91:14:89:72:09:95:
                    1d:1a:f2:cf:07:00:ab:c5:89:c5:c0:a7:09:6d:03:27:
                    b5:3d:f0:e9:15:fe:47:4b:c2:f7:9d:01:7f:ba:28:f6:
                    66:a0:eb:3d:d6:94:38:41:dc:95:e2:0e:8d:02:2c:e1:
                    16:84:ff:da:0f:f1:37:95:5e:b6:8f:13:ee:c8:5b:c4:
                    72:ff:07:57:70:1d:6f:cc:67:bc:f4:4a:6d:9f:49:bd:
                    ba:22:cd:85:7f:b1:9e:34:bd:03:89:bb:2c:f7:c3:a0:
                    0c:ea:d5:fd:17:37:40:1f:b5:fe:bd:e8:5a:94:3b:67:
                    c9:d6:ec:f0:9b:22:b8:0c:70:df:2a:60:f7:2c:ca:49:
                    b6:08:18:f3:9f:c7:17:79:49:46:cc:61:78:ed:20:9b:
                    39:c7:bc:42:93:00:29:5d:45:df:19:04:9f:27:35:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:14:61:16:92:78:21:ca:07:42:f2:9e:50:5f:c7:95:
        68:69:c9:f7:a2:91:fc:39:8d:f7:44:a4:47:98:96:68:
        ab:a6:93:0f:21:75:da:e3:c9:5c:78:0e:38:94:1a:1c:
        38:7d:97:6a:38:cd:0c:ce:de:f9:71:42:6a:ab:a9:b5:
        7b:69:aa:b9:29:60:65:02:96:28:f1:54:b3:73:ec:2a:
        3f:95:96:9c:cf:73:83:b8:35:ae:ea:b9:65:06:57:74:
        51:5a:70:0a:3b:b4:c4:af:a1:a7:f8:1b:4b:45:fc:34:
        72:69:b6:c6:50:0e:82:9e:66:7b:46:46:4c:fc:82:da:
        3e:45:92:84:bb:bd:7e:9b:70:28:49:a5:eb:64:93:62:
        5a:cb:a4:15:1a:6a:a1:a6:11:5c:90:c4:c7:b9:ef:f2:
        fa:eb:f4:e8:0c:e7:39:94:23:9e:b9:d2:3b:78:d7:8d:
        49:bd:59:d2:36:7f:33:73:1b:97:11:78:52:2f:69:1a:
        62:ff:f4:73:33:33:e8:6d:fe:b9:83:87:e6:20:cf:65:
        ed:0f:ae:c3:0e:73:01:24:bf:a4:80:23:5a:da:0c:3d:
        75:cf:b1:99:fb:01:bd:08:97:e0:3b:e1:94:6a:8f:f1:
        04:d9:1f:fc:80:78:97:68:1c:3d:cb:01:d4:79:d3:92
    Fingerprint (SHA-256):
        2A:85:1C:4E:C5:AF:EF:B6:30:AE:14:D2:53:5C:FA:32:3E:B3:15:87:22:DF:16:40:6B:E4:5C:62:76:45:0E:EC
    Fingerprint (SHA1):
        37:0E:98:13:5A:77:62:F5:18:BA:1B:9A:55:6A:23:C1:2A:6F:63:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3360: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153340 (0x1dee407c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:33:40 2017
            Not After : Mon May 02 15:33:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f5:90:3b:30:da:ab:81:a8:64:81:6a:a6:a9:55:ed:
                    ca:ae:00:25:18:29:45:ea:55:fd:1e:94:5d:ae:db:dc:
                    bc:8d:1f:26:01:89:4e:71:59:6e:e2:be:7c:3f:a7:d2:
                    f1:20:aa:20:de:23:44:9a:fd:68:e9:24:19:fb:56:b6:
                    2e:a9:88:69:ad:28:2e:f7:1d:30:d6:34:aa:08:8f:f7:
                    ec:c1:29:95:4d:b6:19:2b:d7:74:bd:c7:16:13:7c:72:
                    91:fe:ed:ec:9e:25:fe:53:54:89:6c:1d:0a:7e:23:29:
                    47:ba:85:54:40:fa:e0:13:a1:91:ca:ca:67:fb:38:9d:
                    46:5c:65:24:8d:0e:2f:d0:fc:68:38:fe:c8:c8:1e:93:
                    35:85:05:92:ce:38:62:80:1b:5a:43:f4:5b:bb:34:eb:
                    5a:f2:6d:50:4c:b9:09:43:d5:af:ff:84:fa:81:19:69:
                    80:37:15:d1:54:02:05:54:55:b8:3e:62:0f:68:d1:fb:
                    28:28:ee:f3:fe:a7:0b:de:55:d9:2f:c5:1d:c5:34:25:
                    c3:d1:c3:0d:4c:54:3e:4c:b1:77:33:a6:67:1f:1c:b8:
                    84:6c:7c:29:cf:8f:f5:e5:33:88:94:f0:0a:a7:80:44:
                    4a:51:a7:52:ce:5c:17:7c:e3:f3:ca:48:fc:74:c7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1d:25:f7:5d:28:88:d0:9b:ea:a9:07:cc:7a:e3:da:
        e6:e4:0e:2f:6c:32:4a:ed:ab:c5:fe:3f:db:15:fe:9c:
        8c:49:95:bf:a4:bc:66:69:70:54:fa:2e:08:06:23:39:
        07:69:24:3c:b0:62:73:11:0a:b0:f4:a1:e4:86:dc:0e:
        4c:b5:00:9b:01:b5:43:0e:a6:34:82:7c:03:4c:35:8c:
        fc:63:55:5c:d4:b1:2e:44:8c:3a:50:cb:10:fd:a1:7a:
        2c:9d:73:16:4f:05:d6:3a:3d:6f:54:39:6b:05:92:6b:
        55:a1:0d:1c:b1:33:ae:c3:cc:b8:3b:f2:bc:2a:c0:5f:
        42:3e:ae:a0:de:cd:dd:cf:01:9f:a5:64:52:be:a4:ba:
        10:91:ac:c6:72:e3:32:2a:f8:38:9e:a9:96:41:88:5f:
        7e:62:28:c1:09:5f:9b:a0:e9:e4:c8:6f:a1:2a:ee:d6:
        f6:9d:ad:ab:61:da:12:31:59:98:b5:7e:ea:5c:2f:46:
        b1:22:26:c9:11:54:c8:b4:c8:21:ed:cb:42:91:25:76:
        98:fd:03:61:67:6f:fa:b2:3c:e5:44:5f:20:a2:99:41:
        1b:ea:6d:1d:42:a0:e8:7e:59:10:62:5e:43:5c:b9:5b:
        80:13:3d:3f:39:1a:72:33:fd:5f:ed:52:6e:e3:ea:29
    Fingerprint (SHA-256):
        3C:FF:A4:05:62:F3:30:0D:25:15:70:96:DB:59:38:D3:FF:42:30:AD:0F:9A:F7:EC:C6:34:36:1C:5E:C4:73:9E
    Fingerprint (SHA1):
        F7:32:50:8F:2B:DF:24:89:C0:B1:5F:86:DD:AA:C1:D5:49:06:45:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3361: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3362: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153340 (0x1dee407c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:33:40 2017
            Not After : Mon May 02 15:33:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f5:90:3b:30:da:ab:81:a8:64:81:6a:a6:a9:55:ed:
                    ca:ae:00:25:18:29:45:ea:55:fd:1e:94:5d:ae:db:dc:
                    bc:8d:1f:26:01:89:4e:71:59:6e:e2:be:7c:3f:a7:d2:
                    f1:20:aa:20:de:23:44:9a:fd:68:e9:24:19:fb:56:b6:
                    2e:a9:88:69:ad:28:2e:f7:1d:30:d6:34:aa:08:8f:f7:
                    ec:c1:29:95:4d:b6:19:2b:d7:74:bd:c7:16:13:7c:72:
                    91:fe:ed:ec:9e:25:fe:53:54:89:6c:1d:0a:7e:23:29:
                    47:ba:85:54:40:fa:e0:13:a1:91:ca:ca:67:fb:38:9d:
                    46:5c:65:24:8d:0e:2f:d0:fc:68:38:fe:c8:c8:1e:93:
                    35:85:05:92:ce:38:62:80:1b:5a:43:f4:5b:bb:34:eb:
                    5a:f2:6d:50:4c:b9:09:43:d5:af:ff:84:fa:81:19:69:
                    80:37:15:d1:54:02:05:54:55:b8:3e:62:0f:68:d1:fb:
                    28:28:ee:f3:fe:a7:0b:de:55:d9:2f:c5:1d:c5:34:25:
                    c3:d1:c3:0d:4c:54:3e:4c:b1:77:33:a6:67:1f:1c:b8:
                    84:6c:7c:29:cf:8f:f5:e5:33:88:94:f0:0a:a7:80:44:
                    4a:51:a7:52:ce:5c:17:7c:e3:f3:ca:48:fc:74:c7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1d:25:f7:5d:28:88:d0:9b:ea:a9:07:cc:7a:e3:da:
        e6:e4:0e:2f:6c:32:4a:ed:ab:c5:fe:3f:db:15:fe:9c:
        8c:49:95:bf:a4:bc:66:69:70:54:fa:2e:08:06:23:39:
        07:69:24:3c:b0:62:73:11:0a:b0:f4:a1:e4:86:dc:0e:
        4c:b5:00:9b:01:b5:43:0e:a6:34:82:7c:03:4c:35:8c:
        fc:63:55:5c:d4:b1:2e:44:8c:3a:50:cb:10:fd:a1:7a:
        2c:9d:73:16:4f:05:d6:3a:3d:6f:54:39:6b:05:92:6b:
        55:a1:0d:1c:b1:33:ae:c3:cc:b8:3b:f2:bc:2a:c0:5f:
        42:3e:ae:a0:de:cd:dd:cf:01:9f:a5:64:52:be:a4:ba:
        10:91:ac:c6:72:e3:32:2a:f8:38:9e:a9:96:41:88:5f:
        7e:62:28:c1:09:5f:9b:a0:e9:e4:c8:6f:a1:2a:ee:d6:
        f6:9d:ad:ab:61:da:12:31:59:98:b5:7e:ea:5c:2f:46:
        b1:22:26:c9:11:54:c8:b4:c8:21:ed:cb:42:91:25:76:
        98:fd:03:61:67:6f:fa:b2:3c:e5:44:5f:20:a2:99:41:
        1b:ea:6d:1d:42:a0:e8:7e:59:10:62:5e:43:5c:b9:5b:
        80:13:3d:3f:39:1a:72:33:fd:5f:ed:52:6e:e3:ea:29
    Fingerprint (SHA-256):
        3C:FF:A4:05:62:F3:30:0D:25:15:70:96:DB:59:38:D3:FF:42:30:AD:0F:9A:F7:EC:C6:34:36:1C:5E:C4:73:9E
    Fingerprint (SHA1):
        F7:32:50:8F:2B:DF:24:89:C0:B1:5F:86:DD:AA:C1:D5:49:06:45:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3363: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153342 (0x1dee407e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:42 2017
            Not After : Mon May 02 15:33:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:cd:d3:93:c1:57:ac:4e:13:8b:a2:e2:0e:d9:b6:d5:
                    ec:60:97:83:b7:42:bd:9a:5f:46:af:1f:13:e7:26:3e:
                    e5:ea:30:16:ca:87:0f:ac:71:a4:44:0e:ed:21:44:26:
                    f7:77:a2:f4:17:6d:c0:22:46:4d:98:61:28:6b:e6:7e:
                    da:28:24:65:54:d5:30:e0:1e:4b:11:8b:7f:39:49:b3:
                    f7:25:f8:55:72:a3:b6:d9:b6:c8:91:14:89:72:09:95:
                    1d:1a:f2:cf:07:00:ab:c5:89:c5:c0:a7:09:6d:03:27:
                    b5:3d:f0:e9:15:fe:47:4b:c2:f7:9d:01:7f:ba:28:f6:
                    66:a0:eb:3d:d6:94:38:41:dc:95:e2:0e:8d:02:2c:e1:
                    16:84:ff:da:0f:f1:37:95:5e:b6:8f:13:ee:c8:5b:c4:
                    72:ff:07:57:70:1d:6f:cc:67:bc:f4:4a:6d:9f:49:bd:
                    ba:22:cd:85:7f:b1:9e:34:bd:03:89:bb:2c:f7:c3:a0:
                    0c:ea:d5:fd:17:37:40:1f:b5:fe:bd:e8:5a:94:3b:67:
                    c9:d6:ec:f0:9b:22:b8:0c:70:df:2a:60:f7:2c:ca:49:
                    b6:08:18:f3:9f:c7:17:79:49:46:cc:61:78:ed:20:9b:
                    39:c7:bc:42:93:00:29:5d:45:df:19:04:9f:27:35:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:14:61:16:92:78:21:ca:07:42:f2:9e:50:5f:c7:95:
        68:69:c9:f7:a2:91:fc:39:8d:f7:44:a4:47:98:96:68:
        ab:a6:93:0f:21:75:da:e3:c9:5c:78:0e:38:94:1a:1c:
        38:7d:97:6a:38:cd:0c:ce:de:f9:71:42:6a:ab:a9:b5:
        7b:69:aa:b9:29:60:65:02:96:28:f1:54:b3:73:ec:2a:
        3f:95:96:9c:cf:73:83:b8:35:ae:ea:b9:65:06:57:74:
        51:5a:70:0a:3b:b4:c4:af:a1:a7:f8:1b:4b:45:fc:34:
        72:69:b6:c6:50:0e:82:9e:66:7b:46:46:4c:fc:82:da:
        3e:45:92:84:bb:bd:7e:9b:70:28:49:a5:eb:64:93:62:
        5a:cb:a4:15:1a:6a:a1:a6:11:5c:90:c4:c7:b9:ef:f2:
        fa:eb:f4:e8:0c:e7:39:94:23:9e:b9:d2:3b:78:d7:8d:
        49:bd:59:d2:36:7f:33:73:1b:97:11:78:52:2f:69:1a:
        62:ff:f4:73:33:33:e8:6d:fe:b9:83:87:e6:20:cf:65:
        ed:0f:ae:c3:0e:73:01:24:bf:a4:80:23:5a:da:0c:3d:
        75:cf:b1:99:fb:01:bd:08:97:e0:3b:e1:94:6a:8f:f1:
        04:d9:1f:fc:80:78:97:68:1c:3d:cb:01:d4:79:d3:92
    Fingerprint (SHA-256):
        2A:85:1C:4E:C5:AF:EF:B6:30:AE:14:D2:53:5C:FA:32:3E:B3:15:87:22:DF:16:40:6B:E4:5C:62:76:45:0E:EC
    Fingerprint (SHA1):
        37:0E:98:13:5A:77:62:F5:18:BA:1B:9A:55:6A:23:C1:2A:6F:63:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3364: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3365: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3366: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3367: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153340 (0x1dee407c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:33:40 2017
            Not After : Mon May 02 15:33:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f5:90:3b:30:da:ab:81:a8:64:81:6a:a6:a9:55:ed:
                    ca:ae:00:25:18:29:45:ea:55:fd:1e:94:5d:ae:db:dc:
                    bc:8d:1f:26:01:89:4e:71:59:6e:e2:be:7c:3f:a7:d2:
                    f1:20:aa:20:de:23:44:9a:fd:68:e9:24:19:fb:56:b6:
                    2e:a9:88:69:ad:28:2e:f7:1d:30:d6:34:aa:08:8f:f7:
                    ec:c1:29:95:4d:b6:19:2b:d7:74:bd:c7:16:13:7c:72:
                    91:fe:ed:ec:9e:25:fe:53:54:89:6c:1d:0a:7e:23:29:
                    47:ba:85:54:40:fa:e0:13:a1:91:ca:ca:67:fb:38:9d:
                    46:5c:65:24:8d:0e:2f:d0:fc:68:38:fe:c8:c8:1e:93:
                    35:85:05:92:ce:38:62:80:1b:5a:43:f4:5b:bb:34:eb:
                    5a:f2:6d:50:4c:b9:09:43:d5:af:ff:84:fa:81:19:69:
                    80:37:15:d1:54:02:05:54:55:b8:3e:62:0f:68:d1:fb:
                    28:28:ee:f3:fe:a7:0b:de:55:d9:2f:c5:1d:c5:34:25:
                    c3:d1:c3:0d:4c:54:3e:4c:b1:77:33:a6:67:1f:1c:b8:
                    84:6c:7c:29:cf:8f:f5:e5:33:88:94:f0:0a:a7:80:44:
                    4a:51:a7:52:ce:5c:17:7c:e3:f3:ca:48:fc:74:c7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1d:25:f7:5d:28:88:d0:9b:ea:a9:07:cc:7a:e3:da:
        e6:e4:0e:2f:6c:32:4a:ed:ab:c5:fe:3f:db:15:fe:9c:
        8c:49:95:bf:a4:bc:66:69:70:54:fa:2e:08:06:23:39:
        07:69:24:3c:b0:62:73:11:0a:b0:f4:a1:e4:86:dc:0e:
        4c:b5:00:9b:01:b5:43:0e:a6:34:82:7c:03:4c:35:8c:
        fc:63:55:5c:d4:b1:2e:44:8c:3a:50:cb:10:fd:a1:7a:
        2c:9d:73:16:4f:05:d6:3a:3d:6f:54:39:6b:05:92:6b:
        55:a1:0d:1c:b1:33:ae:c3:cc:b8:3b:f2:bc:2a:c0:5f:
        42:3e:ae:a0:de:cd:dd:cf:01:9f:a5:64:52:be:a4:ba:
        10:91:ac:c6:72:e3:32:2a:f8:38:9e:a9:96:41:88:5f:
        7e:62:28:c1:09:5f:9b:a0:e9:e4:c8:6f:a1:2a:ee:d6:
        f6:9d:ad:ab:61:da:12:31:59:98:b5:7e:ea:5c:2f:46:
        b1:22:26:c9:11:54:c8:b4:c8:21:ed:cb:42:91:25:76:
        98:fd:03:61:67:6f:fa:b2:3c:e5:44:5f:20:a2:99:41:
        1b:ea:6d:1d:42:a0:e8:7e:59:10:62:5e:43:5c:b9:5b:
        80:13:3d:3f:39:1a:72:33:fd:5f:ed:52:6e:e3:ea:29
    Fingerprint (SHA-256):
        3C:FF:A4:05:62:F3:30:0D:25:15:70:96:DB:59:38:D3:FF:42:30:AD:0F:9A:F7:EC:C6:34:36:1C:5E:C4:73:9E
    Fingerprint (SHA1):
        F7:32:50:8F:2B:DF:24:89:C0:B1:5F:86:DD:AA:C1:D5:49:06:45:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3368: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153344 (0x1dee4080)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:33:42 2017
            Not After : Mon May 02 15:33:42 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:05:86:12:14:54:93:28:7d:aa:d0:3a:36:ae:3a:20:
                    e9:33:18:38:54:6e:f0:60:19:43:c8:04:c9:87:ba:09:
                    59:6c:f5:7a:80:14:45:f7:01:9d:f9:fc:61:bb:21:07:
                    1b:54:7b:f2:8b:20:9b:1b:dc:fc:b2:b1:c7:c6:c4:5d:
                    76:22:91:2d:24:b7:8f:a3:2a:b5:c7:4f:64:ab:74:ff:
                    41:3f:15:cb:ff:68:3e:6c:f4:51:bc:e6:ef:30:e4:2b:
                    42:95:73:00:19:18:1e:3e:8e:c3:03:51:8b:20:1c:01:
                    1f:12:19:7f:92:f5:3f:12:1f:14:a1:96:89:f7:0d:96:
                    f9:77:2f:bb:ec:88:30:dc:d2:33:be:b5:ff:44:84:7f:
                    92:a2:0f:e3:3f:91:fa:b9:dd:84:ec:d4:6a:0d:2b:7f:
                    8b:a1:10:a2:c9:5a:d7:16:4d:1c:6d:41:ee:33:01:79:
                    a8:5e:18:36:dc:ef:e6:4b:db:da:48:9b:a5:9b:1b:c0:
                    2f:e9:d7:c6:78:30:12:b6:ab:bc:44:9e:55:7e:b7:96:
                    80:07:11:77:f0:fc:9c:56:6c:f2:3b:38:7c:ee:3e:8a:
                    74:46:0e:58:7b:d3:43:17:40:b3:33:ed:b3:e4:f6:a5:
                    ba:0c:66:04:1f:1e:ad:e8:dd:b7:5a:5e:22:aa:15:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:4c:73:fd:36:11:c3:77:0f:26:e8:bc:46:08:dd:55:
        bc:25:ef:8e:15:78:7f:b5:a9:f5:8a:a2:e3:b2:89:10:
        9b:b1:e5:0c:1e:f8:ab:d8:9b:b3:df:99:e3:76:78:a3:
        af:84:95:f0:c7:fa:f4:44:d0:4b:cb:e6:4f:93:0d:91:
        d6:03:4e:01:27:27:bf:cd:ff:82:f3:e2:ca:9f:c2:c8:
        a0:6d:29:41:dc:69:5b:4e:c5:ab:35:5f:b6:fd:3e:dd:
        9d:45:85:ad:c0:ee:0d:b0:ff:ea:d6:27:c6:22:1c:ff:
        f9:8f:5c:8b:b5:a2:af:45:f4:c4:2e:fa:5d:bc:80:0c:
        6a:0b:60:ff:21:b9:45:8d:96:5b:aa:16:4d:ea:93:6e:
        32:83:72:91:e0:2d:28:db:61:e9:c8:6d:ab:df:dc:91:
        59:1a:49:12:2b:f7:25:f0:2a:f1:ae:43:ef:55:f1:26:
        8b:9b:a6:84:50:e9:0d:47:4d:0c:df:ee:36:ad:9a:c1:
        94:dd:65:a2:f7:a0:f6:4c:c5:81:d3:f6:2c:f3:85:0b:
        7d:89:a9:08:b0:a1:6b:44:a0:a3:72:52:08:20:68:04:
        e5:cd:84:76:da:14:6b:ef:73:d2:ac:88:5b:e2:e5:30:
        77:8f:8a:91:85:46:06:bb:8f:e1:9d:00:ba:52:ce:47
    Fingerprint (SHA-256):
        90:D8:7A:D2:AE:84:F9:BF:B0:D9:AB:81:72:65:19:BA:D3:7E:2F:27:95:FF:EF:5E:AF:6F:38:15:C9:74:61:7D
    Fingerprint (SHA1):
        76:B8:73:97:A4:08:5C:7F:1C:1B:57:88:AF:A8:3D:6E:42:4D:70:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3369: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153340 (0x1dee407c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:33:40 2017
            Not After : Mon May 02 15:33:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f5:90:3b:30:da:ab:81:a8:64:81:6a:a6:a9:55:ed:
                    ca:ae:00:25:18:29:45:ea:55:fd:1e:94:5d:ae:db:dc:
                    bc:8d:1f:26:01:89:4e:71:59:6e:e2:be:7c:3f:a7:d2:
                    f1:20:aa:20:de:23:44:9a:fd:68:e9:24:19:fb:56:b6:
                    2e:a9:88:69:ad:28:2e:f7:1d:30:d6:34:aa:08:8f:f7:
                    ec:c1:29:95:4d:b6:19:2b:d7:74:bd:c7:16:13:7c:72:
                    91:fe:ed:ec:9e:25:fe:53:54:89:6c:1d:0a:7e:23:29:
                    47:ba:85:54:40:fa:e0:13:a1:91:ca:ca:67:fb:38:9d:
                    46:5c:65:24:8d:0e:2f:d0:fc:68:38:fe:c8:c8:1e:93:
                    35:85:05:92:ce:38:62:80:1b:5a:43:f4:5b:bb:34:eb:
                    5a:f2:6d:50:4c:b9:09:43:d5:af:ff:84:fa:81:19:69:
                    80:37:15:d1:54:02:05:54:55:b8:3e:62:0f:68:d1:fb:
                    28:28:ee:f3:fe:a7:0b:de:55:d9:2f:c5:1d:c5:34:25:
                    c3:d1:c3:0d:4c:54:3e:4c:b1:77:33:a6:67:1f:1c:b8:
                    84:6c:7c:29:cf:8f:f5:e5:33:88:94:f0:0a:a7:80:44:
                    4a:51:a7:52:ce:5c:17:7c:e3:f3:ca:48:fc:74:c7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1d:25:f7:5d:28:88:d0:9b:ea:a9:07:cc:7a:e3:da:
        e6:e4:0e:2f:6c:32:4a:ed:ab:c5:fe:3f:db:15:fe:9c:
        8c:49:95:bf:a4:bc:66:69:70:54:fa:2e:08:06:23:39:
        07:69:24:3c:b0:62:73:11:0a:b0:f4:a1:e4:86:dc:0e:
        4c:b5:00:9b:01:b5:43:0e:a6:34:82:7c:03:4c:35:8c:
        fc:63:55:5c:d4:b1:2e:44:8c:3a:50:cb:10:fd:a1:7a:
        2c:9d:73:16:4f:05:d6:3a:3d:6f:54:39:6b:05:92:6b:
        55:a1:0d:1c:b1:33:ae:c3:cc:b8:3b:f2:bc:2a:c0:5f:
        42:3e:ae:a0:de:cd:dd:cf:01:9f:a5:64:52:be:a4:ba:
        10:91:ac:c6:72:e3:32:2a:f8:38:9e:a9:96:41:88:5f:
        7e:62:28:c1:09:5f:9b:a0:e9:e4:c8:6f:a1:2a:ee:d6:
        f6:9d:ad:ab:61:da:12:31:59:98:b5:7e:ea:5c:2f:46:
        b1:22:26:c9:11:54:c8:b4:c8:21:ed:cb:42:91:25:76:
        98:fd:03:61:67:6f:fa:b2:3c:e5:44:5f:20:a2:99:41:
        1b:ea:6d:1d:42:a0:e8:7e:59:10:62:5e:43:5c:b9:5b:
        80:13:3d:3f:39:1a:72:33:fd:5f:ed:52:6e:e3:ea:29
    Fingerprint (SHA-256):
        3C:FF:A4:05:62:F3:30:0D:25:15:70:96:DB:59:38:D3:FF:42:30:AD:0F:9A:F7:EC:C6:34:36:1C:5E:C4:73:9E
    Fingerprint (SHA1):
        F7:32:50:8F:2B:DF:24:89:C0:B1:5F:86:DD:AA:C1:D5:49:06:45:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3370: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3371: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3372: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3373: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3374: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3375: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153345 (0x1dee4081)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:33:43 2017
            Not After : Mon May 02 15:33:43 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:f7:75:51:da:28:b5:f6:3e:76:b9:66:a7:ce:8a:47:
                    12:cd:fa:1d:1b:59:3c:d6:4c:fc:87:cc:ad:39:99:17:
                    9b:74:dd:0f:51:a3:f3:3a:3c:6c:70:1e:21:9b:b7:b1:
                    90:62:7f:a7:c3:80:64:99:76:15:42:13:38:df:0b:06:
                    f0:d2:18:2b:8d:15:2b:19:64:7a:31:7d:6e:13:3d:cb:
                    99:90:77:5d:ab:36:8c:82:5a:49:fa:1c:09:11:07:67:
                    46:f8:0e:00:e4:64:c6:24:a7:02:dd:29:6b:26:08:94:
                    20:8c:3a:d0:13:7f:1a:32:f2:31:89:ac:ae:89:d5:75:
                    ae:e2:e8:ae:47:ec:9a:02:32:2b:19:be:5e:2d:8b:0d:
                    dd:68:0e:9f:f1:44:d9:8c:4a:a1:be:08:e2:55:d2:1c:
                    c4:cb:08:bd:8d:8e:65:c6:78:72:bf:3a:a1:01:4f:be:
                    07:e9:5e:0c:ce:88:a9:ae:bd:89:43:32:3c:06:25:28:
                    86:22:73:42:c2:09:62:29:de:12:0e:86:b1:50:39:f5:
                    4e:f7:46:ae:9f:41:f4:f0:36:af:47:e5:c0:a9:c6:8a:
                    c4:fc:4a:dc:d5:d3:61:e5:79:d8:4c:34:6e:34:89:b6:
                    ce:5d:48:a5:55:7c:bc:e9:2d:05:8f:da:60:ef:6b:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:4a:f9:a2:04:f1:b3:69:8e:e4:b3:fe:7f:f1:99:d1:
        86:26:fd:c3:8a:18:d8:81:bd:5c:8a:94:5a:07:59:9f:
        fe:23:40:b5:99:dd:7d:6e:c0:9f:0e:68:6d:99:c3:82:
        04:24:d9:7a:66:c8:d2:e0:92:c3:bd:f7:54:76:2f:88:
        8c:48:cc:bb:bb:39:15:fd:6d:88:69:9c:66:c5:bb:90:
        e2:c5:b6:7f:01:53:fe:1c:82:40:ab:16:56:b2:29:39:
        08:3d:6c:71:b0:3c:84:93:3d:85:b7:b3:56:18:11:aa:
        92:d0:2d:47:6f:8c:96:79:8a:e7:a1:d9:9a:5d:b0:1a:
        ac:8d:f5:52:c9:7d:ab:2b:5a:09:0f:db:e8:99:5b:1e:
        da:2d:c2:16:ce:88:bf:40:ab:76:c6:a3:1a:bd:e9:84:
        40:44:27:f6:e3:fa:b2:77:bf:90:09:bc:ce:a7:73:08:
        be:d3:9d:92:60:23:ce:09:e5:a9:d7:7f:de:9c:c4:80:
        e4:a9:ca:3c:10:df:f3:60:cc:cc:d7:60:e9:2e:ef:d6:
        ad:2a:75:59:cf:e5:2b:36:72:24:e4:9c:1f:39:10:26:
        ac:a3:be:9b:4d:8e:9d:78:44:2f:32:49:14:5e:44:38:
        55:b3:08:e5:b4:b8:bd:45:ba:8e:c8:99:2f:37:f7:8a
    Fingerprint (SHA-256):
        13:59:FF:C4:B9:7E:A2:FB:F1:70:86:A5:4A:D9:53:38:72:2B:3B:6D:70:8C:B2:07:03:0A:D8:0D:74:C1:C7:17
    Fingerprint (SHA1):
        EA:6A:83:F5:00:6A:8A:CD:BB:2A:2A:29:D0:6C:94:A3:4E:A0:0E:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3376: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3377: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3378: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3379: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3380: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3381: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3382: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3383: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3384: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3385: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3386: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3387: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3388: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3389: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3390: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3391: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3392: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3393: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3394: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3395: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3396: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3397: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3398: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3399: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 20533 at Tue May  2 15:33:45 UTC 2017
kill -USR1 20533
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 20533 killed at Tue May  2 15:33:45 UTC 2017
httpserv starting at Tue May  2 15:33:45 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:33:45 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 3565 >/dev/null 2>/dev/null
httpserv with PID 3565 found at Tue May  2 15:33:45 UTC 2017
httpserv with PID 3565 started at Tue May  2 15:33:45 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3400: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153347 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3401: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3402: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3403: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153348 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3404: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3405: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3406: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3407: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153349 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3408: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3409: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153350 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3410: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3411: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3412: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3413: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153351   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3417: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3418: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3419: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153348 (0x1dee4084)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:0b:0a:8a:6b:66:5b:58:a4:ef:ed:cf:a4:c6:65:
                    7f:e6:8f:c6:5e:24:6a:77:8c:e2:08:0b:0f:4d:e7:7f:
                    65:3b:ff:a5:e6:82:89:8f:ce:02:62:60:37:8a:9b:1d:
                    a0:87:c4:84:81:f9:18:bc:17:ea:5f:74:d0:74:53:49:
                    5a:93:91:54:74:21:03:9f:69:0f:b3:11:5a:75:a0:a2:
                    e4:73:60:38:f5:6a:47:7f:f3:9f:5c:ec:81:75:94:c3:
                    67:2c:c9:6b:f2:ab:74:92:8d:45:48:11:ee:81:19:b8:
                    e8:51:ae:b5:aa:62:f0:83:1b:48:2a:b0:71:d0:84:91:
                    3a:41:4b:67:4d:06:8c:55:7d:50:04:f4:ec:be:8f:7d:
                    c3:6a:41:8e:03:29:30:30:86:4e:d1:21:cc:9f:08:96:
                    71:65:a9:ad:e3:1f:81:0d:a5:28:78:f2:31:4f:11:fa:
                    e0:de:db:83:99:c2:fc:62:a4:21:bd:95:87:77:88:76:
                    f5:b1:09:f1:26:aa:d0:72:b9:48:17:5e:05:4b:c6:97:
                    1b:15:bb:61:f2:e2:ca:8f:7a:22:fa:86:89:e6:39:b6:
                    73:c8:b7:85:75:28:a3:8e:a6:f9:7d:67:67:36:13:52:
                    c5:af:cc:ed:8a:fe:a7:5e:27:e7:8a:49:1d:8f:b1:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:cc:a6:5d:15:41:2a:b9:6b:5c:d4:5a:eb:20:ec:e0:
        b3:02:93:dd:38:1c:16:16:de:40:3d:e5:79:f3:29:b2:
        cb:c8:ab:68:a9:07:7c:90:66:88:72:e1:d1:81:8a:02:
        fb:4b:96:a8:40:55:bf:9c:8e:47:52:90:42:57:d4:4a:
        1e:66:14:f5:16:7a:74:74:fa:ef:93:f5:e1:c3:ec:90:
        7e:48:f1:fd:2a:93:c0:03:b6:62:22:9f:70:3e:2a:4b:
        7f:56:05:60:38:8e:d5:92:cf:41:d5:bc:f1:57:2b:3f:
        18:f0:8c:4f:54:e0:9b:a5:60:9d:11:80:04:cc:9e:78:
        b3:5b:44:5f:7d:01:31:cf:60:0f:4a:4a:66:a5:53:8d:
        23:57:d4:85:67:aa:82:89:2d:2e:d1:64:3b:d4:4b:e4:
        1a:f7:eb:7a:99:39:19:cd:05:4b:76:78:c8:6f:ad:e1:
        f2:be:32:e9:84:9f:18:1a:79:aa:07:75:1f:f4:e6:8c:
        7f:b6:2c:04:8b:d5:a7:52:48:05:f8:20:fd:9f:76:4a:
        74:89:26:03:20:d7:10:8f:be:40:98:57:ee:22:7e:f5:
        41:48:3b:01:a9:78:2d:b5:2c:96:07:77:a6:a3:cb:5d:
        c0:5b:9b:87:a3:07:ff:13:55:b6:3f:b3:ea:70:cc:b5
    Fingerprint (SHA-256):
        8D:37:40:51:DD:6F:87:B0:BB:F1:15:21:FC:18:1F:B7:55:4D:B7:C3:CA:54:0C:D9:3E:DA:7B:06:C6:0B:86:3A
    Fingerprint (SHA1):
        8E:29:06:24:8D:20:77:88:4B:17:F4:2D:5B:8F:9F:F8:89:8D:10:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3420: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153347 (0x1dee4083)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:2b:a2:d8:74:36:26:d7:03:60:32:a1:0f:e0:34:9b:
                    e8:7c:ec:fe:9a:21:74:da:d8:1f:7c:16:b1:10:fa:7d:
                    fe:30:27:f9:fc:18:54:1c:f0:a9:82:b5:cb:05:f6:09:
                    c4:4b:ec:f3:af:b6:97:22:9e:e0:b2:8a:1f:0e:fe:c2:
                    3e:e3:f7:17:3f:af:fb:d9:89:b5:43:76:3c:61:b3:4d:
                    d4:91:88:95:0b:3e:7c:cd:93:e3:36:78:38:f0:bc:f9:
                    f9:03:7c:f9:b8:ec:3b:85:94:65:c6:49:5b:a7:c9:6d:
                    41:68:e4:1b:d2:e2:a1:cf:48:31:38:9d:9f:a0:2f:83:
                    54:80:ab:6f:6e:f3:9d:1b:a6:a9:b8:fc:7c:4e:3b:50:
                    18:85:3f:51:2d:13:15:ef:0e:6d:8c:d2:6e:f0:8c:3d:
                    96:67:68:83:cd:c9:8c:68:6c:9b:ed:cb:3d:d2:10:04:
                    19:a4:f9:e0:3c:28:9f:25:14:8b:00:5d:4c:04:e0:98:
                    a8:2b:42:cd:40:50:15:cb:4d:1d:2b:48:4c:b8:7b:27:
                    6a:0c:80:04:8e:da:40:24:98:13:1e:10:87:97:8a:f9:
                    23:91:59:0a:be:d3:d6:c6:72:53:30:84:0a:3b:bb:ce:
                    ea:9c:35:fd:13:82:1f:74:39:4c:30:9e:88:2a:27:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:ef:fd:79:45:2b:1b:e1:66:37:af:72:7b:28:5c:a2:
        b0:5e:ad:d8:d8:48:cc:a8:5c:68:9b:94:fa:4e:47:81:
        77:09:8c:ed:8b:d4:3c:f4:0c:c8:4c:49:48:9d:ad:c4:
        90:6e:d9:e3:2d:d5:59:5e:66:9a:b3:cb:2d:cc:35:7e:
        d7:e6:e3:64:14:90:38:77:51:fb:55:6f:f7:d9:d3:80:
        ac:94:3a:37:5e:95:e3:b1:f2:db:2c:2a:fb:3c:ea:bb:
        ed:ed:bd:80:d4:6a:05:24:8d:39:a3:cd:5d:c0:19:04:
        97:f5:5d:63:dc:ce:92:6c:82:30:1e:f4:df:4d:74:c2:
        d2:5a:60:5f:6d:ea:b5:f1:b9:d0:8f:a0:29:64:90:e0:
        97:89:3c:6e:43:eb:60:14:86:e9:c1:71:53:66:3d:95:
        44:c3:9f:a1:f1:fd:07:a8:71:6e:21:64:83:a3:c6:81:
        18:d2:05:f8:fb:9c:b9:23:6b:78:88:98:90:94:6c:e0:
        d3:f9:a2:27:aa:24:44:5e:77:f5:18:1c:64:ba:cc:14:
        e3:4c:cc:23:c7:32:c7:82:a5:48:d8:7e:1e:f4:ed:ab:
        cc:5a:23:8c:1a:59:ba:07:f5:1f:b5:c9:37:df:35:67:
        7a:07:b2:9d:a9:23:8e:21:6e:11:c3:50:ba:d7:00:8c
    Fingerprint (SHA-256):
        80:36:D0:FE:64:12:3A:B8:6B:70:98:99:2A:6B:AF:E8:E7:5C:5D:7F:36:EC:3D:AF:EB:C0:C0:AE:51:4C:84:F1
    Fingerprint (SHA1):
        D3:24:F2:BC:C9:F7:0F:21:B8:38:CE:FF:36:F2:01:5E:78:A1:2C:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3421: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3422: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3423: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3424: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153347 (0x1dee4083)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:2b:a2:d8:74:36:26:d7:03:60:32:a1:0f:e0:34:9b:
                    e8:7c:ec:fe:9a:21:74:da:d8:1f:7c:16:b1:10:fa:7d:
                    fe:30:27:f9:fc:18:54:1c:f0:a9:82:b5:cb:05:f6:09:
                    c4:4b:ec:f3:af:b6:97:22:9e:e0:b2:8a:1f:0e:fe:c2:
                    3e:e3:f7:17:3f:af:fb:d9:89:b5:43:76:3c:61:b3:4d:
                    d4:91:88:95:0b:3e:7c:cd:93:e3:36:78:38:f0:bc:f9:
                    f9:03:7c:f9:b8:ec:3b:85:94:65:c6:49:5b:a7:c9:6d:
                    41:68:e4:1b:d2:e2:a1:cf:48:31:38:9d:9f:a0:2f:83:
                    54:80:ab:6f:6e:f3:9d:1b:a6:a9:b8:fc:7c:4e:3b:50:
                    18:85:3f:51:2d:13:15:ef:0e:6d:8c:d2:6e:f0:8c:3d:
                    96:67:68:83:cd:c9:8c:68:6c:9b:ed:cb:3d:d2:10:04:
                    19:a4:f9:e0:3c:28:9f:25:14:8b:00:5d:4c:04:e0:98:
                    a8:2b:42:cd:40:50:15:cb:4d:1d:2b:48:4c:b8:7b:27:
                    6a:0c:80:04:8e:da:40:24:98:13:1e:10:87:97:8a:f9:
                    23:91:59:0a:be:d3:d6:c6:72:53:30:84:0a:3b:bb:ce:
                    ea:9c:35:fd:13:82:1f:74:39:4c:30:9e:88:2a:27:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:ef:fd:79:45:2b:1b:e1:66:37:af:72:7b:28:5c:a2:
        b0:5e:ad:d8:d8:48:cc:a8:5c:68:9b:94:fa:4e:47:81:
        77:09:8c:ed:8b:d4:3c:f4:0c:c8:4c:49:48:9d:ad:c4:
        90:6e:d9:e3:2d:d5:59:5e:66:9a:b3:cb:2d:cc:35:7e:
        d7:e6:e3:64:14:90:38:77:51:fb:55:6f:f7:d9:d3:80:
        ac:94:3a:37:5e:95:e3:b1:f2:db:2c:2a:fb:3c:ea:bb:
        ed:ed:bd:80:d4:6a:05:24:8d:39:a3:cd:5d:c0:19:04:
        97:f5:5d:63:dc:ce:92:6c:82:30:1e:f4:df:4d:74:c2:
        d2:5a:60:5f:6d:ea:b5:f1:b9:d0:8f:a0:29:64:90:e0:
        97:89:3c:6e:43:eb:60:14:86:e9:c1:71:53:66:3d:95:
        44:c3:9f:a1:f1:fd:07:a8:71:6e:21:64:83:a3:c6:81:
        18:d2:05:f8:fb:9c:b9:23:6b:78:88:98:90:94:6c:e0:
        d3:f9:a2:27:aa:24:44:5e:77:f5:18:1c:64:ba:cc:14:
        e3:4c:cc:23:c7:32:c7:82:a5:48:d8:7e:1e:f4:ed:ab:
        cc:5a:23:8c:1a:59:ba:07:f5:1f:b5:c9:37:df:35:67:
        7a:07:b2:9d:a9:23:8e:21:6e:11:c3:50:ba:d7:00:8c
    Fingerprint (SHA-256):
        80:36:D0:FE:64:12:3A:B8:6B:70:98:99:2A:6B:AF:E8:E7:5C:5D:7F:36:EC:3D:AF:EB:C0:C0:AE:51:4C:84:F1
    Fingerprint (SHA1):
        D3:24:F2:BC:C9:F7:0F:21:B8:38:CE:FF:36:F2:01:5E:78:A1:2C:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3425: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153348 (0x1dee4084)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:0b:0a:8a:6b:66:5b:58:a4:ef:ed:cf:a4:c6:65:
                    7f:e6:8f:c6:5e:24:6a:77:8c:e2:08:0b:0f:4d:e7:7f:
                    65:3b:ff:a5:e6:82:89:8f:ce:02:62:60:37:8a:9b:1d:
                    a0:87:c4:84:81:f9:18:bc:17:ea:5f:74:d0:74:53:49:
                    5a:93:91:54:74:21:03:9f:69:0f:b3:11:5a:75:a0:a2:
                    e4:73:60:38:f5:6a:47:7f:f3:9f:5c:ec:81:75:94:c3:
                    67:2c:c9:6b:f2:ab:74:92:8d:45:48:11:ee:81:19:b8:
                    e8:51:ae:b5:aa:62:f0:83:1b:48:2a:b0:71:d0:84:91:
                    3a:41:4b:67:4d:06:8c:55:7d:50:04:f4:ec:be:8f:7d:
                    c3:6a:41:8e:03:29:30:30:86:4e:d1:21:cc:9f:08:96:
                    71:65:a9:ad:e3:1f:81:0d:a5:28:78:f2:31:4f:11:fa:
                    e0:de:db:83:99:c2:fc:62:a4:21:bd:95:87:77:88:76:
                    f5:b1:09:f1:26:aa:d0:72:b9:48:17:5e:05:4b:c6:97:
                    1b:15:bb:61:f2:e2:ca:8f:7a:22:fa:86:89:e6:39:b6:
                    73:c8:b7:85:75:28:a3:8e:a6:f9:7d:67:67:36:13:52:
                    c5:af:cc:ed:8a:fe:a7:5e:27:e7:8a:49:1d:8f:b1:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:cc:a6:5d:15:41:2a:b9:6b:5c:d4:5a:eb:20:ec:e0:
        b3:02:93:dd:38:1c:16:16:de:40:3d:e5:79:f3:29:b2:
        cb:c8:ab:68:a9:07:7c:90:66:88:72:e1:d1:81:8a:02:
        fb:4b:96:a8:40:55:bf:9c:8e:47:52:90:42:57:d4:4a:
        1e:66:14:f5:16:7a:74:74:fa:ef:93:f5:e1:c3:ec:90:
        7e:48:f1:fd:2a:93:c0:03:b6:62:22:9f:70:3e:2a:4b:
        7f:56:05:60:38:8e:d5:92:cf:41:d5:bc:f1:57:2b:3f:
        18:f0:8c:4f:54:e0:9b:a5:60:9d:11:80:04:cc:9e:78:
        b3:5b:44:5f:7d:01:31:cf:60:0f:4a:4a:66:a5:53:8d:
        23:57:d4:85:67:aa:82:89:2d:2e:d1:64:3b:d4:4b:e4:
        1a:f7:eb:7a:99:39:19:cd:05:4b:76:78:c8:6f:ad:e1:
        f2:be:32:e9:84:9f:18:1a:79:aa:07:75:1f:f4:e6:8c:
        7f:b6:2c:04:8b:d5:a7:52:48:05:f8:20:fd:9f:76:4a:
        74:89:26:03:20:d7:10:8f:be:40:98:57:ee:22:7e:f5:
        41:48:3b:01:a9:78:2d:b5:2c:96:07:77:a6:a3:cb:5d:
        c0:5b:9b:87:a3:07:ff:13:55:b6:3f:b3:ea:70:cc:b5
    Fingerprint (SHA-256):
        8D:37:40:51:DD:6F:87:B0:BB:F1:15:21:FC:18:1F:B7:55:4D:B7:C3:CA:54:0C:D9:3E:DA:7B:06:C6:0B:86:3A
    Fingerprint (SHA1):
        8E:29:06:24:8D:20:77:88:4B:17:F4:2D:5B:8F:9F:F8:89:8D:10:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3426: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3427: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3428: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3429: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3430: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3431: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153348 (0x1dee4084)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:0b:0a:8a:6b:66:5b:58:a4:ef:ed:cf:a4:c6:65:
                    7f:e6:8f:c6:5e:24:6a:77:8c:e2:08:0b:0f:4d:e7:7f:
                    65:3b:ff:a5:e6:82:89:8f:ce:02:62:60:37:8a:9b:1d:
                    a0:87:c4:84:81:f9:18:bc:17:ea:5f:74:d0:74:53:49:
                    5a:93:91:54:74:21:03:9f:69:0f:b3:11:5a:75:a0:a2:
                    e4:73:60:38:f5:6a:47:7f:f3:9f:5c:ec:81:75:94:c3:
                    67:2c:c9:6b:f2:ab:74:92:8d:45:48:11:ee:81:19:b8:
                    e8:51:ae:b5:aa:62:f0:83:1b:48:2a:b0:71:d0:84:91:
                    3a:41:4b:67:4d:06:8c:55:7d:50:04:f4:ec:be:8f:7d:
                    c3:6a:41:8e:03:29:30:30:86:4e:d1:21:cc:9f:08:96:
                    71:65:a9:ad:e3:1f:81:0d:a5:28:78:f2:31:4f:11:fa:
                    e0:de:db:83:99:c2:fc:62:a4:21:bd:95:87:77:88:76:
                    f5:b1:09:f1:26:aa:d0:72:b9:48:17:5e:05:4b:c6:97:
                    1b:15:bb:61:f2:e2:ca:8f:7a:22:fa:86:89:e6:39:b6:
                    73:c8:b7:85:75:28:a3:8e:a6:f9:7d:67:67:36:13:52:
                    c5:af:cc:ed:8a:fe:a7:5e:27:e7:8a:49:1d:8f:b1:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:cc:a6:5d:15:41:2a:b9:6b:5c:d4:5a:eb:20:ec:e0:
        b3:02:93:dd:38:1c:16:16:de:40:3d:e5:79:f3:29:b2:
        cb:c8:ab:68:a9:07:7c:90:66:88:72:e1:d1:81:8a:02:
        fb:4b:96:a8:40:55:bf:9c:8e:47:52:90:42:57:d4:4a:
        1e:66:14:f5:16:7a:74:74:fa:ef:93:f5:e1:c3:ec:90:
        7e:48:f1:fd:2a:93:c0:03:b6:62:22:9f:70:3e:2a:4b:
        7f:56:05:60:38:8e:d5:92:cf:41:d5:bc:f1:57:2b:3f:
        18:f0:8c:4f:54:e0:9b:a5:60:9d:11:80:04:cc:9e:78:
        b3:5b:44:5f:7d:01:31:cf:60:0f:4a:4a:66:a5:53:8d:
        23:57:d4:85:67:aa:82:89:2d:2e:d1:64:3b:d4:4b:e4:
        1a:f7:eb:7a:99:39:19:cd:05:4b:76:78:c8:6f:ad:e1:
        f2:be:32:e9:84:9f:18:1a:79:aa:07:75:1f:f4:e6:8c:
        7f:b6:2c:04:8b:d5:a7:52:48:05:f8:20:fd:9f:76:4a:
        74:89:26:03:20:d7:10:8f:be:40:98:57:ee:22:7e:f5:
        41:48:3b:01:a9:78:2d:b5:2c:96:07:77:a6:a3:cb:5d:
        c0:5b:9b:87:a3:07:ff:13:55:b6:3f:b3:ea:70:cc:b5
    Fingerprint (SHA-256):
        8D:37:40:51:DD:6F:87:B0:BB:F1:15:21:FC:18:1F:B7:55:4D:B7:C3:CA:54:0C:D9:3E:DA:7B:06:C6:0B:86:3A
    Fingerprint (SHA1):
        8E:29:06:24:8D:20:77:88:4B:17:F4:2D:5B:8F:9F:F8:89:8D:10:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153348 (0x1dee4084)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:0b:0a:8a:6b:66:5b:58:a4:ef:ed:cf:a4:c6:65:
                    7f:e6:8f:c6:5e:24:6a:77:8c:e2:08:0b:0f:4d:e7:7f:
                    65:3b:ff:a5:e6:82:89:8f:ce:02:62:60:37:8a:9b:1d:
                    a0:87:c4:84:81:f9:18:bc:17:ea:5f:74:d0:74:53:49:
                    5a:93:91:54:74:21:03:9f:69:0f:b3:11:5a:75:a0:a2:
                    e4:73:60:38:f5:6a:47:7f:f3:9f:5c:ec:81:75:94:c3:
                    67:2c:c9:6b:f2:ab:74:92:8d:45:48:11:ee:81:19:b8:
                    e8:51:ae:b5:aa:62:f0:83:1b:48:2a:b0:71:d0:84:91:
                    3a:41:4b:67:4d:06:8c:55:7d:50:04:f4:ec:be:8f:7d:
                    c3:6a:41:8e:03:29:30:30:86:4e:d1:21:cc:9f:08:96:
                    71:65:a9:ad:e3:1f:81:0d:a5:28:78:f2:31:4f:11:fa:
                    e0:de:db:83:99:c2:fc:62:a4:21:bd:95:87:77:88:76:
                    f5:b1:09:f1:26:aa:d0:72:b9:48:17:5e:05:4b:c6:97:
                    1b:15:bb:61:f2:e2:ca:8f:7a:22:fa:86:89:e6:39:b6:
                    73:c8:b7:85:75:28:a3:8e:a6:f9:7d:67:67:36:13:52:
                    c5:af:cc:ed:8a:fe:a7:5e:27:e7:8a:49:1d:8f:b1:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:cc:a6:5d:15:41:2a:b9:6b:5c:d4:5a:eb:20:ec:e0:
        b3:02:93:dd:38:1c:16:16:de:40:3d:e5:79:f3:29:b2:
        cb:c8:ab:68:a9:07:7c:90:66:88:72:e1:d1:81:8a:02:
        fb:4b:96:a8:40:55:bf:9c:8e:47:52:90:42:57:d4:4a:
        1e:66:14:f5:16:7a:74:74:fa:ef:93:f5:e1:c3:ec:90:
        7e:48:f1:fd:2a:93:c0:03:b6:62:22:9f:70:3e:2a:4b:
        7f:56:05:60:38:8e:d5:92:cf:41:d5:bc:f1:57:2b:3f:
        18:f0:8c:4f:54:e0:9b:a5:60:9d:11:80:04:cc:9e:78:
        b3:5b:44:5f:7d:01:31:cf:60:0f:4a:4a:66:a5:53:8d:
        23:57:d4:85:67:aa:82:89:2d:2e:d1:64:3b:d4:4b:e4:
        1a:f7:eb:7a:99:39:19:cd:05:4b:76:78:c8:6f:ad:e1:
        f2:be:32:e9:84:9f:18:1a:79:aa:07:75:1f:f4:e6:8c:
        7f:b6:2c:04:8b:d5:a7:52:48:05:f8:20:fd:9f:76:4a:
        74:89:26:03:20:d7:10:8f:be:40:98:57:ee:22:7e:f5:
        41:48:3b:01:a9:78:2d:b5:2c:96:07:77:a6:a3:cb:5d:
        c0:5b:9b:87:a3:07:ff:13:55:b6:3f:b3:ea:70:cc:b5
    Fingerprint (SHA-256):
        8D:37:40:51:DD:6F:87:B0:BB:F1:15:21:FC:18:1F:B7:55:4D:B7:C3:CA:54:0C:D9:3E:DA:7B:06:C6:0B:86:3A
    Fingerprint (SHA1):
        8E:29:06:24:8D:20:77:88:4B:17:F4:2D:5B:8F:9F:F8:89:8D:10:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3434: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3435: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3436: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3437: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3438: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153347 (0x1dee4083)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:2b:a2:d8:74:36:26:d7:03:60:32:a1:0f:e0:34:9b:
                    e8:7c:ec:fe:9a:21:74:da:d8:1f:7c:16:b1:10:fa:7d:
                    fe:30:27:f9:fc:18:54:1c:f0:a9:82:b5:cb:05:f6:09:
                    c4:4b:ec:f3:af:b6:97:22:9e:e0:b2:8a:1f:0e:fe:c2:
                    3e:e3:f7:17:3f:af:fb:d9:89:b5:43:76:3c:61:b3:4d:
                    d4:91:88:95:0b:3e:7c:cd:93:e3:36:78:38:f0:bc:f9:
                    f9:03:7c:f9:b8:ec:3b:85:94:65:c6:49:5b:a7:c9:6d:
                    41:68:e4:1b:d2:e2:a1:cf:48:31:38:9d:9f:a0:2f:83:
                    54:80:ab:6f:6e:f3:9d:1b:a6:a9:b8:fc:7c:4e:3b:50:
                    18:85:3f:51:2d:13:15:ef:0e:6d:8c:d2:6e:f0:8c:3d:
                    96:67:68:83:cd:c9:8c:68:6c:9b:ed:cb:3d:d2:10:04:
                    19:a4:f9:e0:3c:28:9f:25:14:8b:00:5d:4c:04:e0:98:
                    a8:2b:42:cd:40:50:15:cb:4d:1d:2b:48:4c:b8:7b:27:
                    6a:0c:80:04:8e:da:40:24:98:13:1e:10:87:97:8a:f9:
                    23:91:59:0a:be:d3:d6:c6:72:53:30:84:0a:3b:bb:ce:
                    ea:9c:35:fd:13:82:1f:74:39:4c:30:9e:88:2a:27:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:ef:fd:79:45:2b:1b:e1:66:37:af:72:7b:28:5c:a2:
        b0:5e:ad:d8:d8:48:cc:a8:5c:68:9b:94:fa:4e:47:81:
        77:09:8c:ed:8b:d4:3c:f4:0c:c8:4c:49:48:9d:ad:c4:
        90:6e:d9:e3:2d:d5:59:5e:66:9a:b3:cb:2d:cc:35:7e:
        d7:e6:e3:64:14:90:38:77:51:fb:55:6f:f7:d9:d3:80:
        ac:94:3a:37:5e:95:e3:b1:f2:db:2c:2a:fb:3c:ea:bb:
        ed:ed:bd:80:d4:6a:05:24:8d:39:a3:cd:5d:c0:19:04:
        97:f5:5d:63:dc:ce:92:6c:82:30:1e:f4:df:4d:74:c2:
        d2:5a:60:5f:6d:ea:b5:f1:b9:d0:8f:a0:29:64:90:e0:
        97:89:3c:6e:43:eb:60:14:86:e9:c1:71:53:66:3d:95:
        44:c3:9f:a1:f1:fd:07:a8:71:6e:21:64:83:a3:c6:81:
        18:d2:05:f8:fb:9c:b9:23:6b:78:88:98:90:94:6c:e0:
        d3:f9:a2:27:aa:24:44:5e:77:f5:18:1c:64:ba:cc:14:
        e3:4c:cc:23:c7:32:c7:82:a5:48:d8:7e:1e:f4:ed:ab:
        cc:5a:23:8c:1a:59:ba:07:f5:1f:b5:c9:37:df:35:67:
        7a:07:b2:9d:a9:23:8e:21:6e:11:c3:50:ba:d7:00:8c
    Fingerprint (SHA-256):
        80:36:D0:FE:64:12:3A:B8:6B:70:98:99:2A:6B:AF:E8:E7:5C:5D:7F:36:EC:3D:AF:EB:C0:C0:AE:51:4C:84:F1
    Fingerprint (SHA1):
        D3:24:F2:BC:C9:F7:0F:21:B8:38:CE:FF:36:F2:01:5E:78:A1:2C:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3439: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153347 (0x1dee4083)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:33:46 2017
            Not After : Mon May 02 15:33:46 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:2b:a2:d8:74:36:26:d7:03:60:32:a1:0f:e0:34:9b:
                    e8:7c:ec:fe:9a:21:74:da:d8:1f:7c:16:b1:10:fa:7d:
                    fe:30:27:f9:fc:18:54:1c:f0:a9:82:b5:cb:05:f6:09:
                    c4:4b:ec:f3:af:b6:97:22:9e:e0:b2:8a:1f:0e:fe:c2:
                    3e:e3:f7:17:3f:af:fb:d9:89:b5:43:76:3c:61:b3:4d:
                    d4:91:88:95:0b:3e:7c:cd:93:e3:36:78:38:f0:bc:f9:
                    f9:03:7c:f9:b8:ec:3b:85:94:65:c6:49:5b:a7:c9:6d:
                    41:68:e4:1b:d2:e2:a1:cf:48:31:38:9d:9f:a0:2f:83:
                    54:80:ab:6f:6e:f3:9d:1b:a6:a9:b8:fc:7c:4e:3b:50:
                    18:85:3f:51:2d:13:15:ef:0e:6d:8c:d2:6e:f0:8c:3d:
                    96:67:68:83:cd:c9:8c:68:6c:9b:ed:cb:3d:d2:10:04:
                    19:a4:f9:e0:3c:28:9f:25:14:8b:00:5d:4c:04:e0:98:
                    a8:2b:42:cd:40:50:15:cb:4d:1d:2b:48:4c:b8:7b:27:
                    6a:0c:80:04:8e:da:40:24:98:13:1e:10:87:97:8a:f9:
                    23:91:59:0a:be:d3:d6:c6:72:53:30:84:0a:3b:bb:ce:
                    ea:9c:35:fd:13:82:1f:74:39:4c:30:9e:88:2a:27:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:ef:fd:79:45:2b:1b:e1:66:37:af:72:7b:28:5c:a2:
        b0:5e:ad:d8:d8:48:cc:a8:5c:68:9b:94:fa:4e:47:81:
        77:09:8c:ed:8b:d4:3c:f4:0c:c8:4c:49:48:9d:ad:c4:
        90:6e:d9:e3:2d:d5:59:5e:66:9a:b3:cb:2d:cc:35:7e:
        d7:e6:e3:64:14:90:38:77:51:fb:55:6f:f7:d9:d3:80:
        ac:94:3a:37:5e:95:e3:b1:f2:db:2c:2a:fb:3c:ea:bb:
        ed:ed:bd:80:d4:6a:05:24:8d:39:a3:cd:5d:c0:19:04:
        97:f5:5d:63:dc:ce:92:6c:82:30:1e:f4:df:4d:74:c2:
        d2:5a:60:5f:6d:ea:b5:f1:b9:d0:8f:a0:29:64:90:e0:
        97:89:3c:6e:43:eb:60:14:86:e9:c1:71:53:66:3d:95:
        44:c3:9f:a1:f1:fd:07:a8:71:6e:21:64:83:a3:c6:81:
        18:d2:05:f8:fb:9c:b9:23:6b:78:88:98:90:94:6c:e0:
        d3:f9:a2:27:aa:24:44:5e:77:f5:18:1c:64:ba:cc:14:
        e3:4c:cc:23:c7:32:c7:82:a5:48:d8:7e:1e:f4:ed:ab:
        cc:5a:23:8c:1a:59:ba:07:f5:1f:b5:c9:37:df:35:67:
        7a:07:b2:9d:a9:23:8e:21:6e:11:c3:50:ba:d7:00:8c
    Fingerprint (SHA-256):
        80:36:D0:FE:64:12:3A:B8:6B:70:98:99:2A:6B:AF:E8:E7:5C:5D:7F:36:EC:3D:AF:EB:C0:C0:AE:51:4C:84:F1
    Fingerprint (SHA1):
        D3:24:F2:BC:C9:F7:0F:21:B8:38:CE:FF:36:F2:01:5E:78:A1:2C:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3441: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153352 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3442: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3443: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3444: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153353 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3445: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3446: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3447: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153354 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3448: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3449: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3450: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153355 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3451: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3452: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3453: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153356 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3454: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3455: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3456: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153357 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3457: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3458: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3459: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153358 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3460: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3461: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3462: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153359 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3463: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3464: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3465: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153360 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3466: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3467: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3468: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3469: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153361 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3470: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3471: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153362 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3472: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3473: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153363 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3474: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3475: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3476: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3477: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3478: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153364 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3479: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3480: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153365 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3481: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3482: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153366 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3483: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3484: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3485: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3486: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3487: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153367 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3488: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3489: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153368 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3490: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3491: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153369 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3492: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3493: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3494: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3495: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3496: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153370 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3497: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3498: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153371 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3499: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3500: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153372 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3501: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3502: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3503: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3504: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3505: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153373   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3506: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3507: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3508: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3509: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153374   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3510: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3511: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153352 (0x1dee4088)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:49 2017
            Not After : Mon May 02 15:33:49 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:0f:bc:c7:73:58:d8:b4:00:9e:1b:63:87:53:6f:20:
                    dc:e7:da:f0:61:c9:e8:b4:85:1a:69:cb:01:cb:37:d5:
                    55:46:56:27:e8:48:1c:fb:12:49:2f:46:11:b5:4f:44:
                    bb:3d:a4:bd:e5:b7:ee:57:a7:eb:21:84:c4:e3:dc:26:
                    b8:e5:c9:30:af:f4:29:05:25:c9:1e:a7:bb:ae:7e:2a:
                    73:40:da:cf:fe:79:14:03:2b:04:de:53:87:0c:8b:70:
                    73:b6:92:e6:a4:e8:00:36:bb:2f:22:ac:87:29:38:d8:
                    d7:c4:8d:48:74:5e:c7:04:e3:c4:b9:1b:46:22:94:65:
                    92:ca:97:7e:7f:c7:67:79:9f:b3:78:56:40:c2:18:55:
                    92:30:7a:fe:7a:e2:0c:42:3e:b7:8a:a6:f0:8c:25:7d:
                    c5:a3:2d:61:85:04:76:00:05:0a:75:80:7f:61:ad:98:
                    37:78:35:6e:13:01:a6:77:a2:72:ac:5e:05:06:c8:ab:
                    72:05:17:4b:9b:75:1c:d8:ac:26:fd:9b:8f:5f:9d:ca:
                    55:b2:9f:3c:d5:01:b7:0d:17:9e:69:ea:6e:22:c2:3b:
                    dd:1f:e6:c9:52:cf:1e:2f:65:43:29:c8:c3:5f:eb:f8:
                    2c:71:72:cd:67:bd:35:6e:60:f3:fe:ec:0c:4c:1a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:4f:7a:8f:9e:6c:33:a1:44:b2:91:fa:6e:b3:ac:30:
        40:33:dd:1c:60:4e:b4:00:e1:bc:92:ff:3e:f2:ee:90:
        43:67:b3:99:0a:a9:7a:72:67:2e:2b:9e:0b:73:61:bf:
        b6:d9:0f:b1:d8:14:9b:11:c4:06:c2:3e:44:58:aa:2d:
        a4:44:22:a9:e3:63:aa:1a:51:ef:b7:08:ba:91:72:05:
        26:3b:c1:c5:4b:24:22:6e:f9:04:a8:84:20:5f:d8:eb:
        d9:f7:69:8b:29:dc:11:23:00:c6:bc:40:4f:ff:52:68:
        14:fa:bb:60:c1:6c:e3:ae:1c:04:a6:be:6d:e3:89:64:
        6d:1c:aa:7e:8a:31:e6:99:8c:f1:e0:99:ae:48:84:33:
        30:50:27:77:39:3a:ac:17:00:4f:0d:4e:70:06:39:c8:
        26:86:9c:4b:bd:43:e9:c4:1a:1c:0b:b6:36:b1:de:6b:
        0c:9e:58:0e:c4:64:d4:6a:d7:89:d5:f0:ee:15:5e:7b:
        95:9c:75:ad:3a:30:42:a4:54:b6:21:10:99:11:3f:20:
        e5:01:f7:b4:5b:c5:0c:93:b6:c2:4c:9e:5c:1f:8c:e4:
        63:ff:e9:06:cc:f6:7f:da:60:66:15:c2:e2:c8:4d:b9:
        eb:81:f0:27:fd:62:d8:ab:cb:62:a0:81:fd:7f:02:72
    Fingerprint (SHA-256):
        92:C4:81:80:DC:5E:3E:12:BE:80:4F:81:74:D9:17:75:62:67:20:C8:7A:18:B3:B0:AD:DF:A3:F7:B4:E7:5E:35
    Fingerprint (SHA1):
        33:52:14:EC:31:98:2B:95:23:06:42:46:63:64:75:47:6A:68:BB:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153353 (0x1dee4089)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:33:49 2017
            Not After : Mon May 02 15:33:49 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:12:d8:72:54:0a:11:28:8f:3d:b1:39:30:7f:5c:0f:
                    7b:90:8b:88:4c:6f:5c:4d:7f:f2:31:9a:1c:1d:32:5d:
                    50:b8:52:ae:aa:33:ea:48:5a:29:b1:01:82:23:d4:c2:
                    53:4c:c1:dd:46:5c:4f:cc:bc:e4:a4:3b:19:01:95:68:
                    58:5a:b6:86:ca:de:21:65:2f:13:fa:9d:ac:75:7b:fd:
                    e6:02:45:19:0d:b2:4c:2d:4e:e5:78:91:7f:b3:ca:01:
                    b7:8e:22:80:5c:57:1a:d2:37:c8:ae:70:17:54:88:c7:
                    ea:7f:77:2d:72:61:0b:b5:6e:05:5e:0c:e2:43:70:04:
                    cc:76:a5:eb:ae:3f:25:43:df:af:44:55:3a:cf:35:28:
                    c2:c9:3d:d4:89:11:83:30:02:db:6c:c5:b6:a4:15:fc:
                    40:dd:90:e9:6a:32:db:8d:17:2b:6c:c4:8a:30:19:9e:
                    ce:4f:00:a6:81:79:7b:2c:06:7a:18:46:07:24:6c:77:
                    db:d9:0d:a3:b2:58:87:fe:d9:f3:52:3a:23:f2:ab:be:
                    0e:07:3b:3d:de:1c:59:23:86:e0:21:33:13:61:c2:b2:
                    85:85:a7:e0:d2:3c:be:cd:a4:a9:cc:bf:ae:ef:c0:9a:
                    4f:42:7c:dc:31:61:83:33:2c:76:3e:b7:6f:56:43:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:17:2a:80:d2:22:d2:dd:11:fd:0e:14:0a:b7:d8:42:
        75:52:4f:ce:98:e5:5c:d5:1c:8e:f8:c6:12:f3:20:51:
        40:05:89:d4:e0:95:22:19:22:49:31:42:96:2b:9a:b1:
        ae:eb:7b:90:4c:49:84:23:cb:61:57:24:88:0f:6c:ba:
        8a:24:8b:4c:fa:2b:da:c0:9a:97:d4:ef:ff:a2:62:b6:
        9d:0b:3d:52:12:c2:f8:f3:06:6d:9a:7a:59:b1:8d:d8:
        58:1e:0e:7b:fe:9f:25:0d:96:53:d9:20:30:12:bd:29:
        c6:f5:ec:c4:77:49:92:5f:09:b6:7b:30:cd:95:f3:a8:
        ea:22:3c:19:c2:d6:c6:bd:70:0e:34:4c:83:9e:33:ac:
        d5:33:fe:81:fa:e4:4a:86:ce:e9:59:49:30:e9:20:fc:
        92:e7:22:b5:77:10:dd:d4:0a:e2:cb:fc:01:05:08:d7:
        0e:f6:6c:a6:3b:c3:78:b4:ad:a8:71:58:25:c5:dd:bc:
        bb:c4:1f:05:71:7a:1f:1e:e5:c9:b9:77:d0:7a:1c:38:
        c0:c2:bb:14:65:0d:71:1d:b2:08:01:d9:64:31:af:f5:
        ab:56:74:88:76:ed:ca:29:4b:f0:55:7b:d2:a8:71:49:
        62:2f:ac:45:34:96:c5:dd:39:5d:44:f1:a1:1b:50:92
    Fingerprint (SHA-256):
        46:87:E2:29:68:3C:D2:D3:09:6F:02:C1:EB:1E:5D:B6:AA:64:E9:A4:95:15:C6:F8:09:A8:54:AE:5C:4C:DD:7A
    Fingerprint (SHA1):
        44:9E:02:50:43:0A:6F:41:33:B2:2A:FC:B7:07:D2:EC:71:81:7B:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3513: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153354 (0x1dee408a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:33:49 2017
            Not After : Mon May 02 15:33:49 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:e2:4e:95:23:13:4a:48:5b:d0:e5:cb:f5:83:f9:d0:
                    59:c7:39:e6:bc:43:65:aa:0a:80:95:20:e4:23:28:c7:
                    43:2b:64:b9:1c:82:18:e4:fe:2f:6e:4b:bd:1e:f1:35:
                    3a:24:0a:28:5f:c9:9d:52:c6:5c:8d:8d:29:cf:c8:e5:
                    a0:3c:5c:b5:91:97:63:fd:95:fa:c9:44:23:51:a0:83:
                    1c:af:09:30:4b:b7:2b:09:78:a0:ce:f1:29:b0:3b:c8:
                    6e:c2:26:e2:1f:55:5d:38:7a:82:0d:8d:78:c7:86:5c:
                    b5:d8:fa:e3:9d:33:7c:bd:27:d2:2d:31:4f:10:a3:23:
                    d8:04:8a:a6:64:71:40:64:fc:dc:b0:f4:38:9e:1f:5a:
                    0b:c9:7d:ab:01:a2:18:a5:69:1b:59:0c:23:b9:f7:55:
                    c6:19:cf:7b:fe:9b:1c:55:53:5e:97:ca:fe:0d:57:d3:
                    b0:06:5f:78:58:1b:2e:b2:9e:5f:7f:05:a7:dd:8d:72:
                    0c:c9:28:a5:5f:f8:f4:b7:85:ce:d1:0f:8e:30:72:6f:
                    ae:8c:b2:11:b6:77:d3:fc:00:f5:4d:58:85:ea:24:3f:
                    aa:b3:49:57:69:e7:73:4a:2d:2f:ad:37:45:21:56:d7:
                    ae:93:b1:32:a9:ac:5c:7a:da:56:0d:72:be:5d:23:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:2b:8d:a0:52:e8:e2:35:cb:15:60:b6:4a:d5:76:66:
        be:2d:c2:18:90:1e:9e:d6:14:61:00:9e:6a:05:87:e5:
        32:4a:3b:a5:88:9a:b0:61:88:07:af:f3:61:be:f1:2b:
        1a:c7:1c:81:0c:55:64:dc:36:50:a8:2a:44:05:b7:d0:
        9a:f8:02:17:f0:b2:f2:90:88:5a:f8:cb:df:18:14:fd:
        93:94:14:37:68:79:32:c5:38:f6:12:9b:c4:2f:f0:ab:
        cf:5c:16:29:fa:a7:87:8a:0e:51:41:d0:6e:0d:f2:0d:
        a8:84:4c:ce:2e:85:7f:5c:97:36:0b:e6:07:9d:9a:e4:
        c0:ee:75:a9:cd:e5:52:55:33:0e:53:ce:e7:22:24:05:
        ff:cf:af:0a:9b:eb:fd:ab:c6:ea:50:28:05:c6:c2:9d:
        91:52:bc:75:e3:38:c2:8f:0b:d2:dd:e2:d6:6d:e5:e5:
        4b:6c:77:0c:ef:22:73:df:05:ee:f2:83:08:21:54:69:
        da:ec:2a:8d:bc:2f:9c:39:87:42:b2:fb:87:3a:a2:ae:
        43:c1:60:0f:b8:91:74:21:32:51:2a:c1:e8:da:10:f4:
        32:d7:58:4a:24:e5:f8:de:76:1c:b8:d1:78:1e:fa:b0:
        04:35:74:a8:36:ce:05:39:a2:70:c6:b0:2e:a2:0e:ab
    Fingerprint (SHA-256):
        A3:B7:CF:1B:BB:92:1C:B3:85:D6:E8:FD:F7:A2:D6:A1:36:3C:C4:7D:3A:A5:1D:04:8A:C5:E4:37:6C:8D:0A:77
    Fingerprint (SHA1):
        5C:9A:42:37:2A:2C:10:AD:A0:68:09:2A:CA:FF:A1:08:C5:63:4D:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3514: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153355 (0x1dee408b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:33:50 2017
            Not After : Mon May 02 15:33:50 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:2f:8a:6d:e0:51:fd:7f:f5:29:ee:d8:7f:65:ca:54:
                    68:48:44:c2:2d:ac:e8:40:ed:1d:cc:63:86:b2:52:85:
                    6d:90:e2:82:18:93:19:74:55:52:6d:1e:43:0d:b8:f1:
                    47:3c:7f:52:12:74:5f:64:81:80:6a:e8:ff:1a:f1:19:
                    4f:f1:ed:7a:1e:1c:3b:a5:2b:fb:22:db:9f:2a:b6:d4:
                    e4:c6:3b:ee:c6:34:39:bf:b9:f9:25:89:42:c0:ca:17:
                    63:fb:d0:04:f5:52:fa:cb:22:19:d7:88:0a:12:63:1e:
                    a7:2f:38:59:5c:c1:d0:94:89:1e:d7:41:83:ee:30:09:
                    a8:6e:2b:ae:b8:6e:02:a5:d8:82:51:84:60:58:51:93:
                    84:4a:25:3b:50:3f:c9:28:4d:ec:9a:ce:52:d8:3c:a6:
                    e4:25:1f:7c:ce:b7:1f:75:a3:ff:12:5b:8d:c8:8b:8a:
                    c3:2c:c0:c0:51:61:a2:ba:af:87:37:ad:e5:2d:ab:a8:
                    c3:2e:0f:46:fe:66:a3:8e:e9:9c:f5:ca:54:c6:8f:1f:
                    aa:fd:d1:dd:6e:ab:fd:b4:5a:9b:f1:c9:91:5b:b6:9d:
                    d6:20:02:62:33:f6:48:a0:73:cb:66:2e:63:f9:bc:11:
                    c3:b0:af:b3:63:c8:d8:30:40:20:c9:58:23:21:0e:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8a:85:a1:95:1d:5c:1f:07:96:41:9d:cc:42:62:38:
        d4:c6:c4:04:8c:63:98:0c:2e:fb:b4:33:07:6a:fc:64:
        27:d4:4c:8c:30:9c:77:ac:a9:d8:1e:b5:87:d7:ef:37:
        a9:ba:54:a6:5c:be:0e:93:a1:b6:4d:c3:36:79:86:69:
        c6:2c:46:38:ba:d4:3a:06:72:79:57:ad:03:39:80:25:
        af:8f:f7:cf:75:08:37:b3:72:71:d8:c8:19:7f:11:dd:
        53:c2:03:a6:15:41:a9:64:e4:02:4c:4a:11:39:6c:d4:
        42:7b:c5:3c:b2:4c:cd:2d:44:96:62:98:0f:f0:88:1a:
        d2:1b:6f:42:e4:82:f5:67:0d:7c:da:a9:b2:1c:02:8b:
        f4:c4:b2:84:60:c8:d3:f0:a1:a7:ad:9d:9f:d7:fc:1c:
        3f:7f:38:34:8d:59:a4:be:bf:6a:86:4a:7f:12:c3:b7:
        b0:b0:65:8b:6a:af:fe:6a:78:97:93:cf:cd:80:6d:db:
        63:a9:ae:2a:19:8b:ba:12:00:b0:f9:c8:df:f9:ac:ec:
        cb:bb:ad:c0:34:35:eb:ea:2b:fc:70:c6:b7:78:e8:b6:
        85:d9:fe:bb:3b:13:d0:ee:1b:60:1b:39:d0:5e:a6:08:
        37:37:90:b2:b1:da:87:21:d4:0a:37:f1:ba:a7:b2:19
    Fingerprint (SHA-256):
        96:21:53:30:19:BF:9B:48:FD:73:35:2D:1C:72:EF:6D:23:18:5C:0B:82:25:6B:E1:43:89:84:FE:20:5B:3D:15
    Fingerprint (SHA1):
        19:17:73:EE:9C:D4:D7:48:6E:B3:F4:62:12:D2:73:59:9D:AF:F4:2E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3515: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153356 (0x1dee408c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:33:50 2017
            Not After : Mon May 02 15:33:50 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:87:3d:a7:3d:42:36:a8:9f:b6:2a:e8:f0:1c:60:51:
                    76:8d:eb:c8:57:5d:e8:bc:cb:62:ab:17:fb:b7:2f:57:
                    a5:ec:58:33:be:54:13:f2:3e:3f:88:1d:c2:54:b1:4a:
                    6d:79:a7:9e:8e:2c:74:8c:3c:90:ad:ba:ed:4a:e9:88:
                    81:c5:6c:87:35:1e:e5:e4:73:23:81:65:3b:25:05:28:
                    75:2d:19:96:38:c1:39:82:58:06:85:bf:fb:24:e6:78:
                    d4:15:0a:da:e4:e7:f0:7e:26:95:eb:36:27:90:93:2d:
                    96:33:75:5a:aa:2e:cc:3b:8d:41:b8:d0:d3:8f:28:c7:
                    55:5f:17:bf:e2:47:d8:3f:8e:08:79:b4:23:5d:3b:15:
                    92:83:64:ed:c2:ff:c1:c3:04:0f:7f:2d:82:22:2b:ee:
                    60:4f:68:9b:92:82:f2:45:1b:c5:fd:77:a9:99:c2:aa:
                    f0:3a:05:23:04:06:e0:43:d3:5d:5b:02:51:2f:eb:68:
                    aa:9a:14:bc:1e:23:44:3c:96:36:ca:15:2b:b1:3a:a7:
                    76:e6:c3:97:31:97:a9:64:e9:b5:e9:ff:c2:d3:00:32:
                    c8:2b:57:34:78:d1:4a:e8:7c:b6:f7:6b:78:6c:96:0a:
                    00:56:0a:74:88:9f:00:28:17:91:cc:e5:c5:3e:c0:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:4a:b6:0a:73:81:fb:bc:9b:67:a0:5d:3d:2c:9f:17:
        2d:4f:13:d9:af:9d:62:14:a7:6d:21:7e:4e:d7:c4:35:
        8c:f9:ab:23:7c:fe:8d:11:38:d5:9b:71:8e:4c:6f:8c:
        68:c9:b1:0f:5e:1d:34:d1:62:d2:12:b2:db:ab:10:5a:
        a9:d5:78:f6:17:d0:72:2a:60:00:86:67:7b:a2:76:89:
        d8:76:ba:d3:f6:25:da:36:05:d1:f3:e3:8d:e0:ba:44:
        84:96:c6:f6:e2:cd:b9:8c:7a:3b:b0:6d:75:a8:c7:2f:
        a1:55:68:85:1d:55:96:07:9f:89:ac:cf:e4:0d:2c:41:
        2c:46:65:7f:5d:69:9f:19:65:54:5d:c9:9d:ad:8b:54:
        de:6c:d5:c5:11:53:dd:1d:3d:0d:24:fb:1c:bc:3c:af:
        66:37:bf:3e:8e:e7:17:dd:20:2e:f6:f3:b6:fa:c2:04:
        75:9d:7d:b1:7a:24:ba:38:5d:a9:02:0b:c3:a3:a3:3e:
        08:bc:5c:27:b7:da:08:d1:dc:82:db:8b:90:ca:12:c9:
        13:80:a4:61:77:f7:50:ba:b4:ff:d8:20:e9:77:42:d3:
        14:df:28:8f:0f:fa:a6:10:c1:75:71:17:e1:e6:28:cc:
        25:f3:05:7b:23:c5:1d:e2:2a:8b:5b:23:3b:5c:f6:a9
    Fingerprint (SHA-256):
        41:62:D2:9A:20:0F:29:F5:25:C2:63:38:0F:A8:6F:94:88:31:4F:B6:43:5D:F6:F8:47:12:6F:47:45:B5:81:BF
    Fingerprint (SHA1):
        2C:34:38:DB:02:E6:8B:F6:8A:8B:6F:3B:A5:1C:13:C5:D0:AA:74:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3516: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153357 (0x1dee408d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:33:50 2017
            Not After : Mon May 02 15:33:50 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:ee:d7:48:0f:79:44:f5:7d:67:a0:05:ef:7f:68:
                    5a:2c:44:aa:0c:8f:3d:0a:30:30:3d:00:08:df:ba:3f:
                    b2:46:2f:96:f6:37:f2:9c:1d:83:97:62:5e:15:de:0b:
                    e0:d2:23:64:a3:05:2c:16:10:13:4b:6a:0e:72:23:3f:
                    89:61:61:6f:59:06:e9:e2:cd:b9:38:01:b9:15:52:7a:
                    03:8e:d0:41:2d:45:a8:91:06:97:da:c4:d6:b4:17:13:
                    41:09:45:8e:77:c6:70:eb:c0:e9:19:4c:f5:5e:2e:82:
                    36:77:a7:92:87:ed:08:ff:25:ea:e5:2a:15:1a:e7:5a:
                    02:ec:10:ab:8d:3e:08:d5:96:39:58:6e:be:50:8c:f5:
                    65:12:5f:55:e2:f2:be:d1:62:d3:26:62:5c:58:42:0f:
                    17:23:73:64:69:7e:cf:b9:a9:bb:3f:0e:a7:04:e9:e9:
                    7a:5b:37:a7:dd:6a:a4:47:d2:3c:9d:5c:07:9d:49:0a:
                    3e:05:2d:7d:b7:03:91:b5:f1:e5:75:a0:1a:b8:79:b9:
                    c1:82:3c:ce:8f:25:72:9f:ab:59:ff:3c:03:bd:fb:25:
                    21:20:d9:65:ab:c5:e3:d9:68:cb:b3:43:60:88:f0:27:
                    57:c9:3b:f4:3c:3c:be:59:37:d0:61:45:5a:e3:4d:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:4f:1e:33:03:81:02:6e:23:2e:6e:23:a0:3d:eb:b2:
        97:d7:fc:03:91:c9:29:2a:98:c6:f5:c4:0f:d5:61:f1:
        45:82:24:a3:4f:e4:26:73:e2:ae:6f:39:56:4c:65:b5:
        2b:0d:ea:33:77:1e:a1:b3:e4:66:a7:47:7a:05:7a:55:
        f4:49:60:57:f9:d1:ce:a5:57:34:2b:a9:13:c9:2f:9e:
        8c:32:f7:36:d0:43:34:4b:7d:e5:c7:58:1a:d5:fa:e4:
        36:f1:00:5f:cb:52:f3:97:4d:35:e0:44:51:b8:c1:c5:
        a2:2f:03:c0:38:d1:69:59:2f:af:06:2b:59:7f:f9:07:
        14:40:51:37:04:40:b7:cf:c9:22:22:95:a0:10:13:89:
        bc:42:6a:86:fe:d2:5f:87:36:7f:f2:81:35:b0:ff:cb:
        86:1f:61:a6:fe:18:35:4c:13:e0:80:6e:3a:fb:a1:01:
        b6:f3:d7:89:88:52:34:db:e2:b4:4a:ce:09:f6:ad:3b:
        7d:4b:57:f8:56:f7:7a:8e:32:bd:1f:79:7f:a3:0c:39:
        d4:ef:59:b1:ca:bd:22:e7:87:bf:c5:6e:0f:23:f2:ba:
        73:6c:4d:2b:38:cc:9d:c0:da:e0:03:57:7a:47:7f:7f:
        3b:d0:17:5e:e0:47:fa:d4:5a:99:ad:fb:7c:60:78:d1
    Fingerprint (SHA-256):
        01:71:AA:5A:0E:81:CF:5F:8E:F6:B0:4E:ED:2F:7C:0D:43:4D:AE:DB:67:4C:1B:A1:D7:61:8C:50:A7:97:86:10
    Fingerprint (SHA1):
        19:8B:F3:44:78:BA:EB:FB:45:84:B4:9D:99:B6:C3:00:5F:A4:6F:47
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3517: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153358 (0x1dee408e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:33:51 2017
            Not After : Mon May 02 15:33:51 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f7:ab:5a:60:1b:36:1d:a5:1c:42:2f:dd:90:bc:6c:
                    62:df:b0:77:87:30:ef:08:d3:e5:2f:a4:d2:a7:95:26:
                    1c:21:dc:50:c6:2c:e9:96:4b:e7:d4:09:c5:4a:62:b9:
                    c8:e0:dc:f2:ff:56:1c:b9:8d:08:5a:7c:c4:5d:a4:1b:
                    04:51:56:3e:cb:8d:aa:ef:81:a9:2c:3a:a7:71:18:fc:
                    ad:7e:8f:e0:2f:26:f7:4a:ea:df:69:71:00:c1:36:3e:
                    3e:e3:2f:17:d2:b5:71:02:69:1b:ef:4c:22:8e:fb:b1:
                    5f:04:79:0f:ce:15:90:b0:08:1a:b4:08:51:04:b4:80:
                    1f:db:a1:4d:1a:29:97:51:dd:08:58:00:ba:0e:4c:da:
                    30:35:2b:4a:f1:6a:af:ad:60:3b:a8:58:76:77:11:80:
                    b4:ad:b0:07:a0:c7:9e:08:11:f5:34:5d:1c:16:29:7c:
                    d9:53:35:1f:62:cd:a8:e3:37:ac:b8:9b:37:2b:7a:de:
                    45:e0:87:61:04:c8:4a:55:ef:22:65:f7:de:31:a3:42:
                    49:93:21:b8:4b:5f:90:1a:fa:ac:0b:26:fa:ec:f0:46:
                    bb:ed:9f:70:32:22:24:eb:fa:31:c8:34:a7:89:85:99:
                    11:83:6a:f2:00:a2:9b:47:a6:27:a7:cd:95:cc:30:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:35:08:d1:e0:b4:5c:d2:67:1e:a0:0f:e0:5e:41:ae:
        31:9a:c1:c4:b3:e7:88:bd:97:37:c1:ee:c4:63:a5:40:
        4b:2f:c3:b6:6d:8f:3b:9c:53:98:5e:ac:d6:25:68:79:
        e7:07:cf:ac:6b:4d:c5:59:59:99:7e:a3:5b:45:ed:e8:
        6d:97:a8:40:0e:cd:c5:5c:99:c5:71:94:ee:eb:bd:6e:
        a6:e9:c7:4d:31:a5:aa:5c:cf:ce:42:91:55:15:42:be:
        0d:ce:73:ba:e0:78:88:da:2f:d2:42:ae:3d:54:c2:52:
        64:9e:38:76:00:fd:ca:9d:04:b9:44:63:fa:a5:30:ed:
        33:53:c8:cf:b5:b0:9b:43:8c:d5:04:99:1e:2c:93:45:
        1e:a0:69:bf:5a:ae:53:05:c4:11:97:b8:4b:9f:59:17:
        46:4a:84:4a:80:fc:51:a1:35:83:9c:32:c2:71:a2:7c:
        cf:c1:44:bd:6e:b0:c8:f5:8e:49:36:b3:b4:59:89:4b:
        f6:75:bf:0f:85:f7:c5:5a:20:18:64:7d:bf:c8:52:e8:
        d2:57:f5:5d:bf:9d:d3:d3:43:21:ed:8b:cf:e3:18:e8:
        f2:dd:82:9c:15:be:ce:5b:ee:03:9c:b8:e7:19:bf:66:
        1b:79:c4:89:72:69:a4:74:42:4b:81:39:1f:b9:20:2f
    Fingerprint (SHA-256):
        02:8E:F0:BC:26:90:36:95:71:D1:1D:5E:E6:74:9A:36:30:C8:4E:2A:9B:80:B4:90:C8:A4:D3:EC:4F:FD:6D:3C
    Fingerprint (SHA1):
        C7:40:E9:C3:E3:3E:F2:CC:C8:2E:37:B9:0D:02:1F:03:6A:84:02:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3518: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153359 (0x1dee408f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:33:51 2017
            Not After : Mon May 02 15:33:51 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:84:2c:ac:8a:9c:34:70:f2:51:d5:8e:bb:b3:95:f1:
                    f0:7f:21:4d:0f:a6:4b:59:ab:ec:6d:3b:6b:d2:2e:05:
                    1b:40:0f:5f:57:bc:30:e5:f4:6a:82:ef:9e:66:dd:4e:
                    bd:4d:bd:0e:af:24:4c:82:de:c6:4d:20:e3:2b:6b:d6:
                    9e:75:a7:9d:75:8a:62:96:ef:d4:39:3f:fe:f7:57:4f:
                    dd:58:c3:91:d1:70:06:9b:1b:a9:b9:f9:13:b5:3d:f7:
                    ba:d4:4e:52:0a:a9:2d:17:ba:d4:e1:28:de:3b:fb:f0:
                    45:f6:84:b4:ee:bb:45:38:2b:24:75:58:cd:4f:0e:a9:
                    e0:4e:62:15:7a:fe:e3:99:35:ab:7d:41:37:2d:f9:4e:
                    66:5b:3f:75:02:c5:5d:1a:10:57:09:ab:cd:b9:16:9e:
                    97:31:ce:4b:bf:2f:ee:23:f2:a2:c5:e8:94:65:0c:f0:
                    4a:14:20:fc:1b:3c:66:9e:d1:49:77:92:44:99:a8:23:
                    bc:d6:e5:46:f8:36:3c:f0:af:5c:ab:9f:75:31:92:ae:
                    95:14:7c:eb:33:46:fa:be:bf:df:a7:aa:2f:d3:f5:c3:
                    c4:64:96:f8:e3:a3:40:41:a9:7b:37:21:42:c1:49:bd:
                    1f:46:3c:05:e7:c1:60:59:33:02:c2:be:f4:43:9d:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:77:1a:db:5a:e3:bd:49:65:ef:ec:28:7c:76:52:ae:
        a0:4d:e3:2f:44:f5:a8:23:52:ab:58:c6:34:23:cd:61:
        ca:d1:e6:8f:36:75:17:39:86:1d:01:93:f2:34:1c:b8:
        36:d1:0a:27:39:04:ce:49:14:97:2e:3a:80:87:22:37:
        8a:d5:48:bb:ba:26:8c:56:04:a7:80:5c:04:6c:46:15:
        e7:4e:fd:6b:bb:88:02:20:31:06:8a:88:ec:67:54:70:
        00:ee:8e:b8:a6:f3:0e:38:94:6d:b8:f6:cb:c5:5a:2a:
        10:c3:05:6c:59:d8:a9:a1:29:02:ef:3c:f8:97:a9:d1:
        92:a0:39:77:89:cd:32:f8:0d:8e:e1:48:8a:48:06:2a:
        31:7e:0d:d5:90:e0:65:5f:be:e5:8c:ba:4b:94:a7:48:
        81:0a:a4:d2:f1:18:0f:ea:8e:01:18:40:4a:ba:d4:0b:
        91:3b:b7:96:ad:2c:ec:42:14:3d:e5:15:16:b4:4b:85:
        d8:a8:be:f3:f6:02:44:34:00:fa:18:1d:23:0b:03:2d:
        5c:b0:3b:a8:e8:96:9a:a1:83:b1:c2:80:df:18:9b:f1:
        2f:4c:cc:39:b1:ab:b7:48:f2:b9:51:3d:b1:7c:02:c8:
        ed:a9:39:24:47:f0:70:71:d2:8a:f4:6f:82:cc:8f:b2
    Fingerprint (SHA-256):
        E3:32:C4:A8:21:DE:FC:6A:38:28:6A:23:9C:F6:D3:DE:19:FC:4D:1A:CF:E1:52:8A:B5:B1:2D:5B:B6:1E:F1:BC
    Fingerprint (SHA1):
        68:3E:B2:43:C2:5D:2D:9A:08:C4:7D:3E:3A:D3:D1:93:1A:7A:C0:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3519: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153360 (0x1dee4090)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:33:52 2017
            Not After : Mon May 02 15:33:52 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:de:4a:3f:3c:fb:1a:3d:72:c7:3f:d0:95:ba:0e:03:
                    c1:b0:bb:96:bc:68:82:89:92:48:8f:a2:c4:cd:84:39:
                    e0:eb:a6:fd:f9:c9:6a:81:1e:d4:06:db:00:9e:a7:55:
                    2a:32:3c:a3:70:f4:fa:a7:02:96:18:39:01:61:1b:89:
                    be:f8:0f:e0:1f:67:aa:82:4e:ce:52:11:17:8c:76:37:
                    cf:6e:a9:3e:7e:8c:44:08:3d:c9:b7:d6:30:0d:b4:65:
                    3a:f8:a7:63:ac:6d:62:5c:f9:28:0a:60:6f:9b:b3:4a:
                    0e:63:15:dc:d6:de:69:c0:42:1d:b8:67:8a:bc:75:99:
                    54:3a:12:f2:c9:3a:12:ee:10:ac:1e:be:16:a8:92:66:
                    23:2f:ee:71:61:5a:47:dd:f5:b7:c4:0f:55:62:21:30:
                    00:3e:6c:4c:51:ea:18:a6:2a:f3:6b:7f:a9:9d:6b:32:
                    b2:6b:3c:99:de:bd:85:05:ae:12:f7:60:d1:4f:2d:47:
                    76:67:05:5c:9c:7a:df:d3:ea:8c:33:d4:a3:38:7a:7f:
                    94:a2:65:46:e6:60:c7:2e:1c:08:97:f2:07:60:60:6b:
                    0d:4a:5b:c9:7d:03:f9:af:72:4b:be:06:6a:eb:3a:6a:
                    a6:ab:a0:89:97:13:b1:b9:9d:eb:b2:c9:ad:d3:f8:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:35:ba:8f:b3:a1:e0:45:0b:2b:a3:3e:a3:fc:fd:e3:
        96:60:29:6e:4f:13:e1:40:ab:aa:79:63:ab:d4:ae:38:
        aa:c1:b6:f8:82:ad:86:b8:4a:4a:1f:6b:86:75:63:d1:
        d1:b9:a3:1e:05:66:dd:6e:9e:6f:0c:6c:b0:47:97:ae:
        96:4d:bb:f7:40:27:d2:18:b8:99:9c:50:82:ef:1a:01:
        fd:34:ea:26:ec:dd:cc:7a:e5:59:58:ae:15:2b:3c:4a:
        84:57:f6:b4:40:0b:60:0a:84:ad:75:a8:16:62:06:ec:
        b5:d8:f7:96:e9:24:d4:52:71:ed:11:eb:2d:3c:00:98:
        83:14:85:f8:5e:f2:56:ad:07:b0:37:bc:89:12:e2:45:
        07:97:02:21:b6:24:3a:5d:25:65:ff:fc:98:59:17:0d:
        78:54:bb:12:e2:74:42:5f:8f:40:b4:fc:74:c8:0e:61:
        a8:ee:d6:5b:8d:7b:4d:9e:3a:42:87:b3:86:5d:90:c4:
        de:a1:16:3f:c4:04:76:f1:41:52:f7:00:9d:ef:48:63:
        29:29:0f:e0:84:ef:84:02:7e:2a:a1:72:e4:6b:1f:f7:
        7a:7d:3d:7c:e8:a3:2c:79:e5:1e:1f:a0:b5:56:82:13:
        20:2b:c3:07:20:c7:6f:bf:b9:28:da:50:39:08:06:f5
    Fingerprint (SHA-256):
        52:23:0D:66:AB:61:FB:7C:2E:C3:2C:46:73:C1:CC:32:33:1B:31:6F:97:09:49:FE:BB:A1:40:F0:A1:E3:81:90
    Fingerprint (SHA1):
        6C:1A:D0:12:73:F4:FD:85:AE:E0:B5:C3:20:3E:BD:D2:45:E9:B1:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3520: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3521: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153375 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3522: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3523: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3524: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3525: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153376   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3526: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3527: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3528: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3529: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153377   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3530: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3531: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3532: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3533: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153378   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3534: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3535: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3536: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153375 (0x1dee409f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:0c:46:50:91:a0:96:ab:4b:c5:39:af:98:1a:46:d2:
                    02:65:51:65:48:d0:68:3b:f5:b2:3c:1e:7b:70:e2:7c:
                    ca:06:46:3f:e1:eb:43:06:32:f8:ed:96:12:81:b2:84:
                    be:89:85:3a:5a:ce:9c:d7:8c:84:1f:09:34:33:d3:7f:
                    04:9b:eb:1f:fe:28:9a:00:67:44:3c:a0:3a:d4:2b:4d:
                    94:9c:42:aa:c0:3d:fc:81:28:78:79:b6:53:92:c1:2b:
                    bf:73:bb:0c:fd:1f:8a:db:f2:c2:30:30:de:a9:0f:9e:
                    2d:9d:8f:89:43:cb:a5:80:8f:ee:22:79:1d:27:5e:53:
                    7e:e4:80:b9:ff:4e:e2:2c:cf:08:5f:20:e8:ba:a8:ec:
                    de:bf:64:31:1f:eb:6c:4c:c6:94:af:21:2a:2a:45:d5:
                    7e:ce:fb:e1:15:fd:8e:77:c6:85:f7:fc:6f:ef:44:a2:
                    c6:9d:f7:c3:fd:48:97:0a:41:7d:fc:72:19:53:77:ad:
                    f2:90:64:c8:61:79:7b:d9:7a:18:5e:03:03:f1:d3:94:
                    54:46:6c:21:07:1a:7f:c5:12:df:83:66:36:ac:c7:a7:
                    b6:40:78:df:4a:50:cc:81:ef:d2:99:1f:64:6f:1c:92:
                    f6:36:b1:65:80:0f:f8:4f:c2:5f:60:2e:45:dd:90:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:68:22:45:53:7d:db:f9:f2:31:d8:8a:3f:56:1f:3f:
        96:44:09:94:36:5b:28:e1:45:9f:3b:a9:c0:1e:88:be:
        73:34:b3:5f:71:75:ac:a2:33:05:c0:8b:3c:bf:b6:e0:
        24:50:f3:2d:31:3a:a2:46:10:41:95:0a:32:2b:30:7d:
        84:13:c3:47:ec:3f:ee:ff:2a:1f:21:7c:34:56:ba:7a:
        58:fb:68:21:14:f5:46:4a:c4:ce:05:51:5c:94:d4:bc:
        bd:7f:06:2b:74:72:24:94:a4:58:d3:d5:32:cc:0b:2e:
        bd:a1:3b:d6:05:ae:f6:bf:19:ce:ee:3f:68:c7:2e:bf:
        1f:b0:31:25:4b:5b:c9:ad:a4:2b:ec:48:f2:c3:b1:ba:
        79:73:45:f2:d5:e7:48:df:20:7e:e3:27:c7:9d:f8:08:
        07:29:95:53:38:68:a4:1d:39:74:c2:27:99:75:c9:ed:
        cd:0a:c1:66:31:d9:d4:fb:5b:ec:e1:bb:7a:3b:71:1d:
        ba:3b:dc:f2:4a:5c:bc:cd:0d:be:d5:0b:85:70:47:68:
        5a:70:61:52:b3:4b:8f:d6:b1:f4:d3:a0:d2:86:ab:07:
        47:9d:1a:d6:8d:36:e4:27:f4:07:12:04:bd:42:06:98:
        9d:a1:15:df:e7:46:75:b4:32:e6:d2:e2:ba:a7:d6:ad
    Fingerprint (SHA-256):
        75:D4:7D:78:56:C0:89:6B:71:25:09:21:10:AA:3F:A8:5F:F9:89:07:39:B0:32:34:66:5E:B1:1E:B0:26:4A:E5
    Fingerprint (SHA1):
        55:18:5D:C7:17:93:A6:7D:71:42:3D:41:DF:75:65:90:92:E0:E6:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3537: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3538: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153376 (0x1dee40a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:57 2017
            Not After : Mon May 02 15:33:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:5e:09:8b:00:ee:18:70:6a:57:30:90:8c:f7:2e:5c:
                    cd:15:38:1b:ba:b0:90:79:58:09:1e:3a:d8:2b:35:93:
                    1b:85:54:e0:3e:1c:78:c6:08:a7:86:9e:31:2c:93:bd:
                    9b:ac:d7:12:3c:d0:10:4d:3b:43:97:03:cb:40:24:c7:
                    43:55:bd:26:fe:97:e8:2c:51:11:86:e9:e5:ac:1e:8c:
                    7a:bb:cb:ac:67:83:20:89:7c:b4:98:a9:4b:da:d1:16:
                    5b:c6:fb:21:f7:34:ca:93:92:3a:c5:28:4b:94:89:59:
                    dd:25:03:3f:7c:2e:d8:cd:c7:f7:9d:17:da:a2:8a:bd:
                    c9:6b:0b:b0:58:95:d0:de:f2:e1:58:20:9c:63:7a:43:
                    6e:83:6b:e9:e4:df:f2:79:ef:4a:7d:8e:c9:09:b7:78:
                    06:0d:5a:de:99:5c:e8:ba:42:cb:a3:bf:85:95:d3:21:
                    97:0d:d9:4a:6f:dd:9a:74:c0:b7:20:57:2e:4b:35:0f:
                    db:50:e0:57:29:87:a6:4a:c3:c1:18:d5:0a:d6:c0:15:
                    cc:1a:51:58:91:ff:ff:a8:ac:9e:13:69:8d:25:21:7b:
                    39:8f:cc:f2:c0:0c:0e:4e:f4:f3:9e:52:2b:9a:c4:77:
                    e8:c8:2d:44:c7:61:ce:2c:35:68:7a:ea:30:03:d1:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:5f:ce:17:ed:4d:f9:39:29:cc:2e:80:c3:ee:38:60:
        df:1e:d8:57:1e:29:aa:df:8f:09:ad:6b:01:aa:76:0b:
        9f:ce:44:5d:8e:cc:6b:18:9e:99:d3:71:dc:48:5f:d8:
        f8:39:d2:54:ff:f5:3a:75:df:36:da:e9:01:2c:80:ad:
        ee:6f:0d:c9:7c:20:90:18:83:b9:37:56:b0:3c:03:59:
        0f:47:bb:63:ec:92:30:22:4d:2e:37:35:0d:ff:45:70:
        76:fe:70:34:39:58:b2:c2:93:8d:e8:16:6b:62:7e:9d:
        03:24:e8:32:69:cd:86:d1:e5:50:18:1c:00:a1:38:14:
        31:1e:e5:1e:c9:6b:ef:2c:97:c7:69:8a:ad:a3:81:a4:
        41:59:60:13:e5:ca:a7:e3:c3:49:04:71:89:05:3a:f5:
        12:c1:d7:fe:9b:c4:34:fd:c5:ea:02:61:c2:c7:a5:1a:
        b5:7e:81:09:dd:a3:5a:fe:cf:51:44:c3:68:37:9b:fc:
        44:51:32:ea:99:4b:44:c6:49:f1:2e:cd:85:53:4f:c5:
        f0:34:17:5b:46:b0:34:6c:80:6d:66:32:a7:f6:d5:b3:
        6e:c3:63:aa:36:41:2a:0a:7e:ee:89:16:41:cb:13:95:
        0a:73:cd:da:0a:e2:25:b4:9f:66:bb:ad:38:72:05:21
    Fingerprint (SHA-256):
        97:28:A7:50:0D:69:30:BD:20:DA:E5:6B:01:DC:AF:D5:D6:84:7A:2C:78:D5:AF:87:AC:30:C6:D7:7F:15:37:24
    Fingerprint (SHA1):
        3F:E3:61:9A:61:0B:2B:D1:45:BC:8A:A7:CF:D7:FD:B6:BD:E4:F6:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3539: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3540: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:57 2017
            Not After : Mon May 02 15:33:57 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:61:c7:9f:f7:52:f0:8b:82:7c:b6:0a:1d:dc:45:78:
                    6f:93:7a:ec:ff:1c:29:3e:20:1b:42:51:aa:a5:33:c9:
                    0e:ba:ba:76:8d:11:22:b2:b2:10:4b:02:2e:b9:ae:d3:
                    46:8f:97:71:58:2b:41:dc:4d:fb:0e:91:a1:c1:8e:b9:
                    c2:e8:f0:83:3d:13:ea:ba:fd:6d:ce:dd:3c:e1:c7:94:
                    17:cd:77:60:4c:77:3a:7b:84:a2:d2:80:42:fb:53:f9:
                    3a:45:32:e1:b0:b8:8c:16:56:1e:e7:38:8d:ae:6b:28:
                    a8:84:02:ad:4d:6a:fd:a8:9f:4a:90:85:ac:6e:40:c7:
                    88:9d:3e:dc:10:bf:fd:fd:4d:52:ba:c1:a6:d2:83:d7:
                    75:59:98:70:b0:d3:4a:f8:f2:bc:7e:1e:ae:78:ad:a9:
                    db:c6:aa:5b:ff:3a:75:29:b1:34:42:32:b6:c4:13:87:
                    58:d1:3d:23:60:43:fe:7d:99:5a:20:9f:61:00:8f:03:
                    b8:d3:8e:93:a2:ca:ff:85:17:ed:b4:dd:15:44:6c:25:
                    41:e4:09:20:04:85:76:5c:4b:46:30:63:e6:1a:61:04:
                    54:1f:dc:b7:0e:53:7c:d3:89:bd:47:4f:6b:a5:e2:0e:
                    b7:46:1d:b6:1d:82:8e:a1:6b:f0:10:2a:b6:cc:fb:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ab:7a:ba:17:f0:8a:ce:37:26:78:64:e8:5c:c9:77:
        64:d9:29:08:e3:03:c0:33:a8:ad:ff:f4:f3:08:d3:1e:
        e6:f6:e9:d9:df:16:83:46:ea:28:a1:e6:7f:f6:16:47:
        f4:0f:b0:80:35:7f:29:59:f1:ea:2c:d6:ca:b5:76:ce:
        d1:2f:e4:de:5a:b5:5c:7f:1f:9c:82:a2:f7:df:84:7b:
        b7:1c:54:93:7c:ec:c5:04:3f:75:f7:bd:a5:1a:3b:24:
        da:12:fe:fc:da:c6:38:cb:a0:ba:13:d1:9f:57:df:e8:
        6d:fd:97:be:ca:9e:2c:96:9f:bb:35:81:c8:ed:2e:32:
        8f:27:3f:ad:1e:11:52:b7:b8:bd:59:5c:5d:e6:15:41:
        51:12:62:94:f7:72:b2:1c:08:4a:00:64:b6:64:b3:93:
        95:d5:db:c3:69:a0:b9:57:0d:8d:5c:2c:5d:5f:4f:b2:
        d3:fa:05:9c:77:45:37:08:fb:76:73:06:d4:5b:6e:c6:
        cf:79:fb:f7:99:33:8f:f3:28:41:61:de:fb:21:4e:da:
        79:23:75:92:b1:29:e9:5e:02:86:ff:59:30:9b:96:68:
        20:7f:5c:ba:4f:61:96:a6:5e:dd:c1:b5:8c:01:2f:04:
        bf:6b:ef:47:b8:7c:e7:1c:47:57:2d:28:98:66:cb:00
    Fingerprint (SHA-256):
        9A:C0:97:4A:43:57:9D:D7:AA:BF:22:2F:93:2E:9B:95:C3:E3:08:6D:FE:0E:F3:DF:F6:27:99:8F:9B:6E:59:B1
    Fingerprint (SHA1):
        CB:B5:A8:6E:2A:62:5C:4F:DE:C5:74:34:DF:A8:A1:81:78:DB:FA:8F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3541: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3542: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3543: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3544: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3545: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153375 (0x1dee409f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:56 2017
            Not After : Mon May 02 15:33:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:0c:46:50:91:a0:96:ab:4b:c5:39:af:98:1a:46:d2:
                    02:65:51:65:48:d0:68:3b:f5:b2:3c:1e:7b:70:e2:7c:
                    ca:06:46:3f:e1:eb:43:06:32:f8:ed:96:12:81:b2:84:
                    be:89:85:3a:5a:ce:9c:d7:8c:84:1f:09:34:33:d3:7f:
                    04:9b:eb:1f:fe:28:9a:00:67:44:3c:a0:3a:d4:2b:4d:
                    94:9c:42:aa:c0:3d:fc:81:28:78:79:b6:53:92:c1:2b:
                    bf:73:bb:0c:fd:1f:8a:db:f2:c2:30:30:de:a9:0f:9e:
                    2d:9d:8f:89:43:cb:a5:80:8f:ee:22:79:1d:27:5e:53:
                    7e:e4:80:b9:ff:4e:e2:2c:cf:08:5f:20:e8:ba:a8:ec:
                    de:bf:64:31:1f:eb:6c:4c:c6:94:af:21:2a:2a:45:d5:
                    7e:ce:fb:e1:15:fd:8e:77:c6:85:f7:fc:6f:ef:44:a2:
                    c6:9d:f7:c3:fd:48:97:0a:41:7d:fc:72:19:53:77:ad:
                    f2:90:64:c8:61:79:7b:d9:7a:18:5e:03:03:f1:d3:94:
                    54:46:6c:21:07:1a:7f:c5:12:df:83:66:36:ac:c7:a7:
                    b6:40:78:df:4a:50:cc:81:ef:d2:99:1f:64:6f:1c:92:
                    f6:36:b1:65:80:0f:f8:4f:c2:5f:60:2e:45:dd:90:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:68:22:45:53:7d:db:f9:f2:31:d8:8a:3f:56:1f:3f:
        96:44:09:94:36:5b:28:e1:45:9f:3b:a9:c0:1e:88:be:
        73:34:b3:5f:71:75:ac:a2:33:05:c0:8b:3c:bf:b6:e0:
        24:50:f3:2d:31:3a:a2:46:10:41:95:0a:32:2b:30:7d:
        84:13:c3:47:ec:3f:ee:ff:2a:1f:21:7c:34:56:ba:7a:
        58:fb:68:21:14:f5:46:4a:c4:ce:05:51:5c:94:d4:bc:
        bd:7f:06:2b:74:72:24:94:a4:58:d3:d5:32:cc:0b:2e:
        bd:a1:3b:d6:05:ae:f6:bf:19:ce:ee:3f:68:c7:2e:bf:
        1f:b0:31:25:4b:5b:c9:ad:a4:2b:ec:48:f2:c3:b1:ba:
        79:73:45:f2:d5:e7:48:df:20:7e:e3:27:c7:9d:f8:08:
        07:29:95:53:38:68:a4:1d:39:74:c2:27:99:75:c9:ed:
        cd:0a:c1:66:31:d9:d4:fb:5b:ec:e1:bb:7a:3b:71:1d:
        ba:3b:dc:f2:4a:5c:bc:cd:0d:be:d5:0b:85:70:47:68:
        5a:70:61:52:b3:4b:8f:d6:b1:f4:d3:a0:d2:86:ab:07:
        47:9d:1a:d6:8d:36:e4:27:f4:07:12:04:bd:42:06:98:
        9d:a1:15:df:e7:46:75:b4:32:e6:d2:e2:ba:a7:d6:ad
    Fingerprint (SHA-256):
        75:D4:7D:78:56:C0:89:6B:71:25:09:21:10:AA:3F:A8:5F:F9:89:07:39:B0:32:34:66:5E:B1:1E:B0:26:4A:E5
    Fingerprint (SHA1):
        55:18:5D:C7:17:93:A6:7D:71:42:3D:41:DF:75:65:90:92:E0:E6:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3546: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3547: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153376 (0x1dee40a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:57 2017
            Not After : Mon May 02 15:33:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:5e:09:8b:00:ee:18:70:6a:57:30:90:8c:f7:2e:5c:
                    cd:15:38:1b:ba:b0:90:79:58:09:1e:3a:d8:2b:35:93:
                    1b:85:54:e0:3e:1c:78:c6:08:a7:86:9e:31:2c:93:bd:
                    9b:ac:d7:12:3c:d0:10:4d:3b:43:97:03:cb:40:24:c7:
                    43:55:bd:26:fe:97:e8:2c:51:11:86:e9:e5:ac:1e:8c:
                    7a:bb:cb:ac:67:83:20:89:7c:b4:98:a9:4b:da:d1:16:
                    5b:c6:fb:21:f7:34:ca:93:92:3a:c5:28:4b:94:89:59:
                    dd:25:03:3f:7c:2e:d8:cd:c7:f7:9d:17:da:a2:8a:bd:
                    c9:6b:0b:b0:58:95:d0:de:f2:e1:58:20:9c:63:7a:43:
                    6e:83:6b:e9:e4:df:f2:79:ef:4a:7d:8e:c9:09:b7:78:
                    06:0d:5a:de:99:5c:e8:ba:42:cb:a3:bf:85:95:d3:21:
                    97:0d:d9:4a:6f:dd:9a:74:c0:b7:20:57:2e:4b:35:0f:
                    db:50:e0:57:29:87:a6:4a:c3:c1:18:d5:0a:d6:c0:15:
                    cc:1a:51:58:91:ff:ff:a8:ac:9e:13:69:8d:25:21:7b:
                    39:8f:cc:f2:c0:0c:0e:4e:f4:f3:9e:52:2b:9a:c4:77:
                    e8:c8:2d:44:c7:61:ce:2c:35:68:7a:ea:30:03:d1:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:5f:ce:17:ed:4d:f9:39:29:cc:2e:80:c3:ee:38:60:
        df:1e:d8:57:1e:29:aa:df:8f:09:ad:6b:01:aa:76:0b:
        9f:ce:44:5d:8e:cc:6b:18:9e:99:d3:71:dc:48:5f:d8:
        f8:39:d2:54:ff:f5:3a:75:df:36:da:e9:01:2c:80:ad:
        ee:6f:0d:c9:7c:20:90:18:83:b9:37:56:b0:3c:03:59:
        0f:47:bb:63:ec:92:30:22:4d:2e:37:35:0d:ff:45:70:
        76:fe:70:34:39:58:b2:c2:93:8d:e8:16:6b:62:7e:9d:
        03:24:e8:32:69:cd:86:d1:e5:50:18:1c:00:a1:38:14:
        31:1e:e5:1e:c9:6b:ef:2c:97:c7:69:8a:ad:a3:81:a4:
        41:59:60:13:e5:ca:a7:e3:c3:49:04:71:89:05:3a:f5:
        12:c1:d7:fe:9b:c4:34:fd:c5:ea:02:61:c2:c7:a5:1a:
        b5:7e:81:09:dd:a3:5a:fe:cf:51:44:c3:68:37:9b:fc:
        44:51:32:ea:99:4b:44:c6:49:f1:2e:cd:85:53:4f:c5:
        f0:34:17:5b:46:b0:34:6c:80:6d:66:32:a7:f6:d5:b3:
        6e:c3:63:aa:36:41:2a:0a:7e:ee:89:16:41:cb:13:95:
        0a:73:cd:da:0a:e2:25:b4:9f:66:bb:ad:38:72:05:21
    Fingerprint (SHA-256):
        97:28:A7:50:0D:69:30:BD:20:DA:E5:6B:01:DC:AF:D5:D6:84:7A:2C:78:D5:AF:87:AC:30:C6:D7:7F:15:37:24
    Fingerprint (SHA1):
        3F:E3:61:9A:61:0B:2B:D1:45:BC:8A:A7:CF:D7:FD:B6:BD:E4:F6:57
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3548: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3549: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153377 (0x1dee40a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:33:57 2017
            Not After : Mon May 02 15:33:57 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:61:c7:9f:f7:52:f0:8b:82:7c:b6:0a:1d:dc:45:78:
                    6f:93:7a:ec:ff:1c:29:3e:20:1b:42:51:aa:a5:33:c9:
                    0e:ba:ba:76:8d:11:22:b2:b2:10:4b:02:2e:b9:ae:d3:
                    46:8f:97:71:58:2b:41:dc:4d:fb:0e:91:a1:c1:8e:b9:
                    c2:e8:f0:83:3d:13:ea:ba:fd:6d:ce:dd:3c:e1:c7:94:
                    17:cd:77:60:4c:77:3a:7b:84:a2:d2:80:42:fb:53:f9:
                    3a:45:32:e1:b0:b8:8c:16:56:1e:e7:38:8d:ae:6b:28:
                    a8:84:02:ad:4d:6a:fd:a8:9f:4a:90:85:ac:6e:40:c7:
                    88:9d:3e:dc:10:bf:fd:fd:4d:52:ba:c1:a6:d2:83:d7:
                    75:59:98:70:b0:d3:4a:f8:f2:bc:7e:1e:ae:78:ad:a9:
                    db:c6:aa:5b:ff:3a:75:29:b1:34:42:32:b6:c4:13:87:
                    58:d1:3d:23:60:43:fe:7d:99:5a:20:9f:61:00:8f:03:
                    b8:d3:8e:93:a2:ca:ff:85:17:ed:b4:dd:15:44:6c:25:
                    41:e4:09:20:04:85:76:5c:4b:46:30:63:e6:1a:61:04:
                    54:1f:dc:b7:0e:53:7c:d3:89:bd:47:4f:6b:a5:e2:0e:
                    b7:46:1d:b6:1d:82:8e:a1:6b:f0:10:2a:b6:cc:fb:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ab:7a:ba:17:f0:8a:ce:37:26:78:64:e8:5c:c9:77:
        64:d9:29:08:e3:03:c0:33:a8:ad:ff:f4:f3:08:d3:1e:
        e6:f6:e9:d9:df:16:83:46:ea:28:a1:e6:7f:f6:16:47:
        f4:0f:b0:80:35:7f:29:59:f1:ea:2c:d6:ca:b5:76:ce:
        d1:2f:e4:de:5a:b5:5c:7f:1f:9c:82:a2:f7:df:84:7b:
        b7:1c:54:93:7c:ec:c5:04:3f:75:f7:bd:a5:1a:3b:24:
        da:12:fe:fc:da:c6:38:cb:a0:ba:13:d1:9f:57:df:e8:
        6d:fd:97:be:ca:9e:2c:96:9f:bb:35:81:c8:ed:2e:32:
        8f:27:3f:ad:1e:11:52:b7:b8:bd:59:5c:5d:e6:15:41:
        51:12:62:94:f7:72:b2:1c:08:4a:00:64:b6:64:b3:93:
        95:d5:db:c3:69:a0:b9:57:0d:8d:5c:2c:5d:5f:4f:b2:
        d3:fa:05:9c:77:45:37:08:fb:76:73:06:d4:5b:6e:c6:
        cf:79:fb:f7:99:33:8f:f3:28:41:61:de:fb:21:4e:da:
        79:23:75:92:b1:29:e9:5e:02:86:ff:59:30:9b:96:68:
        20:7f:5c:ba:4f:61:96:a6:5e:dd:c1:b5:8c:01:2f:04:
        bf:6b:ef:47:b8:7c:e7:1c:47:57:2d:28:98:66:cb:00
    Fingerprint (SHA-256):
        9A:C0:97:4A:43:57:9D:D7:AA:BF:22:2F:93:2E:9B:95:C3:E3:08:6D:FE:0E:F3:DF:F6:27:99:8F:9B:6E:59:B1
    Fingerprint (SHA1):
        CB:B5:A8:6E:2A:62:5C:4F:DE:C5:74:34:DF:A8:A1:81:78:DB:FA:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3550: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3551: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3552: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153379 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3553: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3554: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3555: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3556: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153380   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3557: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3558: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3559: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3560: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153381   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3561: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3562: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3563: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3564: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153382   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3565: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3566: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3567: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3568: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153383   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3569: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3571: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ba:00:30:83:9e:1f:c7:6a:d6:e8:23:8d:be:a0:12:
                    3b:ad:6a:8e:21:2d:a0:d1:15:2a:7f:60:e0:25:32:da:
                    b8:11:8f:af:e9:44:c2:3a:ee:d0:25:4a:38:35:e1:e3:
                    4e:50:cc:c2:62:1c:a6:2f:f0:03:38:bd:62:fb:31:7e:
                    fd:e8:7f:fc:13:0f:05:29:54:08:cc:a2:9a:88:27:98:
                    32:6f:f9:e4:1f:ad:55:83:94:ae:4b:08:eb:8b:53:b6:
                    06:56:5d:64:8b:a3:76:e9:0f:de:c7:e3:bb:ae:f5:95:
                    b3:30:7e:9c:46:21:00:d0:47:3d:f4:23:6e:f1:a3:0b:
                    ed:88:13:26:04:61:be:04:68:6c:d5:7e:79:a8:1b:5c:
                    26:12:f4:70:7b:89:b5:0a:78:cc:46:43:3b:74:ac:eb:
                    1f:f7:88:c6:ef:4d:13:66:13:62:f6:10:93:a5:92:5e:
                    7f:6c:10:8d:70:32:98:a4:a6:42:d2:e2:c7:ac:91:31:
                    6f:72:62:83:6a:3c:5f:75:d9:fb:4e:12:68:7c:b0:0d:
                    5e:59:ca:73:6c:cf:58:2b:b9:3d:e3:71:59:ce:1d:93:
                    71:8b:4c:88:25:60:a7:72:2d:d2:8a:c2:43:b7:82:89:
                    d2:a0:96:00:ed:6b:48:07:c0:fa:1f:fa:a4:37:3a:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:06:7a:52:66:70:5f:1a:ae:e6:f3:c4:be:59:19:a7:
        3f:84:7e:35:fa:c0:34:dd:a6:ae:07:5e:7e:3c:20:9f:
        81:8e:2b:9f:41:67:29:d4:27:b1:5e:f7:8b:a0:b7:9f:
        47:5c:1c:61:df:13:1f:1e:3f:e9:a2:0a:6b:1d:4f:c0:
        1e:69:a9:de:0b:9d:38:b2:f2:ac:27:04:f1:6d:65:fe:
        04:13:91:99:42:1a:32:fd:aa:1d:e8:ad:bc:0a:2f:0e:
        70:f3:d6:5e:40:87:45:15:f4:17:49:26:2d:3b:a2:f4:
        a8:ff:68:21:7d:32:4b:22:d6:ab:a6:ea:59:52:d5:fc:
        8d:52:85:d4:c8:0f:5f:ff:14:9e:75:cd:75:da:a0:63:
        36:12:bf:7f:b7:1b:8b:32:cb:3b:9c:4e:be:be:41:fa:
        d8:37:69:73:2e:48:91:84:e8:d7:35:2c:a2:5e:cc:66:
        2f:5a:ac:c8:c0:44:b3:4f:24:d2:ff:93:c4:ff:7f:af:
        4b:51:86:92:26:02:f3:5a:ef:b2:11:d4:c9:8c:ed:9e:
        2e:01:54:7b:6b:1d:85:9e:58:5d:0c:16:08:0b:d8:cc:
        b1:bb:42:74:19:e2:87:9d:77:e7:ee:ee:fc:14:28:12:
        20:0a:45:a6:58:7a:ac:a1:c4:81:7f:9a:92:5a:47:93
    Fingerprint (SHA-256):
        1F:AA:29:6D:0B:BC:8E:83:A3:9E:A8:FA:E2:7A:43:7E:35:D7:0F:EA:02:DB:87:CE:7A:CF:4E:E0:1F:01:5D:96
    Fingerprint (SHA1):
        FE:58:3D:9C:97:66:D2:97:91:28:73:ED:E5:17:A5:45:E0:A3:61:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3572: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3573: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153380 (0x1dee40a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:99:63:e1:31:5b:38:eb:f0:dc:e5:0b:c4:4c:61:6e:
                    c2:7a:6e:00:07:9a:b3:57:a4:75:18:84:07:55:95:e0:
                    f6:54:2a:60:18:72:98:e7:12:b7:18:64:1b:f7:3e:be:
                    4e:43:0c:72:8f:5a:b4:67:87:2c:19:c1:e8:80:ab:9b:
                    2d:43:78:b2:5c:85:d9:bb:4f:8b:4e:e0:bb:7e:0a:48:
                    56:16:24:3f:73:06:01:f1:3b:6b:59:28:14:89:eb:74:
                    ee:72:09:16:ef:30:bf:19:96:3f:24:0a:45:dc:c0:66:
                    63:6b:04:85:78:5c:a6:2e:a6:30:51:c1:70:60:e1:42:
                    b0:63:64:fe:9f:54:e2:6d:67:d5:3f:4e:5d:3b:bb:68:
                    6c:45:b9:c1:c5:34:84:09:c3:44:c9:1d:df:a5:2b:b3:
                    b2:6b:aa:2d:c1:75:46:44:e7:58:3b:7f:6d:78:56:58:
                    ac:45:89:36:92:4d:1a:3c:c7:15:1e:03:37:42:ca:38:
                    8f:4b:a6:89:18:e9:dd:ea:24:74:e6:f5:02:3e:db:0e:
                    e4:14:d6:0b:8e:0b:d9:86:2e:fd:ba:ed:b1:26:5c:7c:
                    82:cf:8e:b0:2c:da:15:19:6f:f0:1e:db:a0:d9:40:ec:
                    f9:82:b8:77:59:96:f1:7e:01:ef:73:15:fd:c9:ad:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:fc:34:29:3f:d4:7d:9a:f8:1a:ec:04:9d:6f:d0:df:
        3b:f2:1f:e2:14:a6:d0:34:06:c3:a3:76:79:96:98:81:
        40:b2:83:a8:3d:dc:7e:13:be:74:b5:ec:c2:3d:22:4f:
        e2:4c:b4:65:23:a4:df:96:94:4e:04:27:0e:f6:f6:fa:
        06:bd:8b:eb:0b:76:a1:5a:e5:11:b4:8d:7a:86:bd:06:
        8b:2b:90:b2:4f:16:8e:c6:a3:0f:f9:f4:d9:30:a2:9a:
        e8:60:6b:4c:e9:7b:9f:e0:89:8e:df:47:a0:45:a0:cf:
        33:68:23:aa:ad:c1:e2:4e:fe:dd:36:34:ec:ae:dc:97:
        28:a9:1f:de:d5:5a:7b:65:8f:3b:ee:7e:12:69:c0:0b:
        64:d2:19:15:5d:64:e9:78:66:e3:0d:23:77:3b:36:b7:
        d7:4f:91:c5:47:d7:61:39:83:32:94:1a:84:03:ba:3f:
        60:b4:b4:ce:9f:8e:92:88:ef:a9:3f:e8:bd:0e:90:06:
        be:15:96:64:03:e7:cd:11:4c:0e:a9:14:a7:85:4e:dc:
        52:ae:e1:d5:30:b3:a6:81:62:4e:db:92:41:40:fd:69:
        09:48:e2:57:ee:4c:06:10:09:8b:7a:2d:44:63:e9:6f:
        a3:8e:a4:bd:41:ba:75:9e:d9:5c:1c:f7:48:90:a0:81
    Fingerprint (SHA-256):
        CF:96:84:40:60:F3:C6:6E:28:B8:FE:0F:3E:62:BF:F8:AB:1F:68:7E:B9:7B:C5:2C:FA:E3:D4:F2:55:AB:74:A1
    Fingerprint (SHA1):
        CD:72:F0:E0:74:5B:0A:AF:89:EF:91:01:5D:ED:45:C9:C7:3F:ED:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3574: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3575: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153381 (0x1dee40a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:00 2017
            Not After : Mon May 02 15:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b5:0f:31:b1:13:f6:32:37:a6:e4:a9:da:d8:9f:f1:
                    65:0d:3c:43:60:65:7c:57:fa:ae:5b:4d:32:29:07:20:
                    70:30:27:50:66:be:62:56:ce:15:85:3b:8d:e1:fa:c5:
                    08:d7:55:f9:dd:5a:95:dd:02:83:22:0d:07:22:5c:43:
                    9d:8e:6b:44:98:0b:cf:9f:40:01:44:65:2a:1d:d7:1b:
                    95:1f:d8:5c:75:df:1a:2c:60:f7:d0:e6:f2:cb:a8:73:
                    f9:8a:ab:06:7f:4b:ce:f1:18:5b:dd:79:7f:35:3c:c0:
                    f2:2b:3e:cc:ae:d5:3c:d8:d1:b4:30:cc:ad:a5:28:c4:
                    3f:3b:5d:08:55:8c:c2:87:aa:57:4c:cd:84:f0:8d:95:
                    99:b5:41:c2:fd:f5:1d:cb:d6:2d:ab:bd:14:48:77:c6:
                    73:69:28:c2:44:43:d8:4e:56:3c:ca:07:c6:e9:e9:cf:
                    38:09:74:64:4b:a5:60:b9:16:5f:df:18:ad:55:5f:5b:
                    a8:86:4c:2c:7a:fe:6d:33:53:16:2d:bc:8a:6b:32:9b:
                    ad:71:44:5d:38:83:f1:fd:c3:93:39:23:64:c5:6b:1f:
                    28:c6:87:0f:68:7f:fc:e2:51:6d:9c:09:c8:a8:7f:06:
                    8b:50:e4:99:2e:6a:65:d4:62:21:52:bc:a2:60:2d:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:ff:bb:8b:88:a3:44:6e:17:a0:5c:b9:7b:1a:2d:83:
        0a:42:ff:b4:b9:d2:31:92:11:e4:d4:3a:07:16:a5:8e:
        a1:41:52:4b:ae:a2:76:0f:22:2f:56:d9:55:18:02:79:
        1a:b9:32:ad:a9:9e:6f:f5:fb:9e:37:1c:d9:38:b5:d8:
        03:d1:4f:bb:cd:9d:27:b0:f6:b5:2d:e4:0c:d2:7d:41:
        6e:c4:02:f2:47:22:fc:de:cb:05:60:19:e3:52:e8:1d:
        4b:3f:d8:99:ba:29:eb:80:2d:68:54:94:94:33:69:3f:
        1d:db:f8:29:02:2b:75:b1:4f:10:89:9a:54:bb:d4:04:
        c0:a8:51:5e:a9:be:5e:26:4e:0f:41:de:c7:ca:e6:2d:
        82:be:22:8a:49:11:5b:c5:f5:d3:6d:48:c1:1b:9b:4a:
        b4:40:36:64:2a:16:d9:e1:08:e9:06:cc:80:10:c1:02:
        3f:a8:d2:74:70:1b:28:5a:28:89:5b:b9:72:b5:cd:cb:
        ab:24:02:80:11:af:3a:1f:bf:f8:4a:5d:ad:ef:1d:c1:
        4b:f6:d6:cb:3f:8d:7d:3c:95:54:14:11:72:f2:a3:3a:
        56:50:34:07:6b:23:d1:d9:12:03:a9:26:dd:b8:38:45:
        ee:29:6b:64:18:91:eb:7e:b6:dd:9a:4e:cc:2e:11:49
    Fingerprint (SHA-256):
        7E:3B:EA:CE:1B:D8:5D:1E:7F:0E:28:68:B6:F1:B7:FF:A6:5E:12:9B:21:43:7E:02:E6:66:60:DB:6C:CB:D8:5A
    Fingerprint (SHA1):
        59:C7:33:43:A8:D2:E4:EE:80:8E:58:C3:61:CD:24:AD:DE:03:EA:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3576: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3577: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3578: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3579: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3580: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ba:00:30:83:9e:1f:c7:6a:d6:e8:23:8d:be:a0:12:
                    3b:ad:6a:8e:21:2d:a0:d1:15:2a:7f:60:e0:25:32:da:
                    b8:11:8f:af:e9:44:c2:3a:ee:d0:25:4a:38:35:e1:e3:
                    4e:50:cc:c2:62:1c:a6:2f:f0:03:38:bd:62:fb:31:7e:
                    fd:e8:7f:fc:13:0f:05:29:54:08:cc:a2:9a:88:27:98:
                    32:6f:f9:e4:1f:ad:55:83:94:ae:4b:08:eb:8b:53:b6:
                    06:56:5d:64:8b:a3:76:e9:0f:de:c7:e3:bb:ae:f5:95:
                    b3:30:7e:9c:46:21:00:d0:47:3d:f4:23:6e:f1:a3:0b:
                    ed:88:13:26:04:61:be:04:68:6c:d5:7e:79:a8:1b:5c:
                    26:12:f4:70:7b:89:b5:0a:78:cc:46:43:3b:74:ac:eb:
                    1f:f7:88:c6:ef:4d:13:66:13:62:f6:10:93:a5:92:5e:
                    7f:6c:10:8d:70:32:98:a4:a6:42:d2:e2:c7:ac:91:31:
                    6f:72:62:83:6a:3c:5f:75:d9:fb:4e:12:68:7c:b0:0d:
                    5e:59:ca:73:6c:cf:58:2b:b9:3d:e3:71:59:ce:1d:93:
                    71:8b:4c:88:25:60:a7:72:2d:d2:8a:c2:43:b7:82:89:
                    d2:a0:96:00:ed:6b:48:07:c0:fa:1f:fa:a4:37:3a:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:06:7a:52:66:70:5f:1a:ae:e6:f3:c4:be:59:19:a7:
        3f:84:7e:35:fa:c0:34:dd:a6:ae:07:5e:7e:3c:20:9f:
        81:8e:2b:9f:41:67:29:d4:27:b1:5e:f7:8b:a0:b7:9f:
        47:5c:1c:61:df:13:1f:1e:3f:e9:a2:0a:6b:1d:4f:c0:
        1e:69:a9:de:0b:9d:38:b2:f2:ac:27:04:f1:6d:65:fe:
        04:13:91:99:42:1a:32:fd:aa:1d:e8:ad:bc:0a:2f:0e:
        70:f3:d6:5e:40:87:45:15:f4:17:49:26:2d:3b:a2:f4:
        a8:ff:68:21:7d:32:4b:22:d6:ab:a6:ea:59:52:d5:fc:
        8d:52:85:d4:c8:0f:5f:ff:14:9e:75:cd:75:da:a0:63:
        36:12:bf:7f:b7:1b:8b:32:cb:3b:9c:4e:be:be:41:fa:
        d8:37:69:73:2e:48:91:84:e8:d7:35:2c:a2:5e:cc:66:
        2f:5a:ac:c8:c0:44:b3:4f:24:d2:ff:93:c4:ff:7f:af:
        4b:51:86:92:26:02:f3:5a:ef:b2:11:d4:c9:8c:ed:9e:
        2e:01:54:7b:6b:1d:85:9e:58:5d:0c:16:08:0b:d8:cc:
        b1:bb:42:74:19:e2:87:9d:77:e7:ee:ee:fc:14:28:12:
        20:0a:45:a6:58:7a:ac:a1:c4:81:7f:9a:92:5a:47:93
    Fingerprint (SHA-256):
        1F:AA:29:6D:0B:BC:8E:83:A3:9E:A8:FA:E2:7A:43:7E:35:D7:0F:EA:02:DB:87:CE:7A:CF:4E:E0:1F:01:5D:96
    Fingerprint (SHA1):
        FE:58:3D:9C:97:66:D2:97:91:28:73:ED:E5:17:A5:45:E0:A3:61:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3581: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3582: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153380 (0x1dee40a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:99:63:e1:31:5b:38:eb:f0:dc:e5:0b:c4:4c:61:6e:
                    c2:7a:6e:00:07:9a:b3:57:a4:75:18:84:07:55:95:e0:
                    f6:54:2a:60:18:72:98:e7:12:b7:18:64:1b:f7:3e:be:
                    4e:43:0c:72:8f:5a:b4:67:87:2c:19:c1:e8:80:ab:9b:
                    2d:43:78:b2:5c:85:d9:bb:4f:8b:4e:e0:bb:7e:0a:48:
                    56:16:24:3f:73:06:01:f1:3b:6b:59:28:14:89:eb:74:
                    ee:72:09:16:ef:30:bf:19:96:3f:24:0a:45:dc:c0:66:
                    63:6b:04:85:78:5c:a6:2e:a6:30:51:c1:70:60:e1:42:
                    b0:63:64:fe:9f:54:e2:6d:67:d5:3f:4e:5d:3b:bb:68:
                    6c:45:b9:c1:c5:34:84:09:c3:44:c9:1d:df:a5:2b:b3:
                    b2:6b:aa:2d:c1:75:46:44:e7:58:3b:7f:6d:78:56:58:
                    ac:45:89:36:92:4d:1a:3c:c7:15:1e:03:37:42:ca:38:
                    8f:4b:a6:89:18:e9:dd:ea:24:74:e6:f5:02:3e:db:0e:
                    e4:14:d6:0b:8e:0b:d9:86:2e:fd:ba:ed:b1:26:5c:7c:
                    82:cf:8e:b0:2c:da:15:19:6f:f0:1e:db:a0:d9:40:ec:
                    f9:82:b8:77:59:96:f1:7e:01:ef:73:15:fd:c9:ad:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:fc:34:29:3f:d4:7d:9a:f8:1a:ec:04:9d:6f:d0:df:
        3b:f2:1f:e2:14:a6:d0:34:06:c3:a3:76:79:96:98:81:
        40:b2:83:a8:3d:dc:7e:13:be:74:b5:ec:c2:3d:22:4f:
        e2:4c:b4:65:23:a4:df:96:94:4e:04:27:0e:f6:f6:fa:
        06:bd:8b:eb:0b:76:a1:5a:e5:11:b4:8d:7a:86:bd:06:
        8b:2b:90:b2:4f:16:8e:c6:a3:0f:f9:f4:d9:30:a2:9a:
        e8:60:6b:4c:e9:7b:9f:e0:89:8e:df:47:a0:45:a0:cf:
        33:68:23:aa:ad:c1:e2:4e:fe:dd:36:34:ec:ae:dc:97:
        28:a9:1f:de:d5:5a:7b:65:8f:3b:ee:7e:12:69:c0:0b:
        64:d2:19:15:5d:64:e9:78:66:e3:0d:23:77:3b:36:b7:
        d7:4f:91:c5:47:d7:61:39:83:32:94:1a:84:03:ba:3f:
        60:b4:b4:ce:9f:8e:92:88:ef:a9:3f:e8:bd:0e:90:06:
        be:15:96:64:03:e7:cd:11:4c:0e:a9:14:a7:85:4e:dc:
        52:ae:e1:d5:30:b3:a6:81:62:4e:db:92:41:40:fd:69:
        09:48:e2:57:ee:4c:06:10:09:8b:7a:2d:44:63:e9:6f:
        a3:8e:a4:bd:41:ba:75:9e:d9:5c:1c:f7:48:90:a0:81
    Fingerprint (SHA-256):
        CF:96:84:40:60:F3:C6:6E:28:B8:FE:0F:3E:62:BF:F8:AB:1F:68:7E:B9:7B:C5:2C:FA:E3:D4:F2:55:AB:74:A1
    Fingerprint (SHA1):
        CD:72:F0:E0:74:5B:0A:AF:89:EF:91:01:5D:ED:45:C9:C7:3F:ED:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3583: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3584: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153381 (0x1dee40a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:00 2017
            Not After : Mon May 02 15:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b5:0f:31:b1:13:f6:32:37:a6:e4:a9:da:d8:9f:f1:
                    65:0d:3c:43:60:65:7c:57:fa:ae:5b:4d:32:29:07:20:
                    70:30:27:50:66:be:62:56:ce:15:85:3b:8d:e1:fa:c5:
                    08:d7:55:f9:dd:5a:95:dd:02:83:22:0d:07:22:5c:43:
                    9d:8e:6b:44:98:0b:cf:9f:40:01:44:65:2a:1d:d7:1b:
                    95:1f:d8:5c:75:df:1a:2c:60:f7:d0:e6:f2:cb:a8:73:
                    f9:8a:ab:06:7f:4b:ce:f1:18:5b:dd:79:7f:35:3c:c0:
                    f2:2b:3e:cc:ae:d5:3c:d8:d1:b4:30:cc:ad:a5:28:c4:
                    3f:3b:5d:08:55:8c:c2:87:aa:57:4c:cd:84:f0:8d:95:
                    99:b5:41:c2:fd:f5:1d:cb:d6:2d:ab:bd:14:48:77:c6:
                    73:69:28:c2:44:43:d8:4e:56:3c:ca:07:c6:e9:e9:cf:
                    38:09:74:64:4b:a5:60:b9:16:5f:df:18:ad:55:5f:5b:
                    a8:86:4c:2c:7a:fe:6d:33:53:16:2d:bc:8a:6b:32:9b:
                    ad:71:44:5d:38:83:f1:fd:c3:93:39:23:64:c5:6b:1f:
                    28:c6:87:0f:68:7f:fc:e2:51:6d:9c:09:c8:a8:7f:06:
                    8b:50:e4:99:2e:6a:65:d4:62:21:52:bc:a2:60:2d:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:ff:bb:8b:88:a3:44:6e:17:a0:5c:b9:7b:1a:2d:83:
        0a:42:ff:b4:b9:d2:31:92:11:e4:d4:3a:07:16:a5:8e:
        a1:41:52:4b:ae:a2:76:0f:22:2f:56:d9:55:18:02:79:
        1a:b9:32:ad:a9:9e:6f:f5:fb:9e:37:1c:d9:38:b5:d8:
        03:d1:4f:bb:cd:9d:27:b0:f6:b5:2d:e4:0c:d2:7d:41:
        6e:c4:02:f2:47:22:fc:de:cb:05:60:19:e3:52:e8:1d:
        4b:3f:d8:99:ba:29:eb:80:2d:68:54:94:94:33:69:3f:
        1d:db:f8:29:02:2b:75:b1:4f:10:89:9a:54:bb:d4:04:
        c0:a8:51:5e:a9:be:5e:26:4e:0f:41:de:c7:ca:e6:2d:
        82:be:22:8a:49:11:5b:c5:f5:d3:6d:48:c1:1b:9b:4a:
        b4:40:36:64:2a:16:d9:e1:08:e9:06:cc:80:10:c1:02:
        3f:a8:d2:74:70:1b:28:5a:28:89:5b:b9:72:b5:cd:cb:
        ab:24:02:80:11:af:3a:1f:bf:f8:4a:5d:ad:ef:1d:c1:
        4b:f6:d6:cb:3f:8d:7d:3c:95:54:14:11:72:f2:a3:3a:
        56:50:34:07:6b:23:d1:d9:12:03:a9:26:dd:b8:38:45:
        ee:29:6b:64:18:91:eb:7e:b6:dd:9a:4e:cc:2e:11:49
    Fingerprint (SHA-256):
        7E:3B:EA:CE:1B:D8:5D:1E:7F:0E:28:68:B6:F1:B7:FF:A6:5E:12:9B:21:43:7E:02:E6:66:60:DB:6C:CB:D8:5A
    Fingerprint (SHA1):
        59:C7:33:43:A8:D2:E4:EE:80:8E:58:C3:61:CD:24:AD:DE:03:EA:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3586: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ba:00:30:83:9e:1f:c7:6a:d6:e8:23:8d:be:a0:12:
                    3b:ad:6a:8e:21:2d:a0:d1:15:2a:7f:60:e0:25:32:da:
                    b8:11:8f:af:e9:44:c2:3a:ee:d0:25:4a:38:35:e1:e3:
                    4e:50:cc:c2:62:1c:a6:2f:f0:03:38:bd:62:fb:31:7e:
                    fd:e8:7f:fc:13:0f:05:29:54:08:cc:a2:9a:88:27:98:
                    32:6f:f9:e4:1f:ad:55:83:94:ae:4b:08:eb:8b:53:b6:
                    06:56:5d:64:8b:a3:76:e9:0f:de:c7:e3:bb:ae:f5:95:
                    b3:30:7e:9c:46:21:00:d0:47:3d:f4:23:6e:f1:a3:0b:
                    ed:88:13:26:04:61:be:04:68:6c:d5:7e:79:a8:1b:5c:
                    26:12:f4:70:7b:89:b5:0a:78:cc:46:43:3b:74:ac:eb:
                    1f:f7:88:c6:ef:4d:13:66:13:62:f6:10:93:a5:92:5e:
                    7f:6c:10:8d:70:32:98:a4:a6:42:d2:e2:c7:ac:91:31:
                    6f:72:62:83:6a:3c:5f:75:d9:fb:4e:12:68:7c:b0:0d:
                    5e:59:ca:73:6c:cf:58:2b:b9:3d:e3:71:59:ce:1d:93:
                    71:8b:4c:88:25:60:a7:72:2d:d2:8a:c2:43:b7:82:89:
                    d2:a0:96:00:ed:6b:48:07:c0:fa:1f:fa:a4:37:3a:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:06:7a:52:66:70:5f:1a:ae:e6:f3:c4:be:59:19:a7:
        3f:84:7e:35:fa:c0:34:dd:a6:ae:07:5e:7e:3c:20:9f:
        81:8e:2b:9f:41:67:29:d4:27:b1:5e:f7:8b:a0:b7:9f:
        47:5c:1c:61:df:13:1f:1e:3f:e9:a2:0a:6b:1d:4f:c0:
        1e:69:a9:de:0b:9d:38:b2:f2:ac:27:04:f1:6d:65:fe:
        04:13:91:99:42:1a:32:fd:aa:1d:e8:ad:bc:0a:2f:0e:
        70:f3:d6:5e:40:87:45:15:f4:17:49:26:2d:3b:a2:f4:
        a8:ff:68:21:7d:32:4b:22:d6:ab:a6:ea:59:52:d5:fc:
        8d:52:85:d4:c8:0f:5f:ff:14:9e:75:cd:75:da:a0:63:
        36:12:bf:7f:b7:1b:8b:32:cb:3b:9c:4e:be:be:41:fa:
        d8:37:69:73:2e:48:91:84:e8:d7:35:2c:a2:5e:cc:66:
        2f:5a:ac:c8:c0:44:b3:4f:24:d2:ff:93:c4:ff:7f:af:
        4b:51:86:92:26:02:f3:5a:ef:b2:11:d4:c9:8c:ed:9e:
        2e:01:54:7b:6b:1d:85:9e:58:5d:0c:16:08:0b:d8:cc:
        b1:bb:42:74:19:e2:87:9d:77:e7:ee:ee:fc:14:28:12:
        20:0a:45:a6:58:7a:ac:a1:c4:81:7f:9a:92:5a:47:93
    Fingerprint (SHA-256):
        1F:AA:29:6D:0B:BC:8E:83:A3:9E:A8:FA:E2:7A:43:7E:35:D7:0F:EA:02:DB:87:CE:7A:CF:4E:E0:1F:01:5D:96
    Fingerprint (SHA1):
        FE:58:3D:9C:97:66:D2:97:91:28:73:ED:E5:17:A5:45:E0:A3:61:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153379 (0x1dee40a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ba:00:30:83:9e:1f:c7:6a:d6:e8:23:8d:be:a0:12:
                    3b:ad:6a:8e:21:2d:a0:d1:15:2a:7f:60:e0:25:32:da:
                    b8:11:8f:af:e9:44:c2:3a:ee:d0:25:4a:38:35:e1:e3:
                    4e:50:cc:c2:62:1c:a6:2f:f0:03:38:bd:62:fb:31:7e:
                    fd:e8:7f:fc:13:0f:05:29:54:08:cc:a2:9a:88:27:98:
                    32:6f:f9:e4:1f:ad:55:83:94:ae:4b:08:eb:8b:53:b6:
                    06:56:5d:64:8b:a3:76:e9:0f:de:c7:e3:bb:ae:f5:95:
                    b3:30:7e:9c:46:21:00:d0:47:3d:f4:23:6e:f1:a3:0b:
                    ed:88:13:26:04:61:be:04:68:6c:d5:7e:79:a8:1b:5c:
                    26:12:f4:70:7b:89:b5:0a:78:cc:46:43:3b:74:ac:eb:
                    1f:f7:88:c6:ef:4d:13:66:13:62:f6:10:93:a5:92:5e:
                    7f:6c:10:8d:70:32:98:a4:a6:42:d2:e2:c7:ac:91:31:
                    6f:72:62:83:6a:3c:5f:75:d9:fb:4e:12:68:7c:b0:0d:
                    5e:59:ca:73:6c:cf:58:2b:b9:3d:e3:71:59:ce:1d:93:
                    71:8b:4c:88:25:60:a7:72:2d:d2:8a:c2:43:b7:82:89:
                    d2:a0:96:00:ed:6b:48:07:c0:fa:1f:fa:a4:37:3a:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:06:7a:52:66:70:5f:1a:ae:e6:f3:c4:be:59:19:a7:
        3f:84:7e:35:fa:c0:34:dd:a6:ae:07:5e:7e:3c:20:9f:
        81:8e:2b:9f:41:67:29:d4:27:b1:5e:f7:8b:a0:b7:9f:
        47:5c:1c:61:df:13:1f:1e:3f:e9:a2:0a:6b:1d:4f:c0:
        1e:69:a9:de:0b:9d:38:b2:f2:ac:27:04:f1:6d:65:fe:
        04:13:91:99:42:1a:32:fd:aa:1d:e8:ad:bc:0a:2f:0e:
        70:f3:d6:5e:40:87:45:15:f4:17:49:26:2d:3b:a2:f4:
        a8:ff:68:21:7d:32:4b:22:d6:ab:a6:ea:59:52:d5:fc:
        8d:52:85:d4:c8:0f:5f:ff:14:9e:75:cd:75:da:a0:63:
        36:12:bf:7f:b7:1b:8b:32:cb:3b:9c:4e:be:be:41:fa:
        d8:37:69:73:2e:48:91:84:e8:d7:35:2c:a2:5e:cc:66:
        2f:5a:ac:c8:c0:44:b3:4f:24:d2:ff:93:c4:ff:7f:af:
        4b:51:86:92:26:02:f3:5a:ef:b2:11:d4:c9:8c:ed:9e:
        2e:01:54:7b:6b:1d:85:9e:58:5d:0c:16:08:0b:d8:cc:
        b1:bb:42:74:19:e2:87:9d:77:e7:ee:ee:fc:14:28:12:
        20:0a:45:a6:58:7a:ac:a1:c4:81:7f:9a:92:5a:47:93
    Fingerprint (SHA-256):
        1F:AA:29:6D:0B:BC:8E:83:A3:9E:A8:FA:E2:7A:43:7E:35:D7:0F:EA:02:DB:87:CE:7A:CF:4E:E0:1F:01:5D:96
    Fingerprint (SHA1):
        FE:58:3D:9C:97:66:D2:97:91:28:73:ED:E5:17:A5:45:E0:A3:61:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153380 (0x1dee40a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:99:63:e1:31:5b:38:eb:f0:dc:e5:0b:c4:4c:61:6e:
                    c2:7a:6e:00:07:9a:b3:57:a4:75:18:84:07:55:95:e0:
                    f6:54:2a:60:18:72:98:e7:12:b7:18:64:1b:f7:3e:be:
                    4e:43:0c:72:8f:5a:b4:67:87:2c:19:c1:e8:80:ab:9b:
                    2d:43:78:b2:5c:85:d9:bb:4f:8b:4e:e0:bb:7e:0a:48:
                    56:16:24:3f:73:06:01:f1:3b:6b:59:28:14:89:eb:74:
                    ee:72:09:16:ef:30:bf:19:96:3f:24:0a:45:dc:c0:66:
                    63:6b:04:85:78:5c:a6:2e:a6:30:51:c1:70:60:e1:42:
                    b0:63:64:fe:9f:54:e2:6d:67:d5:3f:4e:5d:3b:bb:68:
                    6c:45:b9:c1:c5:34:84:09:c3:44:c9:1d:df:a5:2b:b3:
                    b2:6b:aa:2d:c1:75:46:44:e7:58:3b:7f:6d:78:56:58:
                    ac:45:89:36:92:4d:1a:3c:c7:15:1e:03:37:42:ca:38:
                    8f:4b:a6:89:18:e9:dd:ea:24:74:e6:f5:02:3e:db:0e:
                    e4:14:d6:0b:8e:0b:d9:86:2e:fd:ba:ed:b1:26:5c:7c:
                    82:cf:8e:b0:2c:da:15:19:6f:f0:1e:db:a0:d9:40:ec:
                    f9:82:b8:77:59:96:f1:7e:01:ef:73:15:fd:c9:ad:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:fc:34:29:3f:d4:7d:9a:f8:1a:ec:04:9d:6f:d0:df:
        3b:f2:1f:e2:14:a6:d0:34:06:c3:a3:76:79:96:98:81:
        40:b2:83:a8:3d:dc:7e:13:be:74:b5:ec:c2:3d:22:4f:
        e2:4c:b4:65:23:a4:df:96:94:4e:04:27:0e:f6:f6:fa:
        06:bd:8b:eb:0b:76:a1:5a:e5:11:b4:8d:7a:86:bd:06:
        8b:2b:90:b2:4f:16:8e:c6:a3:0f:f9:f4:d9:30:a2:9a:
        e8:60:6b:4c:e9:7b:9f:e0:89:8e:df:47:a0:45:a0:cf:
        33:68:23:aa:ad:c1:e2:4e:fe:dd:36:34:ec:ae:dc:97:
        28:a9:1f:de:d5:5a:7b:65:8f:3b:ee:7e:12:69:c0:0b:
        64:d2:19:15:5d:64:e9:78:66:e3:0d:23:77:3b:36:b7:
        d7:4f:91:c5:47:d7:61:39:83:32:94:1a:84:03:ba:3f:
        60:b4:b4:ce:9f:8e:92:88:ef:a9:3f:e8:bd:0e:90:06:
        be:15:96:64:03:e7:cd:11:4c:0e:a9:14:a7:85:4e:dc:
        52:ae:e1:d5:30:b3:a6:81:62:4e:db:92:41:40:fd:69:
        09:48:e2:57:ee:4c:06:10:09:8b:7a:2d:44:63:e9:6f:
        a3:8e:a4:bd:41:ba:75:9e:d9:5c:1c:f7:48:90:a0:81
    Fingerprint (SHA-256):
        CF:96:84:40:60:F3:C6:6E:28:B8:FE:0F:3E:62:BF:F8:AB:1F:68:7E:B9:7B:C5:2C:FA:E3:D4:F2:55:AB:74:A1
    Fingerprint (SHA1):
        CD:72:F0:E0:74:5B:0A:AF:89:EF:91:01:5D:ED:45:C9:C7:3F:ED:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153380 (0x1dee40a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:33:59 2017
            Not After : Mon May 02 15:33:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:99:63:e1:31:5b:38:eb:f0:dc:e5:0b:c4:4c:61:6e:
                    c2:7a:6e:00:07:9a:b3:57:a4:75:18:84:07:55:95:e0:
                    f6:54:2a:60:18:72:98:e7:12:b7:18:64:1b:f7:3e:be:
                    4e:43:0c:72:8f:5a:b4:67:87:2c:19:c1:e8:80:ab:9b:
                    2d:43:78:b2:5c:85:d9:bb:4f:8b:4e:e0:bb:7e:0a:48:
                    56:16:24:3f:73:06:01:f1:3b:6b:59:28:14:89:eb:74:
                    ee:72:09:16:ef:30:bf:19:96:3f:24:0a:45:dc:c0:66:
                    63:6b:04:85:78:5c:a6:2e:a6:30:51:c1:70:60:e1:42:
                    b0:63:64:fe:9f:54:e2:6d:67:d5:3f:4e:5d:3b:bb:68:
                    6c:45:b9:c1:c5:34:84:09:c3:44:c9:1d:df:a5:2b:b3:
                    b2:6b:aa:2d:c1:75:46:44:e7:58:3b:7f:6d:78:56:58:
                    ac:45:89:36:92:4d:1a:3c:c7:15:1e:03:37:42:ca:38:
                    8f:4b:a6:89:18:e9:dd:ea:24:74:e6:f5:02:3e:db:0e:
                    e4:14:d6:0b:8e:0b:d9:86:2e:fd:ba:ed:b1:26:5c:7c:
                    82:cf:8e:b0:2c:da:15:19:6f:f0:1e:db:a0:d9:40:ec:
                    f9:82:b8:77:59:96:f1:7e:01:ef:73:15:fd:c9:ad:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:fc:34:29:3f:d4:7d:9a:f8:1a:ec:04:9d:6f:d0:df:
        3b:f2:1f:e2:14:a6:d0:34:06:c3:a3:76:79:96:98:81:
        40:b2:83:a8:3d:dc:7e:13:be:74:b5:ec:c2:3d:22:4f:
        e2:4c:b4:65:23:a4:df:96:94:4e:04:27:0e:f6:f6:fa:
        06:bd:8b:eb:0b:76:a1:5a:e5:11:b4:8d:7a:86:bd:06:
        8b:2b:90:b2:4f:16:8e:c6:a3:0f:f9:f4:d9:30:a2:9a:
        e8:60:6b:4c:e9:7b:9f:e0:89:8e:df:47:a0:45:a0:cf:
        33:68:23:aa:ad:c1:e2:4e:fe:dd:36:34:ec:ae:dc:97:
        28:a9:1f:de:d5:5a:7b:65:8f:3b:ee:7e:12:69:c0:0b:
        64:d2:19:15:5d:64:e9:78:66:e3:0d:23:77:3b:36:b7:
        d7:4f:91:c5:47:d7:61:39:83:32:94:1a:84:03:ba:3f:
        60:b4:b4:ce:9f:8e:92:88:ef:a9:3f:e8:bd:0e:90:06:
        be:15:96:64:03:e7:cd:11:4c:0e:a9:14:a7:85:4e:dc:
        52:ae:e1:d5:30:b3:a6:81:62:4e:db:92:41:40:fd:69:
        09:48:e2:57:ee:4c:06:10:09:8b:7a:2d:44:63:e9:6f:
        a3:8e:a4:bd:41:ba:75:9e:d9:5c:1c:f7:48:90:a0:81
    Fingerprint (SHA-256):
        CF:96:84:40:60:F3:C6:6E:28:B8:FE:0F:3E:62:BF:F8:AB:1F:68:7E:B9:7B:C5:2C:FA:E3:D4:F2:55:AB:74:A1
    Fingerprint (SHA1):
        CD:72:F0:E0:74:5B:0A:AF:89:EF:91:01:5D:ED:45:C9:C7:3F:ED:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153381 (0x1dee40a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:00 2017
            Not After : Mon May 02 15:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b5:0f:31:b1:13:f6:32:37:a6:e4:a9:da:d8:9f:f1:
                    65:0d:3c:43:60:65:7c:57:fa:ae:5b:4d:32:29:07:20:
                    70:30:27:50:66:be:62:56:ce:15:85:3b:8d:e1:fa:c5:
                    08:d7:55:f9:dd:5a:95:dd:02:83:22:0d:07:22:5c:43:
                    9d:8e:6b:44:98:0b:cf:9f:40:01:44:65:2a:1d:d7:1b:
                    95:1f:d8:5c:75:df:1a:2c:60:f7:d0:e6:f2:cb:a8:73:
                    f9:8a:ab:06:7f:4b:ce:f1:18:5b:dd:79:7f:35:3c:c0:
                    f2:2b:3e:cc:ae:d5:3c:d8:d1:b4:30:cc:ad:a5:28:c4:
                    3f:3b:5d:08:55:8c:c2:87:aa:57:4c:cd:84:f0:8d:95:
                    99:b5:41:c2:fd:f5:1d:cb:d6:2d:ab:bd:14:48:77:c6:
                    73:69:28:c2:44:43:d8:4e:56:3c:ca:07:c6:e9:e9:cf:
                    38:09:74:64:4b:a5:60:b9:16:5f:df:18:ad:55:5f:5b:
                    a8:86:4c:2c:7a:fe:6d:33:53:16:2d:bc:8a:6b:32:9b:
                    ad:71:44:5d:38:83:f1:fd:c3:93:39:23:64:c5:6b:1f:
                    28:c6:87:0f:68:7f:fc:e2:51:6d:9c:09:c8:a8:7f:06:
                    8b:50:e4:99:2e:6a:65:d4:62:21:52:bc:a2:60:2d:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:ff:bb:8b:88:a3:44:6e:17:a0:5c:b9:7b:1a:2d:83:
        0a:42:ff:b4:b9:d2:31:92:11:e4:d4:3a:07:16:a5:8e:
        a1:41:52:4b:ae:a2:76:0f:22:2f:56:d9:55:18:02:79:
        1a:b9:32:ad:a9:9e:6f:f5:fb:9e:37:1c:d9:38:b5:d8:
        03:d1:4f:bb:cd:9d:27:b0:f6:b5:2d:e4:0c:d2:7d:41:
        6e:c4:02:f2:47:22:fc:de:cb:05:60:19:e3:52:e8:1d:
        4b:3f:d8:99:ba:29:eb:80:2d:68:54:94:94:33:69:3f:
        1d:db:f8:29:02:2b:75:b1:4f:10:89:9a:54:bb:d4:04:
        c0:a8:51:5e:a9:be:5e:26:4e:0f:41:de:c7:ca:e6:2d:
        82:be:22:8a:49:11:5b:c5:f5:d3:6d:48:c1:1b:9b:4a:
        b4:40:36:64:2a:16:d9:e1:08:e9:06:cc:80:10:c1:02:
        3f:a8:d2:74:70:1b:28:5a:28:89:5b:b9:72:b5:cd:cb:
        ab:24:02:80:11:af:3a:1f:bf:f8:4a:5d:ad:ef:1d:c1:
        4b:f6:d6:cb:3f:8d:7d:3c:95:54:14:11:72:f2:a3:3a:
        56:50:34:07:6b:23:d1:d9:12:03:a9:26:dd:b8:38:45:
        ee:29:6b:64:18:91:eb:7e:b6:dd:9a:4e:cc:2e:11:49
    Fingerprint (SHA-256):
        7E:3B:EA:CE:1B:D8:5D:1E:7F:0E:28:68:B6:F1:B7:FF:A6:5E:12:9B:21:43:7E:02:E6:66:60:DB:6C:CB:D8:5A
    Fingerprint (SHA1):
        59:C7:33:43:A8:D2:E4:EE:80:8E:58:C3:61:CD:24:AD:DE:03:EA:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153381 (0x1dee40a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:00 2017
            Not After : Mon May 02 15:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b5:0f:31:b1:13:f6:32:37:a6:e4:a9:da:d8:9f:f1:
                    65:0d:3c:43:60:65:7c:57:fa:ae:5b:4d:32:29:07:20:
                    70:30:27:50:66:be:62:56:ce:15:85:3b:8d:e1:fa:c5:
                    08:d7:55:f9:dd:5a:95:dd:02:83:22:0d:07:22:5c:43:
                    9d:8e:6b:44:98:0b:cf:9f:40:01:44:65:2a:1d:d7:1b:
                    95:1f:d8:5c:75:df:1a:2c:60:f7:d0:e6:f2:cb:a8:73:
                    f9:8a:ab:06:7f:4b:ce:f1:18:5b:dd:79:7f:35:3c:c0:
                    f2:2b:3e:cc:ae:d5:3c:d8:d1:b4:30:cc:ad:a5:28:c4:
                    3f:3b:5d:08:55:8c:c2:87:aa:57:4c:cd:84:f0:8d:95:
                    99:b5:41:c2:fd:f5:1d:cb:d6:2d:ab:bd:14:48:77:c6:
                    73:69:28:c2:44:43:d8:4e:56:3c:ca:07:c6:e9:e9:cf:
                    38:09:74:64:4b:a5:60:b9:16:5f:df:18:ad:55:5f:5b:
                    a8:86:4c:2c:7a:fe:6d:33:53:16:2d:bc:8a:6b:32:9b:
                    ad:71:44:5d:38:83:f1:fd:c3:93:39:23:64:c5:6b:1f:
                    28:c6:87:0f:68:7f:fc:e2:51:6d:9c:09:c8:a8:7f:06:
                    8b:50:e4:99:2e:6a:65:d4:62:21:52:bc:a2:60:2d:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:ff:bb:8b:88:a3:44:6e:17:a0:5c:b9:7b:1a:2d:83:
        0a:42:ff:b4:b9:d2:31:92:11:e4:d4:3a:07:16:a5:8e:
        a1:41:52:4b:ae:a2:76:0f:22:2f:56:d9:55:18:02:79:
        1a:b9:32:ad:a9:9e:6f:f5:fb:9e:37:1c:d9:38:b5:d8:
        03:d1:4f:bb:cd:9d:27:b0:f6:b5:2d:e4:0c:d2:7d:41:
        6e:c4:02:f2:47:22:fc:de:cb:05:60:19:e3:52:e8:1d:
        4b:3f:d8:99:ba:29:eb:80:2d:68:54:94:94:33:69:3f:
        1d:db:f8:29:02:2b:75:b1:4f:10:89:9a:54:bb:d4:04:
        c0:a8:51:5e:a9:be:5e:26:4e:0f:41:de:c7:ca:e6:2d:
        82:be:22:8a:49:11:5b:c5:f5:d3:6d:48:c1:1b:9b:4a:
        b4:40:36:64:2a:16:d9:e1:08:e9:06:cc:80:10:c1:02:
        3f:a8:d2:74:70:1b:28:5a:28:89:5b:b9:72:b5:cd:cb:
        ab:24:02:80:11:af:3a:1f:bf:f8:4a:5d:ad:ef:1d:c1:
        4b:f6:d6:cb:3f:8d:7d:3c:95:54:14:11:72:f2:a3:3a:
        56:50:34:07:6b:23:d1:d9:12:03:a9:26:dd:b8:38:45:
        ee:29:6b:64:18:91:eb:7e:b6:dd:9a:4e:cc:2e:11:49
    Fingerprint (SHA-256):
        7E:3B:EA:CE:1B:D8:5D:1E:7F:0E:28:68:B6:F1:B7:FF:A6:5E:12:9B:21:43:7E:02:E6:66:60:DB:6C:CB:D8:5A
    Fingerprint (SHA1):
        59:C7:33:43:A8:D2:E4:EE:80:8E:58:C3:61:CD:24:AD:DE:03:EA:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3593: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153384 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3595: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153385   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153386   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3602: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3604: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3605: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153387   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3608: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3609: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153388   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3610: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3611: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3612: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3613: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153389   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3614: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3615: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3616: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3617: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153390   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3618: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3619: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3620: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3621: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3622: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3623: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3624: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153384 (0x1dee40a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:02 2017
            Not After : Mon May 02 15:34:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:e5:4f:19:54:ae:e1:79:b5:b5:4c:df:9c:7c:f1:dc:
                    47:4d:1c:e9:d1:db:9b:e8:91:f1:cf:7e:83:2a:39:4e:
                    ec:52:0d:f6:09:65:bd:f5:3a:77:51:e2:65:d1:06:91:
                    9f:4b:bd:57:5b:34:ff:9e:b9:76:79:4f:2a:d3:e0:26:
                    59:53:90:92:51:05:12:b8:45:bb:d6:74:54:73:19:1b:
                    cc:70:22:ea:ad:04:5f:e8:d6:8c:d2:05:14:3c:a1:3c:
                    e8:e5:3c:52:43:05:3e:5f:00:91:bd:6d:92:83:86:ed:
                    4f:a9:22:69:8e:de:ee:ee:64:b0:f1:37:f2:35:3c:74:
                    f0:d6:fd:08:17:64:b1:2d:84:bb:2d:68:e0:34:84:cf:
                    a3:f8:dd:bc:5c:fd:89:fe:9a:fb:fb:9d:2f:e9:38:79:
                    35:04:29:67:92:4f:0c:c5:0b:b3:e2:06:a9:31:d2:aa:
                    02:8b:53:a4:29:28:75:b6:c8:11:aa:0c:a1:a8:39:cd:
                    d4:7e:6c:34:33:73:90:d2:9e:0b:b0:5f:0d:26:de:de:
                    f1:f5:9c:9f:99:1c:2a:e8:92:4f:34:d4:f2:07:8c:53:
                    92:e4:94:de:c3:7b:e1:dc:e2:2b:a0:19:72:75:a3:5d:
                    b8:5d:ee:fc:d7:e2:62:be:f4:6b:5c:42:26:a6:1a:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:5e:35:bf:23:bd:ff:fc:b3:05:c8:6d:0f:52:cb:9e:
        af:b5:85:04:2c:17:83:c5:c5:26:e9:29:02:91:8a:e1:
        65:3c:70:7f:07:c6:ac:5d:c4:ef:52:b7:bd:b1:6f:38:
        2b:0c:e8:59:0f:20:5a:83:5f:08:50:f2:9e:2b:f7:64:
        3f:c7:1f:c1:09:a1:82:d4:ac:d0:64:c8:3c:f2:20:63:
        4c:e4:3b:53:44:4f:b4:9e:f4:cd:81:10:01:36:72:bc:
        0b:dd:76:b8:50:10:f3:2e:12:ed:29:19:8b:38:e6:67:
        c6:da:25:f6:36:c3:c8:2c:75:e5:bf:11:87:20:10:69:
        bd:82:36:31:94:55:d1:9f:34:d0:13:59:30:fc:3d:07:
        25:71:e2:44:53:38:15:bc:70:22:0f:ad:b4:6f:5d:87:
        d8:61:2e:0e:ed:90:ba:8c:e3:bb:cf:e6:ef:e4:4f:9e:
        71:09:e2:d9:62:fd:5a:b2:b1:2c:8d:93:49:f5:79:6b:
        e0:63:64:11:8d:76:eb:ea:5c:c7:31:76:f5:50:dd:e6:
        be:5d:cf:96:2c:ff:31:2e:fe:8f:2b:ee:0a:ba:02:f8:
        de:c3:d6:0c:d6:c7:80:59:c9:d0:86:9d:6a:bb:10:79:
        2c:80:15:36:bb:8e:9b:b8:94:2a:aa:50:5b:e2:8c:3a
    Fingerprint (SHA-256):
        4D:B8:3B:F0:F6:23:84:01:3B:FA:CF:15:5D:93:19:99:0F:40:AC:A5:EC:66:7B:61:EE:45:BB:CC:44:D3:C4:EB
    Fingerprint (SHA1):
        8C:46:05:05:0E:16:52:7F:5F:82:57:8F:6F:F9:E5:36:FE:CA:A7:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3625: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3626: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3627: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3628: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153384 (0x1dee40a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:02 2017
            Not After : Mon May 02 15:34:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:e5:4f:19:54:ae:e1:79:b5:b5:4c:df:9c:7c:f1:dc:
                    47:4d:1c:e9:d1:db:9b:e8:91:f1:cf:7e:83:2a:39:4e:
                    ec:52:0d:f6:09:65:bd:f5:3a:77:51:e2:65:d1:06:91:
                    9f:4b:bd:57:5b:34:ff:9e:b9:76:79:4f:2a:d3:e0:26:
                    59:53:90:92:51:05:12:b8:45:bb:d6:74:54:73:19:1b:
                    cc:70:22:ea:ad:04:5f:e8:d6:8c:d2:05:14:3c:a1:3c:
                    e8:e5:3c:52:43:05:3e:5f:00:91:bd:6d:92:83:86:ed:
                    4f:a9:22:69:8e:de:ee:ee:64:b0:f1:37:f2:35:3c:74:
                    f0:d6:fd:08:17:64:b1:2d:84:bb:2d:68:e0:34:84:cf:
                    a3:f8:dd:bc:5c:fd:89:fe:9a:fb:fb:9d:2f:e9:38:79:
                    35:04:29:67:92:4f:0c:c5:0b:b3:e2:06:a9:31:d2:aa:
                    02:8b:53:a4:29:28:75:b6:c8:11:aa:0c:a1:a8:39:cd:
                    d4:7e:6c:34:33:73:90:d2:9e:0b:b0:5f:0d:26:de:de:
                    f1:f5:9c:9f:99:1c:2a:e8:92:4f:34:d4:f2:07:8c:53:
                    92:e4:94:de:c3:7b:e1:dc:e2:2b:a0:19:72:75:a3:5d:
                    b8:5d:ee:fc:d7:e2:62:be:f4:6b:5c:42:26:a6:1a:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:5e:35:bf:23:bd:ff:fc:b3:05:c8:6d:0f:52:cb:9e:
        af:b5:85:04:2c:17:83:c5:c5:26:e9:29:02:91:8a:e1:
        65:3c:70:7f:07:c6:ac:5d:c4:ef:52:b7:bd:b1:6f:38:
        2b:0c:e8:59:0f:20:5a:83:5f:08:50:f2:9e:2b:f7:64:
        3f:c7:1f:c1:09:a1:82:d4:ac:d0:64:c8:3c:f2:20:63:
        4c:e4:3b:53:44:4f:b4:9e:f4:cd:81:10:01:36:72:bc:
        0b:dd:76:b8:50:10:f3:2e:12:ed:29:19:8b:38:e6:67:
        c6:da:25:f6:36:c3:c8:2c:75:e5:bf:11:87:20:10:69:
        bd:82:36:31:94:55:d1:9f:34:d0:13:59:30:fc:3d:07:
        25:71:e2:44:53:38:15:bc:70:22:0f:ad:b4:6f:5d:87:
        d8:61:2e:0e:ed:90:ba:8c:e3:bb:cf:e6:ef:e4:4f:9e:
        71:09:e2:d9:62:fd:5a:b2:b1:2c:8d:93:49:f5:79:6b:
        e0:63:64:11:8d:76:eb:ea:5c:c7:31:76:f5:50:dd:e6:
        be:5d:cf:96:2c:ff:31:2e:fe:8f:2b:ee:0a:ba:02:f8:
        de:c3:d6:0c:d6:c7:80:59:c9:d0:86:9d:6a:bb:10:79:
        2c:80:15:36:bb:8e:9b:b8:94:2a:aa:50:5b:e2:8c:3a
    Fingerprint (SHA-256):
        4D:B8:3B:F0:F6:23:84:01:3B:FA:CF:15:5D:93:19:99:0F:40:AC:A5:EC:66:7B:61:EE:45:BB:CC:44:D3:C4:EB
    Fingerprint (SHA1):
        8C:46:05:05:0E:16:52:7F:5F:82:57:8F:6F:F9:E5:36:FE:CA:A7:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3629: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3630: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3631: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153391 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3632: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3633: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3634: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153392   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3636: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3637: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3638: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3639: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153393   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3640: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3641: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3642: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3643: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153394   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3644: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3645: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3646: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3647: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153395   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3648: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3649: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3650: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3651: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153396   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3652: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3653: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3654: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3655: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153397   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3656: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3657: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3658: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3659: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153398   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3660: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3661: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3662: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3663: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153399   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3664: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3665: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3666: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3667: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153400   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3668: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3669: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3670: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3671: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153401   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3672: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3673: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3674: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3675: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153402   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3676: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3677: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3678: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3679: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153403   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3680: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3681: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3682: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3683: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153404   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3684: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3685: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3686: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3687: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153405   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3688: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3689: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3690: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3691: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153406   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3692: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3693: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3694: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3695: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153407   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3696: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3697: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3698: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3699: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153408   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3700: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3701: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3702: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3703: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153409   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3705: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3707: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153410   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153411   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3715: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153412   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3719: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153413   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3723: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153414   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153415   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153416   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153417   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3739: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153418   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3743: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153419   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3747: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153420   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3751: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3752: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3753: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3754: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3755: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3756: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3757: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3758: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3759: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3760: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3761: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3762: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3763: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3764: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3765: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3766: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3767: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3768: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3769: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3770: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3771: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3772: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153391 (0x1dee40af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:06 2017
            Not After : Mon May 02 15:34:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:5d:08:9f:11:89:65:4c:ae:b8:29:30:7c:9b:d6:47:
                    e9:62:6e:98:98:16:de:31:5a:3a:87:46:a1:fa:d5:36:
                    cf:43:ff:c5:59:12:0c:12:bd:58:e5:93:23:91:5b:93:
                    d3:16:13:e6:e1:bf:d1:c5:87:be:13:22:0e:aa:28:fe:
                    5f:a7:bb:c6:97:be:29:29:c1:dc:be:14:69:dc:d0:89:
                    f2:45:0c:6e:4f:6b:ed:ed:21:6f:4d:4f:42:6a:5c:37:
                    34:79:ae:90:fa:fc:fb:dd:0b:cc:3e:1e:2b:31:8f:38:
                    fe:24:73:42:15:25:0c:27:01:b0:5e:ea:15:7f:60:5f:
                    f6:ea:2b:09:a1:1e:a8:a2:4a:20:0d:73:6e:83:ee:ec:
                    04:d0:39:ad:02:5f:02:df:aa:22:22:66:e9:34:b9:4d:
                    8b:c9:cd:0f:87:8a:20:54:58:96:b3:9b:b8:af:63:b9:
                    54:ed:b0:7f:a6:50:f7:20:3f:1b:7e:1f:96:98:3b:48:
                    49:c4:34:6f:e3:e6:06:a2:27:e2:6f:64:ca:46:cd:f3:
                    6c:b4:c5:df:95:ed:c9:ab:d4:9a:db:a4:38:5e:d6:ed:
                    82:20:55:40:37:72:55:48:f7:2a:b2:d0:33:a2:71:c5:
                    08:18:48:26:84:aa:47:79:4c:17:1d:7f:26:d5:03:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:03:bd:41:3c:a5:d6:c8:da:af:a8:f0:6b:a9:e5:45:
        98:da:ad:01:56:5d:cb:ac:2e:30:84:2e:b5:2a:d9:3d:
        57:ea:df:1b:26:c8:bf:d8:8c:39:99:ec:25:2d:b1:98:
        4f:bb:4b:9c:86:da:64:2d:72:94:cd:a1:00:d6:d3:85:
        6c:fd:84:a0:e5:e4:34:3f:b0:b8:a8:2c:14:0f:f9:b2:
        61:48:0a:4b:67:8f:78:7a:eb:ca:1c:fe:b2:99:dd:90:
        3a:34:ef:89:47:44:37:78:f5:93:02:6e:03:ce:1e:01:
        70:bd:4b:52:40:6a:fe:49:8f:b1:ec:6a:50:b8:3a:bc:
        d5:38:b4:20:64:b7:75:6a:8e:6e:c1:1c:d9:38:ef:d0:
        0a:32:ec:31:b0:f3:19:f1:f4:bf:55:3a:02:07:68:b7:
        f7:d4:49:2d:f1:50:00:35:c8:d3:12:f1:77:69:ff:cb:
        93:98:6f:48:54:86:85:de:e6:f4:28:5a:9b:07:9c:58:
        34:13:b2:7f:8d:55:20:f2:ba:9f:ee:82:b8:1f:ce:3f:
        b2:9c:31:4b:7f:e2:d4:00:06:eb:4c:37:85:a6:41:08:
        11:24:29:a6:45:01:2d:83:3a:05:82:6a:53:17:8f:09:
        23:ba:ea:0a:d3:ad:a2:e5:9d:28:89:78:aa:29:a9:04
    Fingerprint (SHA-256):
        3E:58:63:40:AD:34:0E:1D:9B:9F:02:9D:23:7F:61:89:94:10:1B:4C:B9:DD:8E:3C:B2:5F:E1:5F:12:71:1F:B1
    Fingerprint (SHA1):
        25:ED:B3:F5:44:4D:B7:C4:C7:85:0D:66:FA:CD:9C:97:22:E5:BC:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3773: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3774: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3775: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153421 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3776: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3777: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3778: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3779: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153422   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3780: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3782: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153423   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3786: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3787: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153424   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3790: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3791: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153425   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3794: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153426   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3798: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3799: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153427   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3802: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153421 (0x1dee40cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:22 2017
            Not After : Mon May 02 15:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:79:97:e9:6b:b2:a1:a5:ce:80:09:e4:c3:dc:c2:f4:
                    3f:74:99:fb:79:32:06:d1:09:87:c2:8d:1f:32:45:03:
                    94:1c:74:03:95:d8:77:32:0b:df:88:fc:5c:9d:13:b8:
                    78:2f:2d:f8:2a:c1:e7:b3:49:29:a6:c5:c2:1e:20:ea:
                    49:35:3b:d4:52:18:be:f8:83:0f:f9:6e:a3:93:3b:b3:
                    01:ae:35:cf:4c:0f:19:c7:13:52:99:d6:9d:0c:ae:68:
                    91:5b:7a:ba:a1:f3:e9:27:b8:35:29:c0:0b:02:44:09:
                    41:45:f9:f2:54:c9:81:f4:82:e5:7f:13:b6:79:d4:44:
                    fd:a5:27:c6:b4:bc:e5:9c:59:15:6d:eb:0f:a6:63:42:
                    c8:98:28:2c:c4:f7:74:9b:e9:c0:94:bf:be:1b:3b:dd:
                    64:23:20:25:ea:4a:2e:d6:cb:1a:4f:ba:ee:d2:26:a2:
                    d5:9b:9c:b5:48:80:c0:d2:22:38:69:a2:db:7a:19:55:
                    d7:72:35:e1:a0:dd:3b:8e:7f:f4:40:db:98:21:d8:3b:
                    74:06:c8:4c:ac:d4:6a:61:7f:35:c0:9e:7e:8b:95:53:
                    15:e4:b6:2d:7f:16:56:7f:44:96:fc:81:ae:e9:cb:72:
                    2f:93:f1:00:45:60:f2:15:c0:c7:d9:7a:cc:41:80:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:84:62:0e:1a:9e:ef:0c:d0:61:5a:72:5c:94:87:53:
        0d:98:b1:07:40:22:e3:3f:c7:1c:da:9b:77:2e:b0:e0:
        fa:74:b6:7f:c1:b8:14:dc:fd:c5:f7:a1:47:8c:84:b4:
        2f:6b:95:93:f2:9e:d8:cc:58:2f:bc:7d:53:46:e6:f6:
        9a:29:7b:7c:50:2b:11:7a:39:81:62:32:3c:bb:b8:3f:
        1a:d6:7c:05:46:e2:db:1f:31:06:19:d1:2c:3b:c5:6b:
        ab:d2:a9:42:ec:fc:0d:27:5a:93:fd:5e:10:05:61:0c:
        dc:3a:0d:ef:0e:5a:32:bb:37:b8:d6:f7:60:0c:ad:7e:
        05:0c:ce:bd:66:9c:97:85:67:0a:4e:5f:38:38:49:41:
        25:a1:c7:61:2b:11:2a:77:f9:48:9b:33:d3:18:bf:45:
        32:14:c0:f2:75:d4:5e:91:aa:7c:66:2e:cb:44:a2:a8:
        4c:f5:86:f5:bc:b9:1e:97:30:b6:7f:5b:8d:90:c0:c5:
        49:c0:e2:ce:59:c3:81:db:29:07:5c:c9:fb:e0:61:4a:
        2b:b4:62:12:30:26:11:19:5e:94:08:1d:da:de:2a:ac:
        0c:21:8b:3e:3f:d7:b2:54:16:a8:22:01:a1:16:13:cf:
        ab:aa:b3:6e:c1:fd:b9:14:00:24:5d:37:d0:d1:05:e1
    Fingerprint (SHA-256):
        D7:7D:E3:02:95:D5:10:3B:4B:5A:6C:D4:98:B9:39:43:88:84:C9:02:47:1A:24:6B:C8:44:0A:07:00:89:0E:F6
    Fingerprint (SHA1):
        BB:CB:C7:46:C7:DF:62:69:B8:1B:C3:63:65:7C:69:17:43:31:4B:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3803: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3804: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3805: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3806: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153421 (0x1dee40cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:22 2017
            Not After : Mon May 02 15:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:79:97:e9:6b:b2:a1:a5:ce:80:09:e4:c3:dc:c2:f4:
                    3f:74:99:fb:79:32:06:d1:09:87:c2:8d:1f:32:45:03:
                    94:1c:74:03:95:d8:77:32:0b:df:88:fc:5c:9d:13:b8:
                    78:2f:2d:f8:2a:c1:e7:b3:49:29:a6:c5:c2:1e:20:ea:
                    49:35:3b:d4:52:18:be:f8:83:0f:f9:6e:a3:93:3b:b3:
                    01:ae:35:cf:4c:0f:19:c7:13:52:99:d6:9d:0c:ae:68:
                    91:5b:7a:ba:a1:f3:e9:27:b8:35:29:c0:0b:02:44:09:
                    41:45:f9:f2:54:c9:81:f4:82:e5:7f:13:b6:79:d4:44:
                    fd:a5:27:c6:b4:bc:e5:9c:59:15:6d:eb:0f:a6:63:42:
                    c8:98:28:2c:c4:f7:74:9b:e9:c0:94:bf:be:1b:3b:dd:
                    64:23:20:25:ea:4a:2e:d6:cb:1a:4f:ba:ee:d2:26:a2:
                    d5:9b:9c:b5:48:80:c0:d2:22:38:69:a2:db:7a:19:55:
                    d7:72:35:e1:a0:dd:3b:8e:7f:f4:40:db:98:21:d8:3b:
                    74:06:c8:4c:ac:d4:6a:61:7f:35:c0:9e:7e:8b:95:53:
                    15:e4:b6:2d:7f:16:56:7f:44:96:fc:81:ae:e9:cb:72:
                    2f:93:f1:00:45:60:f2:15:c0:c7:d9:7a:cc:41:80:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:84:62:0e:1a:9e:ef:0c:d0:61:5a:72:5c:94:87:53:
        0d:98:b1:07:40:22:e3:3f:c7:1c:da:9b:77:2e:b0:e0:
        fa:74:b6:7f:c1:b8:14:dc:fd:c5:f7:a1:47:8c:84:b4:
        2f:6b:95:93:f2:9e:d8:cc:58:2f:bc:7d:53:46:e6:f6:
        9a:29:7b:7c:50:2b:11:7a:39:81:62:32:3c:bb:b8:3f:
        1a:d6:7c:05:46:e2:db:1f:31:06:19:d1:2c:3b:c5:6b:
        ab:d2:a9:42:ec:fc:0d:27:5a:93:fd:5e:10:05:61:0c:
        dc:3a:0d:ef:0e:5a:32:bb:37:b8:d6:f7:60:0c:ad:7e:
        05:0c:ce:bd:66:9c:97:85:67:0a:4e:5f:38:38:49:41:
        25:a1:c7:61:2b:11:2a:77:f9:48:9b:33:d3:18:bf:45:
        32:14:c0:f2:75:d4:5e:91:aa:7c:66:2e:cb:44:a2:a8:
        4c:f5:86:f5:bc:b9:1e:97:30:b6:7f:5b:8d:90:c0:c5:
        49:c0:e2:ce:59:c3:81:db:29:07:5c:c9:fb:e0:61:4a:
        2b:b4:62:12:30:26:11:19:5e:94:08:1d:da:de:2a:ac:
        0c:21:8b:3e:3f:d7:b2:54:16:a8:22:01:a1:16:13:cf:
        ab:aa:b3:6e:c1:fd:b9:14:00:24:5d:37:d0:d1:05:e1
    Fingerprint (SHA-256):
        D7:7D:E3:02:95:D5:10:3B:4B:5A:6C:D4:98:B9:39:43:88:84:C9:02:47:1A:24:6B:C8:44:0A:07:00:89:0E:F6
    Fingerprint (SHA1):
        BB:CB:C7:46:C7:DF:62:69:B8:1B:C3:63:65:7C:69:17:43:31:4B:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3807: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3808: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3809: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3810: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153428 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3811: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3812: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3813: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3814: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153429   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3815: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3816: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3817: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3818: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153430   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3819: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3820: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3821: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3822: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153431   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3823: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3824: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3825: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3826: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3827: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3828: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153428 (0x1dee40d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:26 2017
            Not After : Mon May 02 15:34:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:e5:ef:93:5d:ae:54:fa:85:d4:70:b1:43:e4:dc:4b:
                    4b:ad:f7:fd:47:af:1f:e3:9c:50:51:c6:16:68:1d:1d:
                    eb:37:de:e3:98:b5:1d:31:b5:a4:6c:4a:aa:2d:9d:d5:
                    2a:cf:7a:16:b7:da:90:f8:0d:c7:fb:01:cf:d9:ef:28:
                    24:bd:ba:28:38:73:c1:0a:b4:08:66:04:8b:f2:30:36:
                    0b:45:aa:a5:4f:33:9a:68:44:a6:e4:89:da:40:cd:79:
                    3d:22:e9:47:4d:6c:f8:dc:28:d4:68:97:35:16:85:58:
                    42:0b:e2:9f:c2:4e:e7:1d:fe:ca:d3:e2:c3:b8:3a:4c:
                    e3:20:74:17:85:db:76:4d:42:75:10:af:39:ff:b1:36:
                    06:d5:fa:22:2c:05:3c:8e:b9:31:f7:c8:fe:fb:a0:4f:
                    09:07:25:3b:34:c7:80:ca:a4:b4:80:21:76:f2:e0:d8:
                    c9:8b:d1:86:3a:7c:cf:4b:01:9f:ca:89:e6:f9:07:21:
                    b8:69:af:89:84:6a:5f:0f:c5:30:41:24:8e:77:7d:60:
                    81:24:15:97:78:35:81:60:95:29:df:e6:c3:ba:b3:40:
                    83:08:3a:c9:50:7d:6b:8c:27:0b:4a:14:de:42:ce:73:
                    fa:fd:6d:51:d1:72:b2:e9:2a:f5:39:26:0e:35:89:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:cb:46:1d:bf:38:20:fa:79:30:0d:ae:2b:0d:84:d6:
        72:87:cf:af:fc:c8:d5:9d:37:2a:62:71:30:cb:03:e3:
        39:72:d3:8f:3b:32:1b:54:4e:af:5c:1b:32:79:5f:6c:
        f4:f9:fe:25:1a:fa:31:e3:35:ab:43:42:36:08:78:31:
        d9:1f:1a:bf:84:04:37:14:4b:94:21:4f:76:f0:76:9d:
        6c:76:b8:20:dd:0a:51:7e:c4:ba:f7:07:97:18:de:5c:
        79:fb:81:59:b0:59:61:85:71:e4:62:83:9c:f6:af:4e:
        6f:e2:63:35:82:5e:7b:ec:42:0a:97:b5:0a:10:28:c6:
        ab:2e:cc:57:78:af:c0:6a:44:06:09:a2:c6:98:6d:f7:
        2d:18:a1:eb:a3:80:e0:b3:b1:f0:bf:2e:f4:b2:64:0a:
        c7:7d:8e:4c:73:7e:8c:4e:2d:da:1e:67:6d:31:85:f5:
        ad:bf:29:24:6c:06:5a:da:e2:ca:59:4d:c0:d0:d4:28:
        ae:8d:a8:9c:51:b2:6f:86:d5:8b:e8:98:75:52:eb:87:
        fb:e1:34:8a:77:b7:7e:3d:42:cb:03:8d:da:ff:9c:14:
        ef:8e:dd:3d:50:9e:97:01:02:69:7d:b4:9a:ac:13:2d:
        c7:16:60:7e:9f:79:8f:f6:fe:de:3f:81:8d:4a:8f:f7
    Fingerprint (SHA-256):
        B6:97:0E:6A:3F:C4:45:05:33:87:FB:1C:FF:33:BE:63:44:85:FA:6D:83:49:8E:34:92:27:96:6D:D6:D5:EE:22
    Fingerprint (SHA1):
        CE:EE:6C:D8:37:7B:45:C5:B4:EE:AA:9C:1A:E8:BD:75:6E:FA:15:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153429 (0x1dee40d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:6b:5e:a4:cf:49:91:e9:47:ce:57:8e:4c:e7:69:ee:
                    ec:bc:88:c8:25:58:da:52:94:d8:31:71:17:13:1d:1e:
                    a3:0e:44:f4:fe:46:c5:4b:2e:a9:74:1c:b3:70:6a:b6:
                    67:66:25:af:f2:63:af:05:4b:c7:1f:68:96:31:35:48:
                    b4:08:48:a8:90:3e:30:cf:31:c4:b6:53:44:d6:27:2d:
                    0e:b2:b1:5e:28:3d:f8:a2:9e:3f:20:b5:94:b0:9d:34:
                    27:7b:f6:89:6f:5c:e8:27:d1:38:df:c0:bb:6e:91:da:
                    9e:d5:ef:9f:e0:57:a4:e5:fe:23:ff:6a:b1:66:c6:d2:
                    5e:74:d5:08:4f:c8:99:90:bc:02:ca:94:04:0d:2d:49:
                    3d:48:6c:0b:19:33:b3:69:ec:3e:f6:59:4c:05:ec:b7:
                    dd:bc:5c:06:96:e1:a1:17:6d:4e:84:6b:a0:d6:24:d9:
                    d8:6e:54:e3:b1:af:53:76:42:f5:05:a4:e8:ca:e8:3a:
                    c2:6b:49:24:9e:56:7d:6d:2a:8a:83:4e:71:a3:43:63:
                    eb:e8:df:50:1f:e2:2c:6c:c2:34:4a:63:c4:8e:ab:52:
                    aa:18:e0:ca:26:b8:b8:a0:18:61:ab:37:67:f7:d6:60:
                    5e:35:3f:7d:24:b0:08:94:6c:89:a4:5e:0a:f0:b8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:70:26:c2:b2:4b:57:11:61:58:9f:37:2b:3c:b0:1e:
        2f:67:50:cf:9e:84:44:08:18:33:28:06:1c:32:8c:e5:
        34:5d:83:a6:1a:f8:06:10:f8:88:3a:eb:9b:88:76:4b:
        0e:ce:d7:1c:9e:9a:42:7f:9c:9b:f9:15:4e:bd:db:63:
        f4:cf:07:e5:52:59:9e:40:81:db:12:eb:6e:4e:2c:bf:
        6c:4d:2e:43:e4:e5:0f:35:56:5d:63:c9:89:e3:37:ea:
        68:39:3a:6e:e5:01:af:c9:32:a5:10:e9:92:aa:76:49:
        13:e2:b9:d7:d8:e7:d5:00:d3:c8:0e:7d:6a:ec:91:32:
        72:48:5b:28:27:56:85:05:32:e2:68:ed:bb:f5:9f:a9:
        6d:1c:cd:e9:47:83:65:da:e8:76:ef:21:00:5b:49:78:
        7f:c3:7f:18:0a:4b:47:2a:72:42:7f:d6:a9:dc:d6:f2:
        29:15:ed:60:63:30:3d:5c:8f:be:82:de:06:36:90:5d:
        b8:77:47:1f:30:fb:a0:b7:28:a8:b8:51:0a:52:59:66:
        40:7f:b5:91:5c:08:e2:8d:11:45:ca:13:ff:27:b7:7e:
        f3:18:8d:e1:fa:1e:d4:11:93:10:11:38:b9:9d:54:60:
        40:74:e3:b7:c9:4c:49:2b:d0:40:cd:28:64:5d:7e:2c
    Fingerprint (SHA-256):
        19:8E:38:26:17:3C:9A:42:21:78:F5:06:C0:5B:FA:DF:3A:A8:28:90:8A:3A:D9:B6:46:7A:DA:B9:0F:FD:CB:5F
    Fingerprint (SHA1):
        B4:0B:73:CC:84:3C:2E:85:55:DE:A1:4C:3A:B9:B8:86:09:E7:FE:34
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3832: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3833: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153430 (0x1dee40d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:27 2017
            Not After : Mon May 02 15:34:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:de:3b:e6:51:02:0c:7b:83:5c:95:1a:99:68:69:5e:
                    97:ca:be:93:e7:ba:98:c0:f3:e9:76:7d:40:7b:c2:9c:
                    b5:d9:fc:9f:75:6e:6e:5c:86:79:38:b7:95:a3:d7:9e:
                    e3:8e:da:82:90:a1:5e:16:34:c1:5f:5a:03:8d:0d:24:
                    a4:e6:3b:53:d5:99:f1:04:c6:cb:ba:c0:4b:15:83:0f:
                    c6:be:a0:a7:d9:a8:40:0c:3c:ca:0a:b8:32:96:a4:14:
                    f8:eb:ac:72:d2:67:4e:74:64:cb:4b:79:6e:68:a4:db:
                    56:35:19:e8:8c:43:2f:69:0e:86:e3:65:8f:91:74:4d:
                    10:68:8d:8c:2b:6e:ac:86:51:67:f2:dd:0a:8f:22:a3:
                    a0:aa:a6:05:f9:9f:64:43:bb:57:40:86:3a:17:cd:60:
                    1d:75:c4:36:2b:9c:99:8b:8e:67:7b:fb:ac:29:85:c7:
                    6c:c7:c9:26:7c:b8:3c:3b:ac:ce:98:2d:40:7b:a4:3d:
                    17:34:de:6e:2f:83:2d:e0:dd:d1:b2:1b:64:cd:2e:f9:
                    e8:c8:4c:12:3c:f7:aa:d6:d6:2b:f4:09:c7:ef:b8:3b:
                    f9:c6:a1:36:ef:cd:5e:38:74:39:fb:95:29:c6:f5:41:
                    eb:38:8c:a7:b9:75:30:e2:c7:f9:dd:09:7f:b7:6d:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:e1:fa:ff:d7:5b:81:68:b7:b2:7b:3c:06:90:a1:8b:
        c6:5e:97:07:4e:53:d5:c3:2d:04:3e:cc:c1:ed:6f:75:
        4c:54:66:52:74:c9:c3:06:21:f4:d2:43:b8:6b:7f:c9:
        b5:0f:51:3c:84:bd:8c:08:9e:95:5b:76:f3:62:7f:a5:
        af:73:78:90:bf:b5:2f:24:e5:01:e7:65:f2:93:3e:1c:
        ab:a4:74:b6:30:26:01:97:8c:84:ab:bf:ed:c9:f4:37:
        e8:d4:2a:94:b7:72:00:57:36:5d:f8:7b:46:2e:50:07:
        6f:10:05:1a:98:52:f3:6d:60:26:1c:c7:37:5a:e0:69:
        40:37:6c:9d:2d:5c:b2:3d:aa:d3:24:66:dd:a5:28:1f:
        04:ba:04:54:29:87:ff:8b:61:c5:07:2c:6a:bf:c4:0b:
        4d:48:c7:4a:5a:34:a9:cb:1e:66:10:8e:1b:bb:c8:be:
        a1:28:d3:eb:13:fb:6f:e7:32:1f:19:2c:f0:ee:79:b0:
        4a:d0:a4:f3:f0:2d:76:14:0f:5d:7a:57:ec:9b:4b:8c:
        40:32:20:c9:ee:30:c5:cd:6c:b3:65:29:c1:b8:48:c0:
        49:aa:00:41:fc:45:51:e2:23:a2:09:77:a8:44:b8:7f:
        f4:79:b3:13:48:2b:f4:f4:33:7d:8c:8e:1f:86:ea:3f
    Fingerprint (SHA-256):
        51:D7:29:56:C5:67:EA:C1:CF:22:FB:7A:A0:79:56:88:79:CC:A1:FC:48:81:D9:87:EF:F6:91:40:B4:49:4D:B0
    Fingerprint (SHA1):
        A0:E3:73:4A:C0:41:B4:C0:23:07:F1:D3:66:07:5C:C0:E3:18:B4:C7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3835: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153432 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3836: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3837: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3838: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3839: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153433   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3840: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3841: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3842: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3843: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153434   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3844: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3845: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3846: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3847: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153435   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3848: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3849: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3850: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3851: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153436   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3852: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3854: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3855: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3856: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3857: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3858: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153432 (0x1dee40d8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:29 2017
            Not After : Mon May 02 15:34:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:3b:e9:4c:d1:73:4b:55:fe:d6:4c:da:72:ae:03:36:
                    95:7e:23:73:a6:50:58:b2:16:d1:3e:0e:13:c5:22:9e:
                    6e:65:57:82:c7:33:2a:12:bd:db:7d:fa:c0:71:81:66:
                    30:86:38:b9:4d:84:83:cb:1c:2c:a5:70:7d:0e:cf:d1:
                    d6:16:d3:de:26:46:93:c1:17:1f:fe:f3:bd:70:74:54:
                    5a:24:68:56:f4:b6:2a:37:67:72:b8:22:cb:0e:2d:b3:
                    2e:d0:bf:0a:aa:78:a7:87:f0:c6:91:39:50:37:39:77:
                    07:47:f2:95:a8:07:4b:2a:8b:16:39:94:4e:98:ed:a4:
                    5b:71:d3:35:c2:34:95:3e:92:c1:9d:ed:3c:b7:db:7f:
                    ce:c3:b6:7b:d0:37:5b:ec:c1:80:6d:32:8b:da:6b:5f:
                    f0:29:b4:2b:92:04:5b:f9:64:a1:25:83:59:c5:3d:27:
                    13:9d:3e:9e:66:55:5e:e0:3f:f0:5e:ff:17:da:44:30:
                    66:8e:b1:73:96:47:bf:28:53:a1:57:b3:34:b3:11:25:
                    ef:3e:80:08:bf:75:58:f8:75:2b:fd:3c:c7:57:29:48:
                    73:92:c9:2f:f5:b5:41:36:4f:c3:2d:c0:3b:73:16:2d:
                    2b:b0:6e:82:43:61:fc:05:04:7b:9b:99:db:d5:b6:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dc:ad:e2:8e:06:3b:9a:7d:d3:9d:66:a3:7e:e3:e2:68:
        d9:79:04:58:b2:20:d0:b1:15:2e:13:79:ce:28:3e:cc:
        fc:9f:6e:c2:c2:b2:c3:41:90:04:95:6d:df:d5:c9:c3:
        e8:57:8f:86:62:72:ab:2b:95:91:24:72:7e:10:c3:2d:
        d1:8f:c8:11:53:5f:32:50:71:2a:c3:66:cb:1f:4a:09:
        bf:d8:04:cc:40:f5:40:a3:a6:2c:94:fc:1d:79:5a:ca:
        b6:3a:4f:de:fc:db:b2:1d:2d:08:ac:f0:6b:ac:8d:0f:
        b2:84:f2:10:a1:6f:0c:63:65:93:16:1c:97:c1:8b:69:
        e7:ec:38:9e:30:a4:6b:de:0d:bc:6d:19:26:17:87:2a:
        43:2f:bf:6e:92:e8:97:67:63:20:5e:19:91:3a:f5:e2:
        4c:fd:3a:f7:09:b4:97:93:20:b6:ad:f7:aa:25:c0:60:
        72:4a:00:d8:6f:c8:ee:d4:19:4c:7d:a5:91:7c:4f:63:
        64:3d:47:65:16:be:6a:f6:6d:92:da:25:49:65:e0:bf:
        3d:1e:2a:3b:49:1f:98:a4:8c:48:59:19:81:02:0f:9f:
        ce:94:a4:a1:ae:42:87:a9:d9:37:db:63:90:63:8e:9b:
        50:91:9e:31:6b:2e:19:a7:12:02:71:6c:85:e1:4e:f0
    Fingerprint (SHA-256):
        9F:2C:8B:4F:64:CB:9F:2E:04:8C:32:59:CD:DB:77:8D:D2:BB:44:DA:14:6F:FF:E9:A0:D3:37:93:9C:8D:54:88
    Fingerprint (SHA1):
        C7:60:5F:D1:08:67:BE:2B:BD:50:FB:21:D5:D1:53:B5:45:C3:49:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3859: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3860: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153433 (0x1dee40d9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:29 2017
            Not After : Mon May 02 15:34:29 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:5b:d4:a3:cf:74:e6:da:79:25:bb:be:1b:58:b5:a5:
                    3f:eb:24:fa:76:8f:f1:c7:43:7a:34:bf:6d:36:dd:da:
                    90:dd:e9:44:a1:52:bd:c1:e2:9a:90:58:7f:c7:a6:cf:
                    16:27:4e:60:1e:51:15:96:30:dc:4d:52:0f:c7:da:5f:
                    7e:f4:6d:48:a2:54:35:9a:42:31:f9:00:17:00:a2:91:
                    7c:1d:22:d2:ba:47:0d:df:f1:4c:21:ad:8e:7c:87:7c:
                    4e:b9:5f:be:30:b0:5b:b3:25:2c:de:a3:f3:94:16:7d:
                    40:ad:22:2d:39:75:24:7d:e4:6e:c2:b7:0a:89:6d:68:
                    2c:d2:41:1a:89:28:7f:0c:ae:88:b0:73:c3:7d:2c:69:
                    b8:77:6c:3d:0f:cb:50:c6:96:9d:44:5e:42:96:d6:ab:
                    ac:31:e1:94:98:19:84:16:73:5e:43:ed:5d:d2:79:03:
                    27:4c:6e:69:65:09:d9:37:07:db:b9:a1:1e:fe:51:80:
                    72:cb:21:31:a0:64:c5:5b:e3:79:26:57:4f:43:01:9d:
                    5b:95:e7:17:bf:0a:d4:b7:94:25:3a:dd:17:a1:69:e2:
                    f8:ac:1a:db:69:e5:89:55:3c:40:79:3e:42:86:69:44:
                    b6:63:e1:7a:24:0d:13:78:24:ad:ca:a4:b7:80:ac:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:9f:03:ee:ae:6e:4c:a4:8c:97:77:46:6a:3c:81:32:
        8b:50:4b:f0:6f:20:78:87:1f:51:f1:7f:f7:b5:a4:3e:
        75:58:6f:b3:eb:3f:93:9a:0a:d9:09:2b:64:46:3b:ef:
        f5:2d:f3:19:3c:97:ac:3e:03:10:90:f4:32:aa:84:64:
        a3:71:a0:c2:62:8e:f6:5f:8f:9a:25:b4:9f:9a:c0:af:
        08:1b:be:03:11:0f:51:19:d9:a9:e5:fb:d9:08:30:f5:
        32:e9:cc:8f:95:0d:72:4e:88:b2:46:b0:3a:7e:4d:08:
        14:23:5a:33:62:61:6e:8e:61:66:7e:fc:c8:1c:ba:5c:
        d9:bf:8b:27:bc:d3:8d:a1:0d:f7:40:66:de:a4:ff:ee:
        68:e7:80:b9:55:39:f4:c9:1c:18:80:fa:28:62:13:84:
        1a:39:52:e2:81:76:4a:3a:61:cb:af:5d:50:8f:61:f9:
        80:0c:3f:1b:7d:ff:85:21:61:0f:c7:cf:5e:55:3e:6c:
        3f:02:ff:88:cb:cb:98:a1:43:dd:f1:c2:60:4b:bb:71:
        52:e7:bc:af:96:27:54:87:b9:8b:f3:58:2c:f2:91:54:
        d2:c7:61:41:33:ae:14:d8:cd:9c:df:1f:89:d0:ac:5f:
        38:bf:b1:ac:91:95:31:b5:87:32:6e:1e:b2:b3:c3:d5
    Fingerprint (SHA-256):
        46:82:9D:97:72:1B:F1:D1:37:8D:6A:54:5A:33:79:44:71:14:33:02:6C:43:C7:21:06:8C:92:2F:9D:BE:38:49
    Fingerprint (SHA1):
        3C:AD:AC:A8:72:BC:20:92:3A:92:C2:78:A0:C8:DF:74:38:EA:58:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3861: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3862: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3863: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153434 (0x1dee40da)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:34:30 2017
            Not After : Mon May 02 15:34:30 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:84:2a:4a:fb:fb:4f:83:0e:d5:12:cd:7c:38:cd:74:
                    b6:d1:95:dd:2c:af:3b:03:76:04:7c:06:79:3b:3a:69:
                    17:cc:45:f4:98:d7:42:b2:9c:3e:e1:77:8c:ce:a7:09:
                    82:65:3d:36:97:4f:da:4b:7e:d0:a9:16:c3:7a:4a:b1:
                    f3:c1:06:82:fb:a2:e1:77:5e:81:19:dc:c9:b6:35:ab:
                    b9:19:30:05:ba:89:c7:8a:1a:3e:ea:37:ab:3f:76:bc:
                    64:fe:08:cd:bb:06:40:7b:b9:ce:09:83:15:fa:9e:b1:
                    16:df:14:ec:07:42:b8:35:c9:0b:c8:8d:77:e9:55:2b:
                    e0:2f:e3:47:60:b8:93:3b:df:cc:5f:49:fb:02:2c:0b:
                    08:5d:f4:e9:3c:6b:39:35:aa:15:68:e4:27:5a:22:ac:
                    9f:91:c8:20:26:8c:a1:7e:95:d0:18:23:11:95:fe:b6:
                    57:6e:66:4a:b8:b4:4c:4b:c3:28:5a:b9:5a:a4:6a:34:
                    a4:99:01:83:dd:9d:77:49:10:a1:dd:fc:24:04:04:14:
                    da:62:c0:62:15:d3:0f:67:19:a5:42:9e:df:56:2d:bc:
                    c4:57:2c:da:d4:53:eb:f0:26:61:0e:7f:4b:eb:f2:2c:
                    e8:35:a9:85:e4:72:6c:e1:95:83:98:6a:af:9c:64:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:3e:f2:ea:0a:4a:cb:47:c8:29:40:bf:00:a3:22:e5:
        85:36:15:31:64:bb:8e:ab:97:e1:a8:02:e6:be:91:1b:
        3e:3b:cc:d9:ae:36:48:b0:9d:78:b9:c6:bd:ae:51:31:
        9d:f6:92:57:aa:fe:2a:8c:97:01:b6:12:c4:e1:68:52:
        94:9f:cb:41:79:36:84:ac:e9:fd:c3:e8:e4:bb:ac:5a:
        45:e9:4b:dc:ee:ca:5c:51:dd:e6:54:39:ce:af:f5:cf:
        49:61:62:86:ea:df:b0:f2:f4:be:0a:6a:02:d3:d0:fd:
        1a:b7:db:cb:98:bd:8d:95:68:ca:d3:f2:2d:be:4c:8e:
        66:64:13:97:95:47:8c:26:ce:40:32:15:e3:c5:57:30:
        68:97:b9:7f:a3:e1:02:cb:d8:95:7b:c9:ea:31:2d:af:
        bf:66:f2:33:75:36:a7:f8:41:ce:1e:e7:b6:4f:52:e0:
        cb:1a:11:79:42:c8:8a:8d:40:a9:07:f9:dd:41:09:21:
        65:1f:4b:71:33:72:c3:06:95:6d:38:56:58:b0:d3:3f:
        af:57:c0:b9:09:f2:cc:a4:36:7f:b2:56:b2:90:fb:dc:
        f9:7e:d3:b4:13:17:10:63:35:31:17:3a:89:76:92:5c:
        b7:bd:54:3e:13:7b:93:39:9c:5d:9e:7c:3b:f4:27:81
    Fingerprint (SHA-256):
        D5:D2:EC:35:1A:59:3A:96:D4:38:CA:17:E2:6E:89:45:8B:B4:3C:88:7A:AB:19:1A:C0:BD:B5:26:DF:0F:F3:BF
    Fingerprint (SHA1):
        00:EC:50:E7:50:B2:BA:36:26:2F:DB:F5:26:FA:E0:79:1E:13:83:47
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3864: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3865: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153437 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3866: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3867: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3868: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3869: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153438   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3870: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3871: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3872: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3873: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153439   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502153216.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3874: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3875: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3876: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3877: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153440   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3878: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3879: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3880: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153437 (0x1dee40dd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:31 2017
            Not After : Mon May 02 15:34:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:89:65:51:8a:9b:43:c4:7f:eb:1d:86:f0:05:21:b7:
                    b7:f8:47:ed:71:e1:be:39:59:d4:f9:41:f0:b8:ad:11:
                    6d:4f:65:63:db:0b:e6:c5:9e:db:49:75:9f:c8:32:57:
                    a9:1d:92:70:dd:60:3a:f8:3a:15:b4:a5:a9:61:f2:26:
                    b0:b6:e7:1e:7a:09:84:74:c0:16:ff:74:3b:09:d5:0d:
                    5b:03:ed:bf:a5:92:4c:ba:00:4d:8f:c3:62:86:5b:e5:
                    a7:95:81:86:67:52:c7:bc:34:bd:fe:7c:e1:c1:84:9f:
                    a3:de:77:9a:92:4d:d1:c2:18:23:f3:cf:a0:29:2b:50:
                    89:57:84:47:52:e5:f3:cf:31:ab:af:f3:14:61:72:fa:
                    7f:fe:5e:a4:10:c4:f4:d1:74:3f:93:58:76:dc:7e:f7:
                    d4:a2:d9:05:a5:81:4f:a1:be:20:5f:43:ce:ae:6f:e0:
                    b8:79:73:6f:89:f1:01:46:54:37:8e:d8:79:25:e0:64:
                    e1:19:35:67:75:dd:c6:be:6a:97:67:e2:bf:f4:11:ee:
                    82:8a:64:c2:f2:45:1d:d1:c1:69:5f:b0:4b:b0:b6:3c:
                    9b:d3:c5:3f:63:99:cb:6a:77:e2:f5:d7:47:57:d4:17:
                    b4:5c:0b:5e:6e:90:f8:dd:92:4d:e8:37:eb:e1:4a:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e1:ec:51:1d:34:8b:1b:29:e2:af:a0:c1:e8:5b:e0:
        2f:7b:cd:16:d9:97:36:2c:34:79:34:dc:57:46:70:a0:
        19:41:6b:6c:9c:84:42:31:a3:4f:2e:47:ba:dd:e9:c6:
        39:ec:73:fc:55:e8:e1:da:94:22:fe:67:66:39:0b:97:
        5c:e1:43:4a:5e:d6:7c:c0:3e:40:14:7f:06:6b:96:c8:
        ee:6d:6e:7c:95:df:be:68:c9:37:eb:58:4a:b4:24:cc:
        a5:c5:e0:5e:b7:b7:ac:e7:11:73:26:b7:15:17:c4:a8:
        06:cd:03:1f:1e:4f:a7:d8:5d:6f:e1:d2:8e:5f:a5:c5:
        8b:23:00:cd:8c:3a:42:3b:6c:32:8f:48:76:47:43:ec:
        74:e5:3c:d9:8c:04:5e:3b:4b:f1:1c:4c:80:f0:63:51:
        f0:eb:02:fc:91:fc:f4:00:68:f3:de:9f:aa:fc:91:e9:
        19:b1:64:c2:96:24:4d:94:4c:39:17:0e:23:a8:c5:01:
        8e:3c:fd:35:e9:d8:a9:0c:12:6f:9e:f1:36:c1:ef:26:
        66:a2:a0:f6:80:e6:5d:9b:9f:c6:e2:4b:b2:9a:59:a8:
        22:80:17:cc:7b:f1:67:4e:1a:9b:9e:da:e9:c7:86:21:
        51:4d:7a:dd:04:8a:0e:1d:c2:97:0c:44:28:43:95:08
    Fingerprint (SHA-256):
        E2:C8:32:FB:36:C1:E8:99:B2:DC:60:25:98:E4:16:6C:D1:99:00:7B:CD:3D:9C:D4:3F:71:05:92:3A:94:CC:86
    Fingerprint (SHA1):
        D7:69:46:50:FC:78:19:B6:F9:F3:58:5F:38:D3:E5:87:D0:E5:B7:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3881: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3882: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153441 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3884: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3885: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153442 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3886: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3887: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3888: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3889: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153443 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3890: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3891: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153444 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3892: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3893: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3894: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3895: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3896: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153445   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153217.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3897: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3898: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3899: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3900: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153446   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3901: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3902: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3903: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3904: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153442 (0x1dee40e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:34 2017
            Not After : Mon May 02 15:34:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:54:ac:d2:cf:6d:3a:e1:2c:fc:ef:26:5b:b2:d2:1b:
                    ba:13:ef:31:46:b8:d5:79:c9:f1:21:76:d3:b0:2b:f5:
                    37:ee:bd:a5:07:a8:20:fd:44:33:2a:a3:ae:9d:10:03:
                    5b:a8:67:dd:d4:88:28:c4:ac:14:1d:6c:7f:f8:bc:b4:
                    65:2e:e3:34:0c:6b:5b:f4:37:f9:ea:c1:c7:5f:e7:da:
                    8e:bc:53:ed:41:06:75:7e:3c:be:1f:39:7e:12:22:60:
                    36:24:d7:57:f5:83:97:7e:fd:da:67:04:83:ed:c8:eb:
                    a1:cb:de:d0:e5:b0:f1:32:74:c0:71:28:d6:80:4a:3b:
                    cc:1a:3b:ab:86:d4:e3:54:5c:4d:df:cd:91:2a:dd:d4:
                    b7:36:1f:54:4b:4b:16:03:76:4a:b8:7a:d6:d8:35:ce:
                    28:bd:4e:63:9d:2a:c3:c7:c0:a6:b3:88:55:d3:9d:a0:
                    b0:a2:c7:3e:2c:1b:9d:56:93:a6:3c:5f:a1:f6:0c:3a:
                    6b:95:ad:6b:8f:f2:8e:2b:4b:14:9f:2e:69:35:53:ec:
                    53:af:7e:b4:bb:b1:78:f3:6a:49:21:07:b2:60:5b:29:
                    fa:74:54:cf:96:cd:f3:5a:87:61:de:45:26:cf:63:62:
                    47:0d:cb:5a:54:3e:70:42:db:e5:8e:32:74:1d:72:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:38:60:60:66:76:de:15:22:f3:26:61:3d:6f:99:60:
        1f:5e:fc:96:d2:cc:b1:b0:e6:bd:d7:46:f8:60:5d:91:
        38:96:c0:98:81:20:8e:a6:ec:a5:8e:4c:d4:34:85:88:
        0a:53:9d:12:df:f5:5b:4a:ba:82:64:12:5c:0b:ea:9a:
        f8:ac:da:1e:ba:c2:fc:bf:c7:c2:62:29:1d:c7:83:7a:
        6d:60:2c:5c:54:eb:45:3f:6a:39:fa:ef:f1:29:62:cf:
        f9:f3:00:63:a3:7b:ee:e8:1e:1b:c2:28:54:32:8f:25:
        74:0d:a3:3b:e1:cd:f4:c4:17:e3:c4:ab:8e:3a:b2:98:
        1d:fc:c8:7c:6e:69:06:be:ff:00:1a:e6:9a:3e:05:77:
        5f:a2:87:40:65:52:1b:d0:b2:8f:11:c4:f2:0f:a7:78:
        6b:b0:70:6c:a4:f0:28:ad:d9:d1:41:57:94:a5:53:95:
        38:42:0d:5e:00:d5:77:b6:fc:d1:44:e3:df:9a:05:80:
        5a:05:c3:f3:f5:d7:19:35:59:49:1a:e7:de:cb:ce:05:
        dd:9a:42:80:2c:c6:44:04:6f:c9:f5:ab:e6:dd:ca:1c:
        94:9a:1c:d2:f3:2d:67:27:bd:43:b8:35:59:ae:f6:0e:
        97:ce:d7:84:d5:19:65:85:b4:4d:45:fe:2a:0a:a7:e5
    Fingerprint (SHA-256):
        9D:CC:72:7C:8B:FC:9C:4D:5E:42:97:2B:6C:B4:8D:F1:AB:65:8F:A0:D9:C5:1C:5F:5D:41:82:63:51:F8:0F:50
    Fingerprint (SHA1):
        57:34:70:FD:75:2F:37:96:CA:01:20:B0:82:07:D4:3B:D7:85:35:2C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3905: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153442 (0x1dee40e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:34 2017
            Not After : Mon May 02 15:34:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:54:ac:d2:cf:6d:3a:e1:2c:fc:ef:26:5b:b2:d2:1b:
                    ba:13:ef:31:46:b8:d5:79:c9:f1:21:76:d3:b0:2b:f5:
                    37:ee:bd:a5:07:a8:20:fd:44:33:2a:a3:ae:9d:10:03:
                    5b:a8:67:dd:d4:88:28:c4:ac:14:1d:6c:7f:f8:bc:b4:
                    65:2e:e3:34:0c:6b:5b:f4:37:f9:ea:c1:c7:5f:e7:da:
                    8e:bc:53:ed:41:06:75:7e:3c:be:1f:39:7e:12:22:60:
                    36:24:d7:57:f5:83:97:7e:fd:da:67:04:83:ed:c8:eb:
                    a1:cb:de:d0:e5:b0:f1:32:74:c0:71:28:d6:80:4a:3b:
                    cc:1a:3b:ab:86:d4:e3:54:5c:4d:df:cd:91:2a:dd:d4:
                    b7:36:1f:54:4b:4b:16:03:76:4a:b8:7a:d6:d8:35:ce:
                    28:bd:4e:63:9d:2a:c3:c7:c0:a6:b3:88:55:d3:9d:a0:
                    b0:a2:c7:3e:2c:1b:9d:56:93:a6:3c:5f:a1:f6:0c:3a:
                    6b:95:ad:6b:8f:f2:8e:2b:4b:14:9f:2e:69:35:53:ec:
                    53:af:7e:b4:bb:b1:78:f3:6a:49:21:07:b2:60:5b:29:
                    fa:74:54:cf:96:cd:f3:5a:87:61:de:45:26:cf:63:62:
                    47:0d:cb:5a:54:3e:70:42:db:e5:8e:32:74:1d:72:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:38:60:60:66:76:de:15:22:f3:26:61:3d:6f:99:60:
        1f:5e:fc:96:d2:cc:b1:b0:e6:bd:d7:46:f8:60:5d:91:
        38:96:c0:98:81:20:8e:a6:ec:a5:8e:4c:d4:34:85:88:
        0a:53:9d:12:df:f5:5b:4a:ba:82:64:12:5c:0b:ea:9a:
        f8:ac:da:1e:ba:c2:fc:bf:c7:c2:62:29:1d:c7:83:7a:
        6d:60:2c:5c:54:eb:45:3f:6a:39:fa:ef:f1:29:62:cf:
        f9:f3:00:63:a3:7b:ee:e8:1e:1b:c2:28:54:32:8f:25:
        74:0d:a3:3b:e1:cd:f4:c4:17:e3:c4:ab:8e:3a:b2:98:
        1d:fc:c8:7c:6e:69:06:be:ff:00:1a:e6:9a:3e:05:77:
        5f:a2:87:40:65:52:1b:d0:b2:8f:11:c4:f2:0f:a7:78:
        6b:b0:70:6c:a4:f0:28:ad:d9:d1:41:57:94:a5:53:95:
        38:42:0d:5e:00:d5:77:b6:fc:d1:44:e3:df:9a:05:80:
        5a:05:c3:f3:f5:d7:19:35:59:49:1a:e7:de:cb:ce:05:
        dd:9a:42:80:2c:c6:44:04:6f:c9:f5:ab:e6:dd:ca:1c:
        94:9a:1c:d2:f3:2d:67:27:bd:43:b8:35:59:ae:f6:0e:
        97:ce:d7:84:d5:19:65:85:b4:4d:45:fe:2a:0a:a7:e5
    Fingerprint (SHA-256):
        9D:CC:72:7C:8B:FC:9C:4D:5E:42:97:2B:6C:B4:8D:F1:AB:65:8F:A0:D9:C5:1C:5F:5D:41:82:63:51:F8:0F:50
    Fingerprint (SHA1):
        57:34:70:FD:75:2F:37:96:CA:01:20:B0:82:07:D4:3B:D7:85:35:2C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3907: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153447 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3909: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3910: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153448 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3911: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3912: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3913: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3914: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153449 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3915: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3916: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153450 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3917: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3918: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3919: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3920: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3921: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153451   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153218.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3922: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3923: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3924: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3925: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153452   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3926: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3927: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3928: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3929: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153453   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502153219.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3930: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3931: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3932: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3933: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153454   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3934: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3935: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3936: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3937: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153448 (0x1dee40e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:36 2017
            Not After : Mon May 02 15:34:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:fa:24:2a:a4:07:36:50:5b:99:70:6c:d7:3c:b6:9e:
                    85:62:1c:85:02:a2:39:a2:0c:f7:3c:de:17:97:94:a2:
                    b5:34:d8:92:d2:d9:a4:7b:b1:28:b5:8a:cd:a4:00:b9:
                    1d:81:d5:58:4c:ac:50:a0:4d:c9:33:93:4c:25:6d:25:
                    9b:9b:73:dd:d3:40:c3:b3:2f:b8:88:0c:84:2e:a6:f3:
                    36:3a:3d:c7:ab:a4:76:ff:d8:39:bd:f2:74:da:3c:1b:
                    87:6d:8b:49:eb:d6:1a:f2:0d:43:15:4e:b6:a9:84:e4:
                    a0:64:43:3e:1f:70:55:17:29:51:6a:15:6f:c9:f0:aa:
                    ba:a2:72:27:9d:01:31:95:f7:67:4f:9c:9f:74:46:1b:
                    66:50:d7:65:ce:53:50:5f:bb:c3:5e:2e:8b:f7:ef:fe:
                    0b:49:07:b1:c4:1c:b9:b6:4b:88:a8:95:e1:30:e6:4e:
                    31:b4:cb:ba:75:34:6a:47:83:d6:b6:16:26:06:6a:72:
                    e7:2e:b2:1d:54:44:df:8b:c1:7b:33:1e:d0:84:47:ce:
                    a5:3e:6d:9e:d8:90:8b:36:0c:20:8b:23:8f:43:05:0d:
                    88:60:25:25:f7:73:c0:d1:ad:6d:c8:85:05:03:e8:b9:
                    85:cb:61:d2:b0:97:19:8d:e7:3f:67:76:c6:ff:79:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:01:5d:84:8f:16:9e:5e:99:60:06:40:7d:e0:b1:c2:
        84:6e:9e:40:77:98:fb:3e:f0:09:52:1b:f7:1b:bb:6d:
        fa:af:c1:d3:1e:84:ad:1f:10:f2:1b:93:47:f6:c7:63:
        56:07:29:2d:7b:d1:9e:f2:8f:7a:9d:0b:c5:3f:c3:60:
        8b:96:4b:93:3e:83:e0:56:ff:69:a9:d3:b4:c3:f6:da:
        b8:87:52:63:16:e2:21:1c:0f:e7:c6:cb:00:68:93:08:
        27:15:db:7d:82:28:47:45:a7:5a:66:84:6b:30:c4:7f:
        36:43:ac:1c:f2:9c:83:d9:b1:5c:cc:34:7b:f5:be:87:
        ae:c5:e2:83:be:e5:23:75:8d:00:0d:ed:96:9c:d7:3b:
        b4:58:83:55:2f:9c:f3:83:72:d0:3c:ef:e9:3c:65:84:
        61:96:26:d3:0e:54:ef:ea:7d:cb:2f:bb:55:fc:e5:a3:
        24:90:cc:11:f4:9a:68:55:5f:28:54:e1:1a:a9:1c:f4:
        f5:c5:f2:7b:cb:e5:7e:70:8f:2f:b6:61:7c:92:09:31:
        a8:be:15:7a:8e:95:72:bb:92:6a:bb:c2:c4:5b:8c:0c:
        5c:ec:b8:40:43:2a:e3:4b:d9:af:ad:b1:69:83:f3:bd:
        1c:c3:31:ce:6b:1c:cd:6d:fb:a7:a6:ea:73:a5:82:47
    Fingerprint (SHA-256):
        7E:CF:12:97:23:14:E6:51:94:66:E0:AF:AF:3D:B8:74:7C:97:FD:6D:B6:DE:12:31:78:13:57:E2:E3:1B:9F:18
    Fingerprint (SHA1):
        DF:90:20:21:B2:15:25:22:45:EA:F3:55:D6:39:31:D7:FF:85:AF:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3938: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153448 (0x1dee40e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:36 2017
            Not After : Mon May 02 15:34:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:fa:24:2a:a4:07:36:50:5b:99:70:6c:d7:3c:b6:9e:
                    85:62:1c:85:02:a2:39:a2:0c:f7:3c:de:17:97:94:a2:
                    b5:34:d8:92:d2:d9:a4:7b:b1:28:b5:8a:cd:a4:00:b9:
                    1d:81:d5:58:4c:ac:50:a0:4d:c9:33:93:4c:25:6d:25:
                    9b:9b:73:dd:d3:40:c3:b3:2f:b8:88:0c:84:2e:a6:f3:
                    36:3a:3d:c7:ab:a4:76:ff:d8:39:bd:f2:74:da:3c:1b:
                    87:6d:8b:49:eb:d6:1a:f2:0d:43:15:4e:b6:a9:84:e4:
                    a0:64:43:3e:1f:70:55:17:29:51:6a:15:6f:c9:f0:aa:
                    ba:a2:72:27:9d:01:31:95:f7:67:4f:9c:9f:74:46:1b:
                    66:50:d7:65:ce:53:50:5f:bb:c3:5e:2e:8b:f7:ef:fe:
                    0b:49:07:b1:c4:1c:b9:b6:4b:88:a8:95:e1:30:e6:4e:
                    31:b4:cb:ba:75:34:6a:47:83:d6:b6:16:26:06:6a:72:
                    e7:2e:b2:1d:54:44:df:8b:c1:7b:33:1e:d0:84:47:ce:
                    a5:3e:6d:9e:d8:90:8b:36:0c:20:8b:23:8f:43:05:0d:
                    88:60:25:25:f7:73:c0:d1:ad:6d:c8:85:05:03:e8:b9:
                    85:cb:61:d2:b0:97:19:8d:e7:3f:67:76:c6:ff:79:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:01:5d:84:8f:16:9e:5e:99:60:06:40:7d:e0:b1:c2:
        84:6e:9e:40:77:98:fb:3e:f0:09:52:1b:f7:1b:bb:6d:
        fa:af:c1:d3:1e:84:ad:1f:10:f2:1b:93:47:f6:c7:63:
        56:07:29:2d:7b:d1:9e:f2:8f:7a:9d:0b:c5:3f:c3:60:
        8b:96:4b:93:3e:83:e0:56:ff:69:a9:d3:b4:c3:f6:da:
        b8:87:52:63:16:e2:21:1c:0f:e7:c6:cb:00:68:93:08:
        27:15:db:7d:82:28:47:45:a7:5a:66:84:6b:30:c4:7f:
        36:43:ac:1c:f2:9c:83:d9:b1:5c:cc:34:7b:f5:be:87:
        ae:c5:e2:83:be:e5:23:75:8d:00:0d:ed:96:9c:d7:3b:
        b4:58:83:55:2f:9c:f3:83:72:d0:3c:ef:e9:3c:65:84:
        61:96:26:d3:0e:54:ef:ea:7d:cb:2f:bb:55:fc:e5:a3:
        24:90:cc:11:f4:9a:68:55:5f:28:54:e1:1a:a9:1c:f4:
        f5:c5:f2:7b:cb:e5:7e:70:8f:2f:b6:61:7c:92:09:31:
        a8:be:15:7a:8e:95:72:bb:92:6a:bb:c2:c4:5b:8c:0c:
        5c:ec:b8:40:43:2a:e3:4b:d9:af:ad:b1:69:83:f3:bd:
        1c:c3:31:ce:6b:1c:cd:6d:fb:a7:a6:ea:73:a5:82:47
    Fingerprint (SHA-256):
        7E:CF:12:97:23:14:E6:51:94:66:E0:AF:AF:3D:B8:74:7C:97:FD:6D:B6:DE:12:31:78:13:57:E2:E3:1B:9F:18
    Fingerprint (SHA1):
        DF:90:20:21:B2:15:25:22:45:EA:F3:55:D6:39:31:D7:FF:85:AF:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3939: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3940: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153447 (0x1dee40e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:35 2017
            Not After : Mon May 02 15:34:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ca:c2:44:ed:5b:5f:4d:43:5c:b4:05:b5:23:fa:a2:
                    2d:1c:87:af:d5:9d:78:c1:cf:78:19:a7:34:00:4f:d7:
                    82:b3:a8:e1:8d:b4:06:13:df:f3:f4:a1:66:0f:79:ca:
                    1b:9a:6f:f6:d3:ec:1d:fe:64:ad:aa:03:a8:e1:93:8c:
                    fd:0f:2b:b7:8a:a5:b4:19:83:8d:df:b1:a5:e2:9f:a9:
                    0d:fa:04:7d:6c:97:95:79:4e:fd:5b:36:c2:38:f8:f2:
                    03:d0:be:e6:31:2d:d9:14:36:db:b6:94:2d:1f:d8:01:
                    68:d9:a9:cf:fe:40:6e:d1:17:c2:e4:11:dd:28:9b:84:
                    2f:5c:31:63:d8:e0:03:76:8e:f6:78:d5:a8:1e:11:d0:
                    a9:59:c2:19:89:99:ed:61:0d:f9:69:79:18:81:54:3d:
                    cc:e9:a1:fa:f7:b2:e9:2e:b8:2b:4d:88:9f:2c:51:dc:
                    db:3c:cc:83:c2:23:1f:f4:4d:c8:ca:c9:9d:b9:07:31:
                    03:b9:ab:a3:41:f5:22:55:f7:a5:62:4e:ef:eb:bb:c4:
                    a1:a9:3b:d1:71:94:5b:0a:81:4e:32:94:ec:89:10:4e:
                    ae:2d:84:e2:2d:d0:16:2e:cd:c0:84:2b:91:4d:f5:c5:
                    df:5a:17:2a:7b:a7:04:6a:58:b5:86:c4:f9:13:ef:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:0e:67:e4:17:37:a0:c4:a1:c2:8b:73:bc:3b:76:05:
        e1:3d:95:16:e2:fd:44:f6:d7:69:99:46:7b:83:32:67:
        10:e4:e4:bf:24:f8:ee:6a:8a:83:ff:6d:ed:69:3d:05:
        26:65:65:c4:fe:df:d3:70:57:41:c5:49:ab:e7:2e:b1:
        ce:de:23:31:88:98:be:51:64:c9:e1:dc:36:0c:fc:cc:
        d5:37:c8:e8:6d:44:7b:32:38:6b:a4:f7:7d:37:3a:17:
        55:47:6d:72:c4:87:72:0b:78:93:ad:c2:7e:8c:c5:0f:
        e7:20:fa:36:2b:49:9b:3b:9e:bb:25:63:fb:55:3c:20:
        f7:a3:69:b5:29:5f:0e:e1:f5:61:42:fc:b4:73:c6:94:
        dc:59:d2:f4:f9:af:db:cd:2b:a1:36:12:89:06:3d:a4:
        fb:97:ab:c4:ef:11:9d:46:79:95:ff:2a:23:82:b4:bf:
        b5:e3:d1:16:40:2a:f6:93:b2:86:58:fa:9f:c4:1e:78:
        69:d5:09:fe:75:f4:32:a2:b8:b2:e4:90:5c:fe:7a:5e:
        d0:a7:93:f0:c5:c5:55:dd:ae:2c:c8:6a:22:b1:62:c6:
        0b:94:eb:90:ed:77:74:ce:29:61:d4:5d:ef:4e:1a:af:
        ca:44:47:06:cb:55:a6:14:a7:40:30:89:07:ff:44:ae
    Fingerprint (SHA-256):
        98:CD:B9:7B:7A:F2:1F:03:74:5B:D1:2A:B2:1F:97:C3:DA:E3:7D:D6:0A:58:B4:2F:13:0D:89:C8:7D:32:2F:EB
    Fingerprint (SHA1):
        EB:00:F2:6E:38:DC:02:2F:DE:A7:27:A3:A1:8D:58:C5:E0:E1:F5:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3941: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153448 (0x1dee40e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:36 2017
            Not After : Mon May 02 15:34:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:fa:24:2a:a4:07:36:50:5b:99:70:6c:d7:3c:b6:9e:
                    85:62:1c:85:02:a2:39:a2:0c:f7:3c:de:17:97:94:a2:
                    b5:34:d8:92:d2:d9:a4:7b:b1:28:b5:8a:cd:a4:00:b9:
                    1d:81:d5:58:4c:ac:50:a0:4d:c9:33:93:4c:25:6d:25:
                    9b:9b:73:dd:d3:40:c3:b3:2f:b8:88:0c:84:2e:a6:f3:
                    36:3a:3d:c7:ab:a4:76:ff:d8:39:bd:f2:74:da:3c:1b:
                    87:6d:8b:49:eb:d6:1a:f2:0d:43:15:4e:b6:a9:84:e4:
                    a0:64:43:3e:1f:70:55:17:29:51:6a:15:6f:c9:f0:aa:
                    ba:a2:72:27:9d:01:31:95:f7:67:4f:9c:9f:74:46:1b:
                    66:50:d7:65:ce:53:50:5f:bb:c3:5e:2e:8b:f7:ef:fe:
                    0b:49:07:b1:c4:1c:b9:b6:4b:88:a8:95:e1:30:e6:4e:
                    31:b4:cb:ba:75:34:6a:47:83:d6:b6:16:26:06:6a:72:
                    e7:2e:b2:1d:54:44:df:8b:c1:7b:33:1e:d0:84:47:ce:
                    a5:3e:6d:9e:d8:90:8b:36:0c:20:8b:23:8f:43:05:0d:
                    88:60:25:25:f7:73:c0:d1:ad:6d:c8:85:05:03:e8:b9:
                    85:cb:61:d2:b0:97:19:8d:e7:3f:67:76:c6:ff:79:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:01:5d:84:8f:16:9e:5e:99:60:06:40:7d:e0:b1:c2:
        84:6e:9e:40:77:98:fb:3e:f0:09:52:1b:f7:1b:bb:6d:
        fa:af:c1:d3:1e:84:ad:1f:10:f2:1b:93:47:f6:c7:63:
        56:07:29:2d:7b:d1:9e:f2:8f:7a:9d:0b:c5:3f:c3:60:
        8b:96:4b:93:3e:83:e0:56:ff:69:a9:d3:b4:c3:f6:da:
        b8:87:52:63:16:e2:21:1c:0f:e7:c6:cb:00:68:93:08:
        27:15:db:7d:82:28:47:45:a7:5a:66:84:6b:30:c4:7f:
        36:43:ac:1c:f2:9c:83:d9:b1:5c:cc:34:7b:f5:be:87:
        ae:c5:e2:83:be:e5:23:75:8d:00:0d:ed:96:9c:d7:3b:
        b4:58:83:55:2f:9c:f3:83:72:d0:3c:ef:e9:3c:65:84:
        61:96:26:d3:0e:54:ef:ea:7d:cb:2f:bb:55:fc:e5:a3:
        24:90:cc:11:f4:9a:68:55:5f:28:54:e1:1a:a9:1c:f4:
        f5:c5:f2:7b:cb:e5:7e:70:8f:2f:b6:61:7c:92:09:31:
        a8:be:15:7a:8e:95:72:bb:92:6a:bb:c2:c4:5b:8c:0c:
        5c:ec:b8:40:43:2a:e3:4b:d9:af:ad:b1:69:83:f3:bd:
        1c:c3:31:ce:6b:1c:cd:6d:fb:a7:a6:ea:73:a5:82:47
    Fingerprint (SHA-256):
        7E:CF:12:97:23:14:E6:51:94:66:E0:AF:AF:3D:B8:74:7C:97:FD:6D:B6:DE:12:31:78:13:57:E2:E3:1B:9F:18
    Fingerprint (SHA1):
        DF:90:20:21:B2:15:25:22:45:EA:F3:55:D6:39:31:D7:FF:85:AF:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3942: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153448 (0x1dee40e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:36 2017
            Not After : Mon May 02 15:34:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:fa:24:2a:a4:07:36:50:5b:99:70:6c:d7:3c:b6:9e:
                    85:62:1c:85:02:a2:39:a2:0c:f7:3c:de:17:97:94:a2:
                    b5:34:d8:92:d2:d9:a4:7b:b1:28:b5:8a:cd:a4:00:b9:
                    1d:81:d5:58:4c:ac:50:a0:4d:c9:33:93:4c:25:6d:25:
                    9b:9b:73:dd:d3:40:c3:b3:2f:b8:88:0c:84:2e:a6:f3:
                    36:3a:3d:c7:ab:a4:76:ff:d8:39:bd:f2:74:da:3c:1b:
                    87:6d:8b:49:eb:d6:1a:f2:0d:43:15:4e:b6:a9:84:e4:
                    a0:64:43:3e:1f:70:55:17:29:51:6a:15:6f:c9:f0:aa:
                    ba:a2:72:27:9d:01:31:95:f7:67:4f:9c:9f:74:46:1b:
                    66:50:d7:65:ce:53:50:5f:bb:c3:5e:2e:8b:f7:ef:fe:
                    0b:49:07:b1:c4:1c:b9:b6:4b:88:a8:95:e1:30:e6:4e:
                    31:b4:cb:ba:75:34:6a:47:83:d6:b6:16:26:06:6a:72:
                    e7:2e:b2:1d:54:44:df:8b:c1:7b:33:1e:d0:84:47:ce:
                    a5:3e:6d:9e:d8:90:8b:36:0c:20:8b:23:8f:43:05:0d:
                    88:60:25:25:f7:73:c0:d1:ad:6d:c8:85:05:03:e8:b9:
                    85:cb:61:d2:b0:97:19:8d:e7:3f:67:76:c6:ff:79:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:01:5d:84:8f:16:9e:5e:99:60:06:40:7d:e0:b1:c2:
        84:6e:9e:40:77:98:fb:3e:f0:09:52:1b:f7:1b:bb:6d:
        fa:af:c1:d3:1e:84:ad:1f:10:f2:1b:93:47:f6:c7:63:
        56:07:29:2d:7b:d1:9e:f2:8f:7a:9d:0b:c5:3f:c3:60:
        8b:96:4b:93:3e:83:e0:56:ff:69:a9:d3:b4:c3:f6:da:
        b8:87:52:63:16:e2:21:1c:0f:e7:c6:cb:00:68:93:08:
        27:15:db:7d:82:28:47:45:a7:5a:66:84:6b:30:c4:7f:
        36:43:ac:1c:f2:9c:83:d9:b1:5c:cc:34:7b:f5:be:87:
        ae:c5:e2:83:be:e5:23:75:8d:00:0d:ed:96:9c:d7:3b:
        b4:58:83:55:2f:9c:f3:83:72:d0:3c:ef:e9:3c:65:84:
        61:96:26:d3:0e:54:ef:ea:7d:cb:2f:bb:55:fc:e5:a3:
        24:90:cc:11:f4:9a:68:55:5f:28:54:e1:1a:a9:1c:f4:
        f5:c5:f2:7b:cb:e5:7e:70:8f:2f:b6:61:7c:92:09:31:
        a8:be:15:7a:8e:95:72:bb:92:6a:bb:c2:c4:5b:8c:0c:
        5c:ec:b8:40:43:2a:e3:4b:d9:af:ad:b1:69:83:f3:bd:
        1c:c3:31:ce:6b:1c:cd:6d:fb:a7:a6:ea:73:a5:82:47
    Fingerprint (SHA-256):
        7E:CF:12:97:23:14:E6:51:94:66:E0:AF:AF:3D:B8:74:7C:97:FD:6D:B6:DE:12:31:78:13:57:E2:E3:1B:9F:18
    Fingerprint (SHA1):
        DF:90:20:21:B2:15:25:22:45:EA:F3:55:D6:39:31:D7:FF:85:AF:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3943: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3944: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153455 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3945: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3946: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3947: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153456 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3948: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3949: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3950: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3951: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153457   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3952: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3953: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3954: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153458   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3956: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3957: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3958: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3959: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153459 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3960: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3961: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153460 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3962: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3964: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3965: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3966: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153461   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3967: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3968: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3969: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3970: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153462   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3971: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3972: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3973: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3974: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153463   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3975: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3976: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3977: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3978: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153464   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3979: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3980: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3981: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153455 (0x1dee40ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:34:39 2017
            Not After : Mon May 02 15:34:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:77:dc:be:71:04:ae:e6:3c:5f:ec:b4:ba:16:97:27:
                    9d:fc:49:a0:73:c8:e3:97:ea:5e:fd:b5:02:7d:58:06:
                    2f:d9:2f:bc:23:3e:41:b5:fb:3d:f8:f3:8b:41:4d:81:
                    49:e1:a0:bd:ba:60:71:2f:20:6d:d7:1f:f4:6e:4f:06:
                    dd:8a:2a:11:7e:11:d4:17:a3:19:e0:7e:c0:8b:8b:b6:
                    af:14:70:c6:1f:78:77:00:23:ae:62:16:4b:34:5b:32:
                    f2:f6:83:94:0e:7c:63:2f:3a:27:fb:11:60:81:10:5c:
                    bd:ff:34:6c:34:a2:b5:8d:da:b2:82:e3:99:f0:cb:bd:
                    72:02:53:71:d0:b5:be:10:74:33:46:24:cd:b5:bc:a4:
                    b8:04:8a:88:22:b0:bd:8f:0c:14:7d:76:9f:6a:d5:99:
                    70:4b:e8:1d:1c:1c:06:34:f1:a2:75:92:a2:41:05:c3:
                    01:8e:35:20:e1:5a:70:2f:5b:d7:20:62:52:b9:0a:46:
                    e9:d2:51:85:9c:96:58:aa:ad:61:26:51:cd:0b:f7:af:
                    bb:64:97:ff:49:6d:9d:72:fc:8f:c8:bc:fd:04:79:2b:
                    c3:80:3b:7f:e5:dc:20:4f:d4:f3:87:0b:74:c6:51:ab:
                    fb:f2:24:42:f3:f4:9e:c2:93:94:3d:94:d5:fd:f7:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:e1:64:66:d3:3f:35:6d:2a:5d:e2:a2:9e:a0:7a:e6:
        32:55:67:84:39:04:1d:f3:34:6b:a9:ef:22:c0:9f:9e:
        ec:83:2c:f5:40:85:79:2d:35:55:9a:97:90:7f:85:f3:
        87:36:4f:4a:90:1f:23:0a:39:24:c5:7f:c9:d8:70:36:
        5c:38:cc:d2:e5:9b:b8:50:82:98:92:6a:45:26:64:55:
        f0:da:95:f6:c0:c2:21:41:d0:4c:36:cb:ad:21:6a:ec:
        76:d9:41:09:e6:22:32:fa:66:a7:de:40:de:ed:75:93:
        37:ea:8a:0c:22:7b:9d:b9:46:33:56:38:12:83:69:ec:
        1d:99:3d:bb:1f:d2:61:d8:5b:cf:18:d5:18:6a:11:de:
        6a:a0:31:ab:29:aa:5f:2f:ce:1d:fd:82:ad:e9:f7:21:
        4f:85:c8:47:a9:5e:d2:d4:c1:cb:3a:ab:da:a9:6b:52:
        04:8c:10:bf:7d:c8:69:36:89:67:3f:ed:20:e7:3f:fb:
        97:ab:b4:ef:60:05:ae:53:ef:03:ec:4d:f0:7e:c8:12:
        db:93:2d:3d:e0:bb:ad:0a:46:33:82:ad:18:5f:78:a8:
        00:36:4c:2a:5b:07:73:de:96:cb:89:dd:66:7f:f2:d0:
        77:fc:f3:89:7f:dd:ce:88:63:84:27:31:4d:bf:e9:b1
    Fingerprint (SHA-256):
        F8:01:90:98:1C:13:F5:01:17:1D:75:84:37:AE:69:BD:A6:2D:52:4A:C3:D7:F8:57:31:CA:4D:BF:67:95:46:28
    Fingerprint (SHA1):
        8D:30:E5:49:AF:B2:2E:50:51:9F:30:16:4C:78:01:42:75:E8:4D:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3982: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3983: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3984: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3985: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3986: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3987: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3988: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3989: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3990: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153456 (0x1dee40f0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:34:39 2017
            Not After : Mon May 02 15:34:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:78:a4:25:72:05:f2:97:37:04:a4:15:96:93:d9:ed:
                    a7:28:cb:5d:50:cf:86:83:b6:04:60:b6:3c:67:7a:67:
                    33:48:b3:16:38:92:7f:67:7d:96:ad:48:42:01:20:81:
                    f5:11:a4:2c:0d:ca:00:bc:fa:d4:41:b5:c1:51:b5:36:
                    8d:05:96:b3:fa:89:d9:b7:32:d5:b3:3c:ab:5a:d8:d2:
                    fa:12:6c:d7:24:1b:cc:10:3f:0f:be:d7:3a:4b:46:28:
                    6a:a4:a1:7f:5f:be:28:3d:3d:68:77:cd:d3:48:92:16:
                    10:9e:aa:37:68:f0:56:ba:58:5a:11:69:8e:ac:d4:44:
                    8e:9a:8f:99:22:68:e6:b8:a2:b9:88:5d:d3:40:b7:82:
                    3a:d0:5d:f8:9d:b9:92:9b:65:77:ad:a8:9d:cc:57:9f:
                    9e:df:56:1f:4b:66:04:c9:8f:00:9f:f2:00:cf:0b:0b:
                    2c:55:ca:1d:38:74:f6:c8:e4:ba:84:2c:40:c5:8f:0e:
                    74:55:ab:7f:f0:1d:4a:f6:9c:71:2e:4f:7b:da:1f:bb:
                    0e:5c:8f:d6:10:9d:6f:b0:23:70:d4:59:58:2d:51:3c:
                    d8:8e:aa:e8:12:59:04:59:14:c8:60:f4:d3:61:e1:a8:
                    b6:58:99:05:35:67:f3:8a:2c:63:9b:fb:48:0c:de:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:d2:7e:f9:d3:b5:80:33:ba:6e:9c:51:25:b1:3f:ef:
        21:d6:5c:fc:1c:68:9e:78:b0:ac:95:c8:eb:18:07:0c:
        21:7a:ff:86:68:9d:dc:ae:3c:94:3c:a7:6c:71:62:79:
        cb:1e:da:8d:f5:91:09:0c:86:44:c3:36:2e:e1:bd:aa:
        80:62:ed:ac:57:be:a1:05:83:26:28:49:ca:d7:2d:f0:
        04:0a:77:32:9c:2a:6f:14:01:d5:05:d4:b0:09:bf:ac:
        ca:84:d9:32:53:5b:b8:60:48:8a:7a:d7:78:11:7e:e7:
        67:30:79:ae:82:f4:b4:38:a2:7d:19:97:fc:0e:d3:4e:
        d8:06:cb:13:05:aa:eb:5f:bf:01:b6:4a:22:60:86:61:
        03:a1:44:bd:51:83:db:79:da:3f:f2:7f:51:49:5f:41:
        52:95:fa:4e:93:7b:4e:af:80:19:e8:fb:23:b2:fd:44:
        e2:8b:dc:c3:de:09:5c:62:0f:3a:70:fa:01:c1:59:cc:
        96:1e:2f:66:04:02:ae:08:79:ec:e0:e6:78:5f:e8:ab:
        d1:9f:06:56:fc:fa:da:83:6a:a8:66:f3:ce:43:2f:bc:
        97:1b:36:61:46:fc:43:e8:12:a5:41:48:67:45:73:a6:
        9d:41:1a:ff:51:0f:1a:f6:07:ef:03:7c:df:31:d9:23
    Fingerprint (SHA-256):
        6D:CE:16:B4:FA:BD:FD:1F:53:23:0E:6D:AC:AE:F4:28:6D:AE:88:DC:B3:BF:AB:24:BE:F1:EE:6C:15:27:06:69
    Fingerprint (SHA1):
        14:F9:85:F1:08:45:F9:AF:DF:01:11:D9:B3:13:AB:78:74:2C:66:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3991: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3992: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3993: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3994: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3995: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3996: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3997: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3998: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3999: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4000: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4001: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4002: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4003: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4004: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4005: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4006: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4007: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4008: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4009: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153465 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4010: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4011: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4012: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4013: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153466   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4014: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4015: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4016: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4017: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153467   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4018: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4019: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4020: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4021: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153468   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4022: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4023: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4024: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4025: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153469   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4026: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4027: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4028: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4029: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153470   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4030: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4031: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4032: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4033: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153471   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4034: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4036: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4037: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153472   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4038: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4039: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4040: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4041: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153473   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4042: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4043: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4044: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153465 (0x1dee40f9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:44 2017
            Not After : Mon May 02 15:34:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a1:d6:f0:1b:a6:46:38:87:22:d3:29:6c:ae:8b:47:0a:
                    de:c8:2f:24:92:ab:2f:b2:9e:21:11:89:26:7c:5e:e7:
                    c4:72:c2:cb:34:e8:5a:52:0e:4c:18:e2:6c:d3:0e:85:
                    26:f0:10:38:78:d0:96:da:af:89:ad:41:68:58:ae:8d:
                    15:6e:51:fd:ec:b4:9e:9b:c5:02:0e:e8:ca:f6:4e:21:
                    0d:3f:c1:49:99:65:ca:28:8d:84:4b:04:ff:98:04:3f:
                    30:3b:8c:64:aa:a4:f2:e9:ce:d9:2f:25:fc:01:27:55:
                    3f:42:b8:82:09:20:65:5f:c7:c7:ad:92:4e:d1:29:c0:
                    64:3e:26:5f:18:3f:a4:c8:d0:d3:e8:49:31:0a:a1:04:
                    9d:3b:27:51:2f:e9:f5:43:bb:c6:5c:fa:ae:a5:2b:95:
                    2e:49:87:2e:f9:cd:2d:7a:ce:fb:d7:a0:06:eb:f4:8d:
                    9a:83:7a:c0:4c:70:ef:19:71:ca:7b:46:46:a1:5e:21:
                    f4:cd:bb:e6:93:a8:df:34:da:14:43:2d:fb:9e:74:64:
                    1a:44:cd:5a:5e:17:e1:c7:ed:55:27:23:58:b0:e5:99:
                    31:09:9d:69:10:5a:56:88:de:75:e3:91:fd:88:1d:1e:
                    16:4c:a8:fb:9e:67:ca:18:eb:6a:e1:a8:6d:2b:cd:58
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:77:5d:f3:59:2c:51:e9:9c:4b:0e:b6:e9:
        0e:e2:db:81:e3:53:ce:8a:59:29:8d:ca:78:60:a2:97:
        02:1d:00:e5:76:84:be:4a:36:6c:ba:ac:dc:f3:a1:a1:
        ff:98:05:ba:c9:7c:69:a9:62:d5:d2:04:42:0b:1b
    Fingerprint (SHA-256):
        38:0A:C2:38:C9:C9:C4:CC:C8:53:0D:41:EF:01:56:C3:E6:08:CA:84:22:F0:C5:4B:B5:04:21:63:BC:D3:6D:2A
    Fingerprint (SHA1):
        21:07:F8:75:7D:3C:53:1C:C8:F7:26:5F:3B:7E:78:38:79:3E:07:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4045: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153465 (0x1dee40f9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:44 2017
            Not After : Mon May 02 15:34:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a1:d6:f0:1b:a6:46:38:87:22:d3:29:6c:ae:8b:47:0a:
                    de:c8:2f:24:92:ab:2f:b2:9e:21:11:89:26:7c:5e:e7:
                    c4:72:c2:cb:34:e8:5a:52:0e:4c:18:e2:6c:d3:0e:85:
                    26:f0:10:38:78:d0:96:da:af:89:ad:41:68:58:ae:8d:
                    15:6e:51:fd:ec:b4:9e:9b:c5:02:0e:e8:ca:f6:4e:21:
                    0d:3f:c1:49:99:65:ca:28:8d:84:4b:04:ff:98:04:3f:
                    30:3b:8c:64:aa:a4:f2:e9:ce:d9:2f:25:fc:01:27:55:
                    3f:42:b8:82:09:20:65:5f:c7:c7:ad:92:4e:d1:29:c0:
                    64:3e:26:5f:18:3f:a4:c8:d0:d3:e8:49:31:0a:a1:04:
                    9d:3b:27:51:2f:e9:f5:43:bb:c6:5c:fa:ae:a5:2b:95:
                    2e:49:87:2e:f9:cd:2d:7a:ce:fb:d7:a0:06:eb:f4:8d:
                    9a:83:7a:c0:4c:70:ef:19:71:ca:7b:46:46:a1:5e:21:
                    f4:cd:bb:e6:93:a8:df:34:da:14:43:2d:fb:9e:74:64:
                    1a:44:cd:5a:5e:17:e1:c7:ed:55:27:23:58:b0:e5:99:
                    31:09:9d:69:10:5a:56:88:de:75:e3:91:fd:88:1d:1e:
                    16:4c:a8:fb:9e:67:ca:18:eb:6a:e1:a8:6d:2b:cd:58
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:77:5d:f3:59:2c:51:e9:9c:4b:0e:b6:e9:
        0e:e2:db:81:e3:53:ce:8a:59:29:8d:ca:78:60:a2:97:
        02:1d:00:e5:76:84:be:4a:36:6c:ba:ac:dc:f3:a1:a1:
        ff:98:05:ba:c9:7c:69:a9:62:d5:d2:04:42:0b:1b
    Fingerprint (SHA-256):
        38:0A:C2:38:C9:C9:C4:CC:C8:53:0D:41:EF:01:56:C3:E6:08:CA:84:22:F0:C5:4B:B5:04:21:63:BC:D3:6D:2A
    Fingerprint (SHA1):
        21:07:F8:75:7D:3C:53:1C:C8:F7:26:5F:3B:7E:78:38:79:3E:07:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4046: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153465 (0x1dee40f9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:44 2017
            Not After : Mon May 02 15:34:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a1:d6:f0:1b:a6:46:38:87:22:d3:29:6c:ae:8b:47:0a:
                    de:c8:2f:24:92:ab:2f:b2:9e:21:11:89:26:7c:5e:e7:
                    c4:72:c2:cb:34:e8:5a:52:0e:4c:18:e2:6c:d3:0e:85:
                    26:f0:10:38:78:d0:96:da:af:89:ad:41:68:58:ae:8d:
                    15:6e:51:fd:ec:b4:9e:9b:c5:02:0e:e8:ca:f6:4e:21:
                    0d:3f:c1:49:99:65:ca:28:8d:84:4b:04:ff:98:04:3f:
                    30:3b:8c:64:aa:a4:f2:e9:ce:d9:2f:25:fc:01:27:55:
                    3f:42:b8:82:09:20:65:5f:c7:c7:ad:92:4e:d1:29:c0:
                    64:3e:26:5f:18:3f:a4:c8:d0:d3:e8:49:31:0a:a1:04:
                    9d:3b:27:51:2f:e9:f5:43:bb:c6:5c:fa:ae:a5:2b:95:
                    2e:49:87:2e:f9:cd:2d:7a:ce:fb:d7:a0:06:eb:f4:8d:
                    9a:83:7a:c0:4c:70:ef:19:71:ca:7b:46:46:a1:5e:21:
                    f4:cd:bb:e6:93:a8:df:34:da:14:43:2d:fb:9e:74:64:
                    1a:44:cd:5a:5e:17:e1:c7:ed:55:27:23:58:b0:e5:99:
                    31:09:9d:69:10:5a:56:88:de:75:e3:91:fd:88:1d:1e:
                    16:4c:a8:fb:9e:67:ca:18:eb:6a:e1:a8:6d:2b:cd:58
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:77:5d:f3:59:2c:51:e9:9c:4b:0e:b6:e9:
        0e:e2:db:81:e3:53:ce:8a:59:29:8d:ca:78:60:a2:97:
        02:1d:00:e5:76:84:be:4a:36:6c:ba:ac:dc:f3:a1:a1:
        ff:98:05:ba:c9:7c:69:a9:62:d5:d2:04:42:0b:1b
    Fingerprint (SHA-256):
        38:0A:C2:38:C9:C9:C4:CC:C8:53:0D:41:EF:01:56:C3:E6:08:CA:84:22:F0:C5:4B:B5:04:21:63:BC:D3:6D:2A
    Fingerprint (SHA1):
        21:07:F8:75:7D:3C:53:1C:C8:F7:26:5F:3B:7E:78:38:79:3E:07:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4047: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153465 (0x1dee40f9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:44 2017
            Not After : Mon May 02 15:34:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a1:d6:f0:1b:a6:46:38:87:22:d3:29:6c:ae:8b:47:0a:
                    de:c8:2f:24:92:ab:2f:b2:9e:21:11:89:26:7c:5e:e7:
                    c4:72:c2:cb:34:e8:5a:52:0e:4c:18:e2:6c:d3:0e:85:
                    26:f0:10:38:78:d0:96:da:af:89:ad:41:68:58:ae:8d:
                    15:6e:51:fd:ec:b4:9e:9b:c5:02:0e:e8:ca:f6:4e:21:
                    0d:3f:c1:49:99:65:ca:28:8d:84:4b:04:ff:98:04:3f:
                    30:3b:8c:64:aa:a4:f2:e9:ce:d9:2f:25:fc:01:27:55:
                    3f:42:b8:82:09:20:65:5f:c7:c7:ad:92:4e:d1:29:c0:
                    64:3e:26:5f:18:3f:a4:c8:d0:d3:e8:49:31:0a:a1:04:
                    9d:3b:27:51:2f:e9:f5:43:bb:c6:5c:fa:ae:a5:2b:95:
                    2e:49:87:2e:f9:cd:2d:7a:ce:fb:d7:a0:06:eb:f4:8d:
                    9a:83:7a:c0:4c:70:ef:19:71:ca:7b:46:46:a1:5e:21:
                    f4:cd:bb:e6:93:a8:df:34:da:14:43:2d:fb:9e:74:64:
                    1a:44:cd:5a:5e:17:e1:c7:ed:55:27:23:58:b0:e5:99:
                    31:09:9d:69:10:5a:56:88:de:75:e3:91:fd:88:1d:1e:
                    16:4c:a8:fb:9e:67:ca:18:eb:6a:e1:a8:6d:2b:cd:58
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:77:5d:f3:59:2c:51:e9:9c:4b:0e:b6:e9:
        0e:e2:db:81:e3:53:ce:8a:59:29:8d:ca:78:60:a2:97:
        02:1d:00:e5:76:84:be:4a:36:6c:ba:ac:dc:f3:a1:a1:
        ff:98:05:ba:c9:7c:69:a9:62:d5:d2:04:42:0b:1b
    Fingerprint (SHA-256):
        38:0A:C2:38:C9:C9:C4:CC:C8:53:0D:41:EF:01:56:C3:E6:08:CA:84:22:F0:C5:4B:B5:04:21:63:BC:D3:6D:2A
    Fingerprint (SHA1):
        21:07:F8:75:7D:3C:53:1C:C8:F7:26:5F:3B:7E:78:38:79:3E:07:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4048: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4049: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4050: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4051: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4052: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4053: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4054: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4055: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4056: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4057: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4058: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4059: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4060: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4061: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4062: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4063: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4064: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4065: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4066: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4067: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4068: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4069: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4070: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4071: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4072: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4073: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4074: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4075: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153450Z
nextupdate=20180502153450Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:34:50 2017
    Next Update: Wed May 02 15:34:50 2018
    CRL Extensions:
chains.sh: #4076: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153450Z
nextupdate=20180502153450Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:50 2017
    Next Update: Wed May 02 15:34:50 2018
    CRL Extensions:
chains.sh: #4077: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153450Z
nextupdate=20180502153450Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:50 2017
    Next Update: Wed May 02 15:34:50 2018
    CRL Extensions:
chains.sh: #4078: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153450Z
nextupdate=20180502153450Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:34:50 2017
    Next Update: Wed May 02 15:34:50 2018
    CRL Extensions:
chains.sh: #4079: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153451Z
addcert 14 20170502153451Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:51 2017
    Next Update: Wed May 02 15:34:50 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:34:51 2017
    CRL Extensions:
chains.sh: #4080: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153452Z
addcert 15 20170502153452Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:52 2017
    Next Update: Wed May 02 15:34:50 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:34:52 2017
    CRL Extensions:
chains.sh: #4081: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4082: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4083: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4084: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4085: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4086: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4087: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4088: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4089: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4090: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:47 2017
            Not After : Mon May 02 15:34:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:6a:bd:f9:0d:51:45:b9:28:00:db:2f:a1:1c:91:00:
                    b6:18:d4:15:4c:1f:20:93:14:54:10:60:94:ea:db:cd:
                    5b:1a:98:7d:79:c4:78:1a:77:f6:43:f8:3a:46:a1:7d:
                    e5:01:f2:a8:52:ab:31:dd:64:55:3d:42:db:7f:56:03:
                    ac:5d:c5:6d:01:e5:6c:c0:bb:a0:79:1d:c9:e0:77:99:
                    3a:5f:27:95:99:6f:ff:74:d7:c0:a1:10:3f:fc:b0:d3:
                    4f:07:4e:8f:25:69:d1:16:35:59:6b:af:f6:6d:00:5f:
                    11:b9:56:ac:d5:62:eb:65:6e:ac:fb:4b:42:64:0a:5c:
                    2e:bc:67:9c:dc:71:70:36:36:07:9e:93:84:11:97:c8:
                    b2:0b:60:ae:ba:8e:36:3d:00:f7:f2:c0:9f:68:82:e9:
                    84:42:37:b7:3d:e5:20:78:f2:30:4d:66:e9:47:89:b3:
                    74:11:c9:c3:1e:a2:df:32:b4:ed:67:6c:e7:f1:e8:6a:
                    0b:6f:d0:99:37:29:c4:7b:7f:a5:2c:5a:83:e3:b0:fb:
                    f0:0e:0a:1d:a5:f1:8b:98:8f:af:1d:d2:b8:60:96:6d:
                    28:eb:56:96:ad:95:2f:e0:cc:0c:66:45:15:01:12:fa:
                    ec:37:e8:d6:d1:5d:f0:b4:10:b7:40:e4:f4:ae:56:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:35:39:a1:d3:68:79:75:59:8f:b1:f8:a0:53:65:52:
        8b:ee:7f:0c:c5:64:4c:4e:0a:57:19:14:bf:97:e0:af:
        bf:0b:ee:38:17:04:92:09:95:fa:dd:a4:02:4f:44:c4:
        cd:c4:cc:00:17:3a:69:e0:0f:7d:b2:ce:b6:0f:07:4c:
        ca:65:87:63:de:4d:e1:cf:02:10:e6:11:78:79:95:90:
        4b:71:95:2b:85:de:56:05:9f:eb:06:e8:a4:da:ed:d3:
        e6:f1:0d:41:ac:d2:b9:8c:c3:16:52:56:b4:d5:b6:46:
        60:e5:c2:8e:5c:1c:b5:74:20:82:7d:c0:a3:f2:88:43:
        d0:26:d9:80:95:70:2a:25:bc:60:83:44:c1:6d:d4:c8:
        58:a5:a8:bf:76:93:35:ce:0d:53:c7:98:41:b3:07:0d:
        5c:01:f2:31:9f:9c:e0:a2:8b:24:28:49:3b:ba:78:22:
        c9:6c:47:52:db:07:9c:1a:81:72:47:ce:0f:ca:94:7a:
        c7:10:01:b8:4d:89:55:12:6e:d6:1f:62:ff:2b:5f:97:
        b0:cc:83:e4:f4:e5:df:3b:4d:ec:38:97:a0:f6:02:04:
        c6:47:5f:38:c4:0e:3c:5d:b6:e1:96:0d:5f:e3:4c:50:
        9a:d3:db:83:14:11:4d:1e:a1:22:ff:2b:32:c9:90:ca
    Fingerprint (SHA-256):
        0A:04:92:EB:7F:8C:E5:C8:41:DF:E6:96:F7:6E:B4:22:09:FF:BF:44:CE:C4:71:D9:30:AA:BB:F7:31:48:9A:28
    Fingerprint (SHA1):
        EA:5E:BF:3C:05:D2:FB:32:F1:BA:EC:07:EB:32:89:F5:49:0F:BA:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4091: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4092: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:47 2017
            Not After : Mon May 02 15:34:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:6a:bd:f9:0d:51:45:b9:28:00:db:2f:a1:1c:91:00:
                    b6:18:d4:15:4c:1f:20:93:14:54:10:60:94:ea:db:cd:
                    5b:1a:98:7d:79:c4:78:1a:77:f6:43:f8:3a:46:a1:7d:
                    e5:01:f2:a8:52:ab:31:dd:64:55:3d:42:db:7f:56:03:
                    ac:5d:c5:6d:01:e5:6c:c0:bb:a0:79:1d:c9:e0:77:99:
                    3a:5f:27:95:99:6f:ff:74:d7:c0:a1:10:3f:fc:b0:d3:
                    4f:07:4e:8f:25:69:d1:16:35:59:6b:af:f6:6d:00:5f:
                    11:b9:56:ac:d5:62:eb:65:6e:ac:fb:4b:42:64:0a:5c:
                    2e:bc:67:9c:dc:71:70:36:36:07:9e:93:84:11:97:c8:
                    b2:0b:60:ae:ba:8e:36:3d:00:f7:f2:c0:9f:68:82:e9:
                    84:42:37:b7:3d:e5:20:78:f2:30:4d:66:e9:47:89:b3:
                    74:11:c9:c3:1e:a2:df:32:b4:ed:67:6c:e7:f1:e8:6a:
                    0b:6f:d0:99:37:29:c4:7b:7f:a5:2c:5a:83:e3:b0:fb:
                    f0:0e:0a:1d:a5:f1:8b:98:8f:af:1d:d2:b8:60:96:6d:
                    28:eb:56:96:ad:95:2f:e0:cc:0c:66:45:15:01:12:fa:
                    ec:37:e8:d6:d1:5d:f0:b4:10:b7:40:e4:f4:ae:56:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:35:39:a1:d3:68:79:75:59:8f:b1:f8:a0:53:65:52:
        8b:ee:7f:0c:c5:64:4c:4e:0a:57:19:14:bf:97:e0:af:
        bf:0b:ee:38:17:04:92:09:95:fa:dd:a4:02:4f:44:c4:
        cd:c4:cc:00:17:3a:69:e0:0f:7d:b2:ce:b6:0f:07:4c:
        ca:65:87:63:de:4d:e1:cf:02:10:e6:11:78:79:95:90:
        4b:71:95:2b:85:de:56:05:9f:eb:06:e8:a4:da:ed:d3:
        e6:f1:0d:41:ac:d2:b9:8c:c3:16:52:56:b4:d5:b6:46:
        60:e5:c2:8e:5c:1c:b5:74:20:82:7d:c0:a3:f2:88:43:
        d0:26:d9:80:95:70:2a:25:bc:60:83:44:c1:6d:d4:c8:
        58:a5:a8:bf:76:93:35:ce:0d:53:c7:98:41:b3:07:0d:
        5c:01:f2:31:9f:9c:e0:a2:8b:24:28:49:3b:ba:78:22:
        c9:6c:47:52:db:07:9c:1a:81:72:47:ce:0f:ca:94:7a:
        c7:10:01:b8:4d:89:55:12:6e:d6:1f:62:ff:2b:5f:97:
        b0:cc:83:e4:f4:e5:df:3b:4d:ec:38:97:a0:f6:02:04:
        c6:47:5f:38:c4:0e:3c:5d:b6:e1:96:0d:5f:e3:4c:50:
        9a:d3:db:83:14:11:4d:1e:a1:22:ff:2b:32:c9:90:ca
    Fingerprint (SHA-256):
        0A:04:92:EB:7F:8C:E5:C8:41:DF:E6:96:F7:6E:B4:22:09:FF:BF:44:CE:C4:71:D9:30:AA:BB:F7:31:48:9A:28
    Fingerprint (SHA1):
        EA:5E:BF:3C:05:D2:FB:32:F1:BA:EC:07:EB:32:89:F5:49:0F:BA:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4093: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4094: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4095: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153474 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4096: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4097: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4098: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4099: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153475   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4100: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4101: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4102: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153246.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4103: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153220.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4104: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4105: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4106: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153246.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4107: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153476   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4108: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4109: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4110: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153246.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4111: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153221.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4112: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4113: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4114: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4115: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153477   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4116: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4117: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4118: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153246.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4119: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153222.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4120: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4121: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4122: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153246.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4123: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153223.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4124: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4125: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153456Z
nextupdate=20180502153456Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:34:56 2017
    Next Update: Wed May 02 15:34:56 2018
    CRL Extensions:
chains.sh: #4126: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153456Z
nextupdate=20180502153456Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:56 2017
    Next Update: Wed May 02 15:34:56 2018
    CRL Extensions:
chains.sh: #4127: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153456Z
nextupdate=20180502153456Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:34:56 2017
    Next Update: Wed May 02 15:34:56 2018
    CRL Extensions:
chains.sh: #4128: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153456Z
nextupdate=20180502153456Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:34:56 2017
    Next Update: Wed May 02 15:34:56 2018
    CRL Extensions:
chains.sh: #4129: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153457Z
addcert 20 20170502153457Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:57 2017
    Next Update: Wed May 02 15:34:56 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:34:57 2017
    CRL Extensions:
chains.sh: #4130: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153458Z
addcert 40 20170502153458Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:34:58 2017
    Next Update: Wed May 02 15:34:56 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:34:57 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:34:58 2017
    CRL Extensions:
chains.sh: #4131: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4132: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4133: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4134: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153474 (0x1dee4102)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:22:bb:ad:fd:f7:62:50:53:b1:3d:a6:47:e1:e0:a9:
                    58:f9:6a:82:f0:b3:cf:b9:f3:3b:26:b1:a2:5e:0a:f6:
                    1c:10:7f:42:68:56:0c:9a:7e:72:26:ff:d1:a7:d1:9a:
                    df:53:c6:5c:e6:32:1f:1a:94:27:be:23:01:3c:90:40:
                    92:ee:d2:5f:cb:51:37:a1:19:b9:8e:7e:63:59:69:87:
                    bd:89:aa:3a:48:d2:fc:12:ad:ea:88:5a:28:f3:f9:b8:
                    d9:cf:22:5b:d0:65:e3:90:7d:ac:b3:dc:0a:dc:26:61:
                    da:04:75:fb:25:79:fe:b1:8a:f3:87:40:aa:c4:3d:df:
                    db:5a:ca:6f:ac:2a:0f:1c:d6:9c:44:36:4e:c9:c0:dc:
                    9f:9c:3a:1a:dc:d5:b5:6c:68:ec:45:f7:d7:98:36:59:
                    fe:b5:28:64:ca:d4:5b:61:71:f9:54:d1:c8:6f:c1:96:
                    a2:ec:22:0a:6b:a6:86:be:c5:51:f0:b8:41:f6:81:e4:
                    fa:9e:46:7b:02:e7:40:5f:ea:85:bb:90:60:93:b0:43:
                    d8:96:ff:52:75:55:4e:97:46:40:d4:1e:63:a5:b5:4f:
                    2e:c2:f1:bf:e9:b1:1c:2c:69:1d:62:76:e3:01:6f:d1:
                    03:d0:13:d6:e1:b6:fe:95:cd:14:92:7d:0d:4d:ac:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:fa:42:f4:47:9f:a5:2a:3e:95:f0:76:b2:4f:c8:8f:
        45:5b:b3:81:5f:02:51:3e:9c:a3:10:4c:ff:83:c4:df:
        41:e0:6f:a5:a5:0a:18:02:5f:ea:7b:15:29:e4:06:26:
        83:ec:1c:1c:8a:70:8d:f4:9b:8f:4e:61:40:cd:e2:17:
        46:22:8a:f2:0b:25:0f:15:30:8e:c6:25:f1:9e:47:9b:
        55:78:c5:67:82:fd:58:42:3f:84:c5:f8:f7:43:14:39:
        da:ec:4a:36:fd:27:0c:6f:32:4e:1e:85:d9:25:87:3b:
        a3:e7:d1:9f:f4:e1:49:a8:a2:51:f9:7a:99:d1:d3:10:
        1d:17:01:ef:a6:5f:57:18:cd:54:b0:b4:58:ac:f6:14:
        bf:64:2e:2b:44:4c:13:44:89:fd:d5:43:57:2b:48:39:
        06:58:36:d9:94:04:2a:08:c9:e5:18:f9:44:47:c9:81:
        57:01:92:4f:59:6b:a5:59:c9:80:7e:c8:51:8e:45:1a:
        87:9d:10:0d:c5:7d:2e:71:38:3e:ee:b2:0d:4b:d5:2b:
        2c:10:36:cc:49:4f:62:23:aa:38:32:dd:de:4a:51:f0:
        5b:9e:d1:49:6b:9a:11:54:cf:2b:1d:66:06:4c:68:20:
        95:57:34:bd:2f:43:d9:2b:26:ae:9b:c1:5d:ba:ab:c2
    Fingerprint (SHA-256):
        7D:60:6A:12:E9:8C:E8:99:85:C4:3E:4D:2D:B5:73:F8:D9:A0:6B:6C:FC:CA:53:CF:CA:80:28:18:37:17:24:BE
    Fingerprint (SHA1):
        35:B8:67:19:C8:97:52:65:1A:01:A3:39:60:D0:4D:2E:8C:B3:88:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4135: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4136: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153474 (0x1dee4102)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:34:52 2017
            Not After : Mon May 02 15:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:22:bb:ad:fd:f7:62:50:53:b1:3d:a6:47:e1:e0:a9:
                    58:f9:6a:82:f0:b3:cf:b9:f3:3b:26:b1:a2:5e:0a:f6:
                    1c:10:7f:42:68:56:0c:9a:7e:72:26:ff:d1:a7:d1:9a:
                    df:53:c6:5c:e6:32:1f:1a:94:27:be:23:01:3c:90:40:
                    92:ee:d2:5f:cb:51:37:a1:19:b9:8e:7e:63:59:69:87:
                    bd:89:aa:3a:48:d2:fc:12:ad:ea:88:5a:28:f3:f9:b8:
                    d9:cf:22:5b:d0:65:e3:90:7d:ac:b3:dc:0a:dc:26:61:
                    da:04:75:fb:25:79:fe:b1:8a:f3:87:40:aa:c4:3d:df:
                    db:5a:ca:6f:ac:2a:0f:1c:d6:9c:44:36:4e:c9:c0:dc:
                    9f:9c:3a:1a:dc:d5:b5:6c:68:ec:45:f7:d7:98:36:59:
                    fe:b5:28:64:ca:d4:5b:61:71:f9:54:d1:c8:6f:c1:96:
                    a2:ec:22:0a:6b:a6:86:be:c5:51:f0:b8:41:f6:81:e4:
                    fa:9e:46:7b:02:e7:40:5f:ea:85:bb:90:60:93:b0:43:
                    d8:96:ff:52:75:55:4e:97:46:40:d4:1e:63:a5:b5:4f:
                    2e:c2:f1:bf:e9:b1:1c:2c:69:1d:62:76:e3:01:6f:d1:
                    03:d0:13:d6:e1:b6:fe:95:cd:14:92:7d:0d:4d:ac:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:fa:42:f4:47:9f:a5:2a:3e:95:f0:76:b2:4f:c8:8f:
        45:5b:b3:81:5f:02:51:3e:9c:a3:10:4c:ff:83:c4:df:
        41:e0:6f:a5:a5:0a:18:02:5f:ea:7b:15:29:e4:06:26:
        83:ec:1c:1c:8a:70:8d:f4:9b:8f:4e:61:40:cd:e2:17:
        46:22:8a:f2:0b:25:0f:15:30:8e:c6:25:f1:9e:47:9b:
        55:78:c5:67:82:fd:58:42:3f:84:c5:f8:f7:43:14:39:
        da:ec:4a:36:fd:27:0c:6f:32:4e:1e:85:d9:25:87:3b:
        a3:e7:d1:9f:f4:e1:49:a8:a2:51:f9:7a:99:d1:d3:10:
        1d:17:01:ef:a6:5f:57:18:cd:54:b0:b4:58:ac:f6:14:
        bf:64:2e:2b:44:4c:13:44:89:fd:d5:43:57:2b:48:39:
        06:58:36:d9:94:04:2a:08:c9:e5:18:f9:44:47:c9:81:
        57:01:92:4f:59:6b:a5:59:c9:80:7e:c8:51:8e:45:1a:
        87:9d:10:0d:c5:7d:2e:71:38:3e:ee:b2:0d:4b:d5:2b:
        2c:10:36:cc:49:4f:62:23:aa:38:32:dd:de:4a:51:f0:
        5b:9e:d1:49:6b:9a:11:54:cf:2b:1d:66:06:4c:68:20:
        95:57:34:bd:2f:43:d9:2b:26:ae:9b:c1:5d:ba:ab:c2
    Fingerprint (SHA-256):
        7D:60:6A:12:E9:8C:E8:99:85:C4:3E:4D:2D:B5:73:F8:D9:A0:6B:6C:FC:CA:53:CF:CA:80:28:18:37:17:24:BE
    Fingerprint (SHA1):
        35:B8:67:19:C8:97:52:65:1A:01:A3:39:60:D0:4D:2E:8C:B3:88:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4137: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4138: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4139: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153478 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4140: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4141: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4142: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4143: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153479   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4144: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4145: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4146: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4147: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153480   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4148: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4149: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4150: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4151: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153481   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4152: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4153: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4154: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502153482 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4155: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4156: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4157: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4158: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153483   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4159: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4160: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4161: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4162: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153484   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4163: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4164: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4165: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4166: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4167: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:59 2017
            Not After : Mon May 02 15:34:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:b5:b9:08:24:fb:10:44:ba:98:15:8a:cd:4c:64:26:
                    4e:45:5c:da:55:96:22:77:22:e6:34:4d:a9:5a:15:46:
                    99:09:4e:08:bb:fd:17:44:96:c9:8f:a0:1e:d9:43:5f:
                    2d:0a:23:13:67:49:9f:89:be:05:f8:a1:61:27:0d:c7:
                    0f:cc:12:57:10:7a:28:bf:b6:8f:32:6c:37:16:7f:a2:
                    5f:7e:32:66:72:0c:f6:00:6c:75:69:21:84:dd:8d:81:
                    e9:f4:99:29:fb:ff:8f:3f:c0:83:9a:1e:53:84:a2:f0:
                    c4:42:f3:ce:25:d0:0a:4b:ca:41:4a:7f:48:34:67:4d:
                    d6:6d:84:fc:ec:56:53:fa:fe:94:80:36:40:10:ea:bc:
                    9b:11:c6:44:6f:be:2c:48:ae:d8:8d:55:e0:31:7f:20:
                    8e:cf:90:23:df:ee:b0:aa:e8:49:f7:7e:1b:08:02:d5:
                    fc:b2:74:c5:fd:ff:d3:1b:27:89:77:bc:48:bc:e3:99:
                    1e:c5:29:06:34:0b:76:8b:7b:d8:1a:9f:4f:63:66:b7:
                    da:2e:fa:90:70:03:21:51:5a:f3:25:2a:78:77:ec:d9:
                    a7:be:f1:6d:b4:f4:e4:fe:b4:b2:c0:24:85:b9:ee:6e:
                    12:ea:9c:8e:e9:b7:50:ac:f2:c1:ee:40:00:b9:0e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:be:68:b4:37:7e:33:6c:5a:7b:2e:53:cc:f7:7e:b3:
        72:77:7f:46:ee:13:09:88:28:df:2f:0b:67:15:78:07:
        f1:a1:e1:a5:ea:cd:ad:7e:1b:79:f0:13:83:0f:65:5c:
        6d:cf:98:c5:30:07:d8:7b:e0:d5:87:d0:bc:56:30:a5:
        94:b6:ea:b4:1d:dc:ec:2c:3c:53:16:5e:5a:31:a2:24:
        0b:fe:64:47:75:19:b6:7a:08:94:9e:8a:f2:4e:ab:ee:
        fa:d6:af:6e:8d:21:a7:15:a2:03:7a:44:b2:7a:3c:c0:
        bb:b3:62:86:e5:9d:40:90:7c:47:02:b1:be:c5:0a:72:
        c8:8b:1e:f2:94:c3:aa:13:71:ee:7e:5b:12:a1:a8:42:
        fa:67:b7:1f:6a:18:75:4a:2b:cf:5c:ab:0b:5f:06:e4:
        b5:ad:11:12:73:83:3a:6d:3b:3d:7e:f4:55:66:a1:cd:
        5f:46:9f:13:bf:10:9f:dc:2f:0e:aa:b3:e6:a5:fc:ff:
        01:bd:e3:7a:35:ba:89:ab:ee:37:39:de:a2:e8:a4:ca:
        14:83:3d:43:24:d6:61:dc:86:b5:de:c7:88:ed:99:2d:
        23:49:b7:6e:d1:9a:5d:73:c6:db:d6:88:b9:82:9f:88:
        6e:bb:bf:05:a0:79:60:97:0c:d1:dc:ed:25:1a:e4:99
    Fingerprint (SHA-256):
        0E:3C:01:F7:1C:19:AC:7A:F9:45:42:04:B9:EB:DE:46:E9:29:72:06:C3:94:A7:3B:A6:40:3F:7E:51:7D:C2:3E
    Fingerprint (SHA1):
        1E:E0:72:A2:21:61:40:E0:D7:A7:B9:33:15:FB:3E:31:53:FE:8E:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4168: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153480 (0x1dee4108)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:00 2017
            Not After : Mon May 02 15:35:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:46:88:d1:32:20:19:16:82:47:0a:44:b8:54:7b:18:
                    34:b4:3f:51:23:65:46:c7:9e:ae:30:ec:75:09:32:b9:
                    e2:b1:0e:37:5e:af:2f:f3:f9:d2:1e:6a:b1:0a:f9:43:
                    cd:ff:43:87:8d:da:2d:9e:f4:16:2e:5e:10:cf:84:7e:
                    93:a6:e4:b1:d9:e8:82:94:b7:aa:5e:5b:e3:a0:af:55:
                    b0:61:af:27:45:68:3e:27:34:ea:ab:4f:06:0f:91:b5:
                    9c:a6:dc:63:45:12:c5:c0:22:c1:b0:0f:c5:89:fb:fa:
                    8a:47:3f:52:ae:e7:4a:35:b1:ed:62:80:9f:26:bb:9e:
                    00:b8:32:f9:bf:fb:7d:b3:a2:aa:0d:11:88:ee:91:da:
                    76:f4:03:a0:64:a5:c8:39:f4:cf:22:86:38:08:ec:97:
                    91:e2:3c:1d:a7:17:db:42:f9:f6:a5:53:7d:c0:51:db:
                    6a:6a:87:b6:c8:c8:55:bd:7c:00:15:c2:fb:dc:3e:6b:
                    67:93:73:3d:12:56:1a:6e:a7:47:78:e8:de:ad:fd:0f:
                    4f:f9:1b:19:12:d4:21:9b:91:64:a9:b4:85:5c:10:ae:
                    df:d7:71:34:19:ef:73:e7:7a:17:ed:b9:0f:59:ff:9b:
                    0f:5e:41:d2:a2:0e:e8:46:34:71:35:60:0f:37:1e:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:01:69:0f:94:7f:d2:43:d2:09:b5:83:7a:6f:64:7e:
        58:bd:b7:01:2f:b8:2b:fa:84:4f:ff:91:94:8b:b6:42:
        7a:8f:54:c9:c8:6b:80:ce:a0:69:0b:b8:ba:3c:3b:0c:
        31:c7:c1:81:fd:1c:d4:cf:94:8c:d1:fc:5d:e0:92:2c:
        69:97:fe:b2:ba:34:5e:77:0c:7f:db:a3:66:c9:fa:22:
        2f:64:25:44:fc:a2:80:78:95:1d:e6:a3:a5:0f:2a:99:
        d9:04:56:92:06:f8:70:86:f9:9c:af:d0:e7:98:e8:f9:
        0b:93:fb:da:ce:5f:3e:f4:1a:6b:63:90:ce:f8:a2:05:
        eb:15:5b:33:0a:48:47:6c:97:8f:75:f0:45:15:94:b9:
        85:58:60:7e:48:68:f6:9b:b0:31:36:f2:26:4f:9d:74:
        16:75:d5:bb:ba:d8:89:33:16:f8:f7:ea:52:6c:02:f2:
        11:0e:83:7b:c4:89:0e:de:79:51:e9:20:90:6e:c9:ce:
        5a:55:fa:ea:4a:a2:5c:36:4c:0e:0f:73:d8:3b:0d:8a:
        90:45:fc:ff:ec:27:99:b2:36:57:29:6b:4b:21:30:99:
        b8:7f:56:b0:ad:08:e8:34:b4:55:49:8d:c5:89:04:af:
        53:33:0e:02:e5:ee:a7:84:08:e1:26:03:b3:00:00:7a
    Fingerprint (SHA-256):
        D5:C3:F1:86:70:6F:1C:79:11:BB:F7:F4:AA:F9:26:89:2B:02:26:E5:23:7D:93:2F:73:A7:FD:55:DC:F0:56:97
    Fingerprint (SHA1):
        EC:E9:8C:B7:CA:BB:69:45:EE:11:94:58:13:B2:B4:63:A1:D8:F0:C7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4169: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:59 2017
            Not After : Mon May 02 15:34:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:b5:b9:08:24:fb:10:44:ba:98:15:8a:cd:4c:64:26:
                    4e:45:5c:da:55:96:22:77:22:e6:34:4d:a9:5a:15:46:
                    99:09:4e:08:bb:fd:17:44:96:c9:8f:a0:1e:d9:43:5f:
                    2d:0a:23:13:67:49:9f:89:be:05:f8:a1:61:27:0d:c7:
                    0f:cc:12:57:10:7a:28:bf:b6:8f:32:6c:37:16:7f:a2:
                    5f:7e:32:66:72:0c:f6:00:6c:75:69:21:84:dd:8d:81:
                    e9:f4:99:29:fb:ff:8f:3f:c0:83:9a:1e:53:84:a2:f0:
                    c4:42:f3:ce:25:d0:0a:4b:ca:41:4a:7f:48:34:67:4d:
                    d6:6d:84:fc:ec:56:53:fa:fe:94:80:36:40:10:ea:bc:
                    9b:11:c6:44:6f:be:2c:48:ae:d8:8d:55:e0:31:7f:20:
                    8e:cf:90:23:df:ee:b0:aa:e8:49:f7:7e:1b:08:02:d5:
                    fc:b2:74:c5:fd:ff:d3:1b:27:89:77:bc:48:bc:e3:99:
                    1e:c5:29:06:34:0b:76:8b:7b:d8:1a:9f:4f:63:66:b7:
                    da:2e:fa:90:70:03:21:51:5a:f3:25:2a:78:77:ec:d9:
                    a7:be:f1:6d:b4:f4:e4:fe:b4:b2:c0:24:85:b9:ee:6e:
                    12:ea:9c:8e:e9:b7:50:ac:f2:c1:ee:40:00:b9:0e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:be:68:b4:37:7e:33:6c:5a:7b:2e:53:cc:f7:7e:b3:
        72:77:7f:46:ee:13:09:88:28:df:2f:0b:67:15:78:07:
        f1:a1:e1:a5:ea:cd:ad:7e:1b:79:f0:13:83:0f:65:5c:
        6d:cf:98:c5:30:07:d8:7b:e0:d5:87:d0:bc:56:30:a5:
        94:b6:ea:b4:1d:dc:ec:2c:3c:53:16:5e:5a:31:a2:24:
        0b:fe:64:47:75:19:b6:7a:08:94:9e:8a:f2:4e:ab:ee:
        fa:d6:af:6e:8d:21:a7:15:a2:03:7a:44:b2:7a:3c:c0:
        bb:b3:62:86:e5:9d:40:90:7c:47:02:b1:be:c5:0a:72:
        c8:8b:1e:f2:94:c3:aa:13:71:ee:7e:5b:12:a1:a8:42:
        fa:67:b7:1f:6a:18:75:4a:2b:cf:5c:ab:0b:5f:06:e4:
        b5:ad:11:12:73:83:3a:6d:3b:3d:7e:f4:55:66:a1:cd:
        5f:46:9f:13:bf:10:9f:dc:2f:0e:aa:b3:e6:a5:fc:ff:
        01:bd:e3:7a:35:ba:89:ab:ee:37:39:de:a2:e8:a4:ca:
        14:83:3d:43:24:d6:61:dc:86:b5:de:c7:88:ed:99:2d:
        23:49:b7:6e:d1:9a:5d:73:c6:db:d6:88:b9:82:9f:88:
        6e:bb:bf:05:a0:79:60:97:0c:d1:dc:ed:25:1a:e4:99
    Fingerprint (SHA-256):
        0E:3C:01:F7:1C:19:AC:7A:F9:45:42:04:B9:EB:DE:46:E9:29:72:06:C3:94:A7:3B:A6:40:3F:7E:51:7D:C2:3E
    Fingerprint (SHA1):
        1E:E0:72:A2:21:61:40:E0:D7:A7:B9:33:15:FB:3E:31:53:FE:8E:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4170: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4171: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:59 2017
            Not After : Mon May 02 15:34:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:b5:b9:08:24:fb:10:44:ba:98:15:8a:cd:4c:64:26:
                    4e:45:5c:da:55:96:22:77:22:e6:34:4d:a9:5a:15:46:
                    99:09:4e:08:bb:fd:17:44:96:c9:8f:a0:1e:d9:43:5f:
                    2d:0a:23:13:67:49:9f:89:be:05:f8:a1:61:27:0d:c7:
                    0f:cc:12:57:10:7a:28:bf:b6:8f:32:6c:37:16:7f:a2:
                    5f:7e:32:66:72:0c:f6:00:6c:75:69:21:84:dd:8d:81:
                    e9:f4:99:29:fb:ff:8f:3f:c0:83:9a:1e:53:84:a2:f0:
                    c4:42:f3:ce:25:d0:0a:4b:ca:41:4a:7f:48:34:67:4d:
                    d6:6d:84:fc:ec:56:53:fa:fe:94:80:36:40:10:ea:bc:
                    9b:11:c6:44:6f:be:2c:48:ae:d8:8d:55:e0:31:7f:20:
                    8e:cf:90:23:df:ee:b0:aa:e8:49:f7:7e:1b:08:02:d5:
                    fc:b2:74:c5:fd:ff:d3:1b:27:89:77:bc:48:bc:e3:99:
                    1e:c5:29:06:34:0b:76:8b:7b:d8:1a:9f:4f:63:66:b7:
                    da:2e:fa:90:70:03:21:51:5a:f3:25:2a:78:77:ec:d9:
                    a7:be:f1:6d:b4:f4:e4:fe:b4:b2:c0:24:85:b9:ee:6e:
                    12:ea:9c:8e:e9:b7:50:ac:f2:c1:ee:40:00:b9:0e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:be:68:b4:37:7e:33:6c:5a:7b:2e:53:cc:f7:7e:b3:
        72:77:7f:46:ee:13:09:88:28:df:2f:0b:67:15:78:07:
        f1:a1:e1:a5:ea:cd:ad:7e:1b:79:f0:13:83:0f:65:5c:
        6d:cf:98:c5:30:07:d8:7b:e0:d5:87:d0:bc:56:30:a5:
        94:b6:ea:b4:1d:dc:ec:2c:3c:53:16:5e:5a:31:a2:24:
        0b:fe:64:47:75:19:b6:7a:08:94:9e:8a:f2:4e:ab:ee:
        fa:d6:af:6e:8d:21:a7:15:a2:03:7a:44:b2:7a:3c:c0:
        bb:b3:62:86:e5:9d:40:90:7c:47:02:b1:be:c5:0a:72:
        c8:8b:1e:f2:94:c3:aa:13:71:ee:7e:5b:12:a1:a8:42:
        fa:67:b7:1f:6a:18:75:4a:2b:cf:5c:ab:0b:5f:06:e4:
        b5:ad:11:12:73:83:3a:6d:3b:3d:7e:f4:55:66:a1:cd:
        5f:46:9f:13:bf:10:9f:dc:2f:0e:aa:b3:e6:a5:fc:ff:
        01:bd:e3:7a:35:ba:89:ab:ee:37:39:de:a2:e8:a4:ca:
        14:83:3d:43:24:d6:61:dc:86:b5:de:c7:88:ed:99:2d:
        23:49:b7:6e:d1:9a:5d:73:c6:db:d6:88:b9:82:9f:88:
        6e:bb:bf:05:a0:79:60:97:0c:d1:dc:ed:25:1a:e4:99
    Fingerprint (SHA-256):
        0E:3C:01:F7:1C:19:AC:7A:F9:45:42:04:B9:EB:DE:46:E9:29:72:06:C3:94:A7:3B:A6:40:3F:7E:51:7D:C2:3E
    Fingerprint (SHA1):
        1E:E0:72:A2:21:61:40:E0:D7:A7:B9:33:15:FB:3E:31:53:FE:8E:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4172: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153480 (0x1dee4108)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:35:00 2017
            Not After : Mon May 02 15:35:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:46:88:d1:32:20:19:16:82:47:0a:44:b8:54:7b:18:
                    34:b4:3f:51:23:65:46:c7:9e:ae:30:ec:75:09:32:b9:
                    e2:b1:0e:37:5e:af:2f:f3:f9:d2:1e:6a:b1:0a:f9:43:
                    cd:ff:43:87:8d:da:2d:9e:f4:16:2e:5e:10:cf:84:7e:
                    93:a6:e4:b1:d9:e8:82:94:b7:aa:5e:5b:e3:a0:af:55:
                    b0:61:af:27:45:68:3e:27:34:ea:ab:4f:06:0f:91:b5:
                    9c:a6:dc:63:45:12:c5:c0:22:c1:b0:0f:c5:89:fb:fa:
                    8a:47:3f:52:ae:e7:4a:35:b1:ed:62:80:9f:26:bb:9e:
                    00:b8:32:f9:bf:fb:7d:b3:a2:aa:0d:11:88:ee:91:da:
                    76:f4:03:a0:64:a5:c8:39:f4:cf:22:86:38:08:ec:97:
                    91:e2:3c:1d:a7:17:db:42:f9:f6:a5:53:7d:c0:51:db:
                    6a:6a:87:b6:c8:c8:55:bd:7c:00:15:c2:fb:dc:3e:6b:
                    67:93:73:3d:12:56:1a:6e:a7:47:78:e8:de:ad:fd:0f:
                    4f:f9:1b:19:12:d4:21:9b:91:64:a9:b4:85:5c:10:ae:
                    df:d7:71:34:19:ef:73:e7:7a:17:ed:b9:0f:59:ff:9b:
                    0f:5e:41:d2:a2:0e:e8:46:34:71:35:60:0f:37:1e:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:01:69:0f:94:7f:d2:43:d2:09:b5:83:7a:6f:64:7e:
        58:bd:b7:01:2f:b8:2b:fa:84:4f:ff:91:94:8b:b6:42:
        7a:8f:54:c9:c8:6b:80:ce:a0:69:0b:b8:ba:3c:3b:0c:
        31:c7:c1:81:fd:1c:d4:cf:94:8c:d1:fc:5d:e0:92:2c:
        69:97:fe:b2:ba:34:5e:77:0c:7f:db:a3:66:c9:fa:22:
        2f:64:25:44:fc:a2:80:78:95:1d:e6:a3:a5:0f:2a:99:
        d9:04:56:92:06:f8:70:86:f9:9c:af:d0:e7:98:e8:f9:
        0b:93:fb:da:ce:5f:3e:f4:1a:6b:63:90:ce:f8:a2:05:
        eb:15:5b:33:0a:48:47:6c:97:8f:75:f0:45:15:94:b9:
        85:58:60:7e:48:68:f6:9b:b0:31:36:f2:26:4f:9d:74:
        16:75:d5:bb:ba:d8:89:33:16:f8:f7:ea:52:6c:02:f2:
        11:0e:83:7b:c4:89:0e:de:79:51:e9:20:90:6e:c9:ce:
        5a:55:fa:ea:4a:a2:5c:36:4c:0e:0f:73:d8:3b:0d:8a:
        90:45:fc:ff:ec:27:99:b2:36:57:29:6b:4b:21:30:99:
        b8:7f:56:b0:ad:08:e8:34:b4:55:49:8d:c5:89:04:af:
        53:33:0e:02:e5:ee:a7:84:08:e1:26:03:b3:00:00:7a
    Fingerprint (SHA-256):
        D5:C3:F1:86:70:6F:1C:79:11:BB:F7:F4:AA:F9:26:89:2B:02:26:E5:23:7D:93:2F:73:A7:FD:55:DC:F0:56:97
    Fingerprint (SHA1):
        EC:E9:8C:B7:CA:BB:69:45:EE:11:94:58:13:B2:B4:63:A1:D8:F0:C7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4173: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4174: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4175: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4176: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:59 2017
            Not After : Mon May 02 15:34:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:b5:b9:08:24:fb:10:44:ba:98:15:8a:cd:4c:64:26:
                    4e:45:5c:da:55:96:22:77:22:e6:34:4d:a9:5a:15:46:
                    99:09:4e:08:bb:fd:17:44:96:c9:8f:a0:1e:d9:43:5f:
                    2d:0a:23:13:67:49:9f:89:be:05:f8:a1:61:27:0d:c7:
                    0f:cc:12:57:10:7a:28:bf:b6:8f:32:6c:37:16:7f:a2:
                    5f:7e:32:66:72:0c:f6:00:6c:75:69:21:84:dd:8d:81:
                    e9:f4:99:29:fb:ff:8f:3f:c0:83:9a:1e:53:84:a2:f0:
                    c4:42:f3:ce:25:d0:0a:4b:ca:41:4a:7f:48:34:67:4d:
                    d6:6d:84:fc:ec:56:53:fa:fe:94:80:36:40:10:ea:bc:
                    9b:11:c6:44:6f:be:2c:48:ae:d8:8d:55:e0:31:7f:20:
                    8e:cf:90:23:df:ee:b0:aa:e8:49:f7:7e:1b:08:02:d5:
                    fc:b2:74:c5:fd:ff:d3:1b:27:89:77:bc:48:bc:e3:99:
                    1e:c5:29:06:34:0b:76:8b:7b:d8:1a:9f:4f:63:66:b7:
                    da:2e:fa:90:70:03:21:51:5a:f3:25:2a:78:77:ec:d9:
                    a7:be:f1:6d:b4:f4:e4:fe:b4:b2:c0:24:85:b9:ee:6e:
                    12:ea:9c:8e:e9:b7:50:ac:f2:c1:ee:40:00:b9:0e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:be:68:b4:37:7e:33:6c:5a:7b:2e:53:cc:f7:7e:b3:
        72:77:7f:46:ee:13:09:88:28:df:2f:0b:67:15:78:07:
        f1:a1:e1:a5:ea:cd:ad:7e:1b:79:f0:13:83:0f:65:5c:
        6d:cf:98:c5:30:07:d8:7b:e0:d5:87:d0:bc:56:30:a5:
        94:b6:ea:b4:1d:dc:ec:2c:3c:53:16:5e:5a:31:a2:24:
        0b:fe:64:47:75:19:b6:7a:08:94:9e:8a:f2:4e:ab:ee:
        fa:d6:af:6e:8d:21:a7:15:a2:03:7a:44:b2:7a:3c:c0:
        bb:b3:62:86:e5:9d:40:90:7c:47:02:b1:be:c5:0a:72:
        c8:8b:1e:f2:94:c3:aa:13:71:ee:7e:5b:12:a1:a8:42:
        fa:67:b7:1f:6a:18:75:4a:2b:cf:5c:ab:0b:5f:06:e4:
        b5:ad:11:12:73:83:3a:6d:3b:3d:7e:f4:55:66:a1:cd:
        5f:46:9f:13:bf:10:9f:dc:2f:0e:aa:b3:e6:a5:fc:ff:
        01:bd:e3:7a:35:ba:89:ab:ee:37:39:de:a2:e8:a4:ca:
        14:83:3d:43:24:d6:61:dc:86:b5:de:c7:88:ed:99:2d:
        23:49:b7:6e:d1:9a:5d:73:c6:db:d6:88:b9:82:9f:88:
        6e:bb:bf:05:a0:79:60:97:0c:d1:dc:ed:25:1a:e4:99
    Fingerprint (SHA-256):
        0E:3C:01:F7:1C:19:AC:7A:F9:45:42:04:B9:EB:DE:46:E9:29:72:06:C3:94:A7:3B:A6:40:3F:7E:51:7D:C2:3E
    Fingerprint (SHA1):
        1E:E0:72:A2:21:61:40:E0:D7:A7:B9:33:15:FB:3E:31:53:FE:8E:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4177: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153482 (0x1dee410a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:35:01 2017
            Not After : Mon May 02 15:35:01 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:01:ce:25:ab:03:a8:d6:9c:f8:f5:12:15:ba:6c:aa:
                    88:a7:0e:75:fd:3b:3d:70:d8:95:8d:53:fd:ce:ae:d6:
                    f8:e1:45:cb:2c:24:75:08:30:7d:c8:78:c9:cb:88:fd:
                    c7:fe:bf:49:44:f8:69:2d:fc:3d:3e:10:57:b5:bd:a3:
                    d3:fc:0a:fd:d8:13:b1:7a:53:72:a0:1b:22:7e:0c:28:
                    c6:9d:62:ea:e7:cc:15:7b:02:ea:c4:70:3a:af:08:f6:
                    14:43:e7:38:74:94:37:4f:c8:a1:83:a6:0e:88:cf:f2:
                    86:f4:d6:9b:73:76:5f:61:33:9f:c0:49:7f:d6:9d:4f:
                    a8:73:77:46:38:49:79:03:47:b8:c5:ba:4c:66:a8:7f:
                    4b:9b:b2:d0:9b:e3:14:28:e4:74:fd:b6:cc:26:20:e8:
                    01:18:6c:b0:89:74:f9:e1:5f:0c:0d:af:83:00:d5:3c:
                    38:63:fb:9b:0d:97:d0:1e:8d:ea:8e:dc:54:d8:eb:c5:
                    51:3e:67:75:f0:69:67:b4:03:aa:c3:4d:a2:fb:09:48:
                    0c:f8:85:5f:56:f5:cf:81:69:75:b5:5b:55:b0:ac:7c:
                    93:16:0c:21:a8:de:91:cd:d5:3d:8a:19:50:3d:f5:8e:
                    9f:03:62:05:38:9a:1e:2f:eb:ce:ed:49:8f:c5:92:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:d2:16:f3:10:92:55:44:e4:12:f3:23:4f:cc:de:7b:
        90:78:c8:50:d3:fe:67:e2:19:31:63:20:25:c1:58:68:
        f5:c5:b3:0b:67:7a:b6:3a:10:cd:5a:17:9c:8c:7c:ff:
        f4:c1:d9:96:25:2a:67:9d:01:10:9e:f4:cc:55:97:72:
        4d:a4:a2:98:62:be:90:d9:8c:ca:ae:a0:c3:46:90:52:
        91:55:86:97:05:0b:44:bf:6a:57:dd:0b:44:b2:1a:8e:
        39:b4:8b:f8:25:ec:60:a4:81:26:d4:5e:c5:1c:af:e9:
        fe:99:70:39:67:d1:47:d8:e7:f9:fc:62:9b:fc:e2:83:
        b7:15:cc:9a:75:ca:1e:6a:35:d7:e4:2c:d2:90:4a:bc:
        50:18:3e:b9:db:60:63:45:77:39:e9:c0:99:31:77:49:
        94:52:8a:23:2e:ca:d5:d3:b1:d2:08:9d:00:bd:27:d3:
        52:60:a1:01:f0:9d:a6:8a:b6:ac:0a:28:60:75:a9:2f:
        f6:29:01:02:89:53:49:37:b0:91:7e:a8:ec:27:74:5a:
        ab:87:23:17:a4:37:10:54:76:d6:02:2c:d7:06:db:9b:
        99:7a:34:35:e8:8f:34:7b:d1:1f:5f:08:e6:78:ef:86:
        44:0e:59:50:11:2d:92:fb:15:8a:71:00:96:27:0e:3e
    Fingerprint (SHA-256):
        DB:D6:C1:D2:43:73:76:BE:D8:67:60:11:3F:70:D6:61:C6:36:EF:07:E1:24:26:82:A0:4F:58:A0:95:59:C4:60
    Fingerprint (SHA1):
        D3:14:65:21:5B:83:7B:61:36:4D:CE:8A:D3:42:40:25:03:3D:05:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4178: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153478 (0x1dee4106)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:34:59 2017
            Not After : Mon May 02 15:34:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:b5:b9:08:24:fb:10:44:ba:98:15:8a:cd:4c:64:26:
                    4e:45:5c:da:55:96:22:77:22:e6:34:4d:a9:5a:15:46:
                    99:09:4e:08:bb:fd:17:44:96:c9:8f:a0:1e:d9:43:5f:
                    2d:0a:23:13:67:49:9f:89:be:05:f8:a1:61:27:0d:c7:
                    0f:cc:12:57:10:7a:28:bf:b6:8f:32:6c:37:16:7f:a2:
                    5f:7e:32:66:72:0c:f6:00:6c:75:69:21:84:dd:8d:81:
                    e9:f4:99:29:fb:ff:8f:3f:c0:83:9a:1e:53:84:a2:f0:
                    c4:42:f3:ce:25:d0:0a:4b:ca:41:4a:7f:48:34:67:4d:
                    d6:6d:84:fc:ec:56:53:fa:fe:94:80:36:40:10:ea:bc:
                    9b:11:c6:44:6f:be:2c:48:ae:d8:8d:55:e0:31:7f:20:
                    8e:cf:90:23:df:ee:b0:aa:e8:49:f7:7e:1b:08:02:d5:
                    fc:b2:74:c5:fd:ff:d3:1b:27:89:77:bc:48:bc:e3:99:
                    1e:c5:29:06:34:0b:76:8b:7b:d8:1a:9f:4f:63:66:b7:
                    da:2e:fa:90:70:03:21:51:5a:f3:25:2a:78:77:ec:d9:
                    a7:be:f1:6d:b4:f4:e4:fe:b4:b2:c0:24:85:b9:ee:6e:
                    12:ea:9c:8e:e9:b7:50:ac:f2:c1:ee:40:00:b9:0e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:be:68:b4:37:7e:33:6c:5a:7b:2e:53:cc:f7:7e:b3:
        72:77:7f:46:ee:13:09:88:28:df:2f:0b:67:15:78:07:
        f1:a1:e1:a5:ea:cd:ad:7e:1b:79:f0:13:83:0f:65:5c:
        6d:cf:98:c5:30:07:d8:7b:e0:d5:87:d0:bc:56:30:a5:
        94:b6:ea:b4:1d:dc:ec:2c:3c:53:16:5e:5a:31:a2:24:
        0b:fe:64:47:75:19:b6:7a:08:94:9e:8a:f2:4e:ab:ee:
        fa:d6:af:6e:8d:21:a7:15:a2:03:7a:44:b2:7a:3c:c0:
        bb:b3:62:86:e5:9d:40:90:7c:47:02:b1:be:c5:0a:72:
        c8:8b:1e:f2:94:c3:aa:13:71:ee:7e:5b:12:a1:a8:42:
        fa:67:b7:1f:6a:18:75:4a:2b:cf:5c:ab:0b:5f:06:e4:
        b5:ad:11:12:73:83:3a:6d:3b:3d:7e:f4:55:66:a1:cd:
        5f:46:9f:13:bf:10:9f:dc:2f:0e:aa:b3:e6:a5:fc:ff:
        01:bd:e3:7a:35:ba:89:ab:ee:37:39:de:a2:e8:a4:ca:
        14:83:3d:43:24:d6:61:dc:86:b5:de:c7:88:ed:99:2d:
        23:49:b7:6e:d1:9a:5d:73:c6:db:d6:88:b9:82:9f:88:
        6e:bb:bf:05:a0:79:60:97:0c:d1:dc:ed:25:1a:e4:99
    Fingerprint (SHA-256):
        0E:3C:01:F7:1C:19:AC:7A:F9:45:42:04:B9:EB:DE:46:E9:29:72:06:C3:94:A7:3B:A6:40:3F:7E:51:7D:C2:3E
    Fingerprint (SHA1):
        1E:E0:72:A2:21:61:40:E0:D7:A7:B9:33:15:FB:3E:31:53:FE:8E:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4179: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4180: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4181: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4182: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4183: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4184: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153483 (0x1dee410b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:35:01 2017
            Not After : Mon May 02 15:35:01 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:4d:73:dd:ac:79:25:a8:f4:2e:48:66:33:0d:ee:fa:
                    d0:ff:03:c5:e9:e8:e4:cf:27:97:8d:c9:41:5d:ff:07:
                    b2:f3:1c:c5:85:3e:5d:fb:f5:4f:d2:9c:1d:26:85:a6:
                    f1:0c:9d:b4:bd:61:89:d8:dd:17:e3:86:bc:7f:10:30:
                    fe:7c:a2:28:45:1b:9d:10:d2:bf:65:f8:58:80:99:1a:
                    ce:9c:d9:60:77:4f:4b:9c:57:0d:ac:76:2a:b6:f4:bf:
                    32:48:c9:e7:f2:63:3e:c7:1c:f2:d3:20:41:78:62:6f:
                    47:7a:c9:01:be:b4:c3:d3:bd:81:10:69:f1:dc:5b:18:
                    d9:54:71:7d:be:55:a7:c1:0d:bc:d5:4e:a5:c3:6e:14:
                    fd:35:cb:26:d7:e0:24:1a:e0:3c:96:8a:d9:b3:02:66:
                    de:55:87:0e:84:12:4b:4a:53:79:d9:f6:b5:d7:4b:e8:
                    d3:41:52:eb:0c:85:54:9a:1e:d6:89:55:7a:38:95:0c:
                    78:03:5e:b2:72:d3:d2:aa:b7:5e:1e:af:d0:c6:ac:70:
                    62:68:d3:87:dc:18:97:4c:7d:34:84:89:8d:ab:db:49:
                    65:8f:5d:ae:db:1b:18:37:eb:44:7b:fa:78:cb:59:c3:
                    6c:5a:b9:6f:7c:09:c2:c9:0d:65:a1:dc:0f:ed:71:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:29:82:5f:78:a8:e3:2a:dc:4c:8b:d7:26:57:33:89:
        99:00:44:68:86:92:96:23:c2:a3:d5:97:34:12:51:cc:
        90:94:5c:fd:a9:a9:ec:dc:b2:51:31:a1:c3:38:60:45:
        87:41:27:a0:4e:6c:26:d7:76:7a:a0:c1:2d:c2:84:32:
        69:35:ce:b0:f9:9c:fc:aa:75:1f:d1:97:5b:d7:5f:12:
        d8:e9:b0:42:0f:63:ef:3c:ce:45:db:fe:1e:af:9d:61:
        75:92:2d:96:8c:48:66:01:ef:e0:7e:ec:4d:21:dd:fc:
        6d:ac:37:a5:70:f9:fc:ca:e5:94:f7:22:5a:e3:63:31:
        e8:91:0e:c5:fd:18:44:60:f0:99:ad:17:60:cc:b3:d7:
        36:76:32:24:43:a7:45:01:de:3c:89:f1:23:b1:66:24:
        31:0f:cd:42:6a:68:20:71:e3:24:21:1b:e6:ef:86:71:
        13:10:3b:2e:d2:d4:28:b3:6c:1f:3a:b6:ff:c4:e4:9b:
        ef:3a:cf:ed:c4:60:f2:7e:56:74:1a:c2:50:02:50:09:
        fa:2f:3b:a7:46:94:f4:78:b2:69:8a:91:4a:e6:11:3a:
        5b:4a:ae:79:d8:14:1b:b9:09:bd:de:d2:f3:d1:4e:d1:
        7d:11:7c:5a:7c:f4:e9:0f:1d:00:4c:1c:ca:8c:1d:30
    Fingerprint (SHA-256):
        82:64:1F:2B:E1:6E:1C:90:DE:E4:5C:F2:59:A9:AD:73:4E:48:A8:E6:AF:E1:50:10:9B:CE:DE:07:74:31:70:3D
    Fingerprint (SHA1):
        58:3B:D7:A4:7A:41:BE:39:46:1D:91:31:7A:F8:52:65:0F:8B:5C:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4185: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4186: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4187: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4188: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4189: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4190: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4191: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4192: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4193: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4194: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4195: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4196: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4197: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4198: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4199: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4200: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4201: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4202: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4203: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4204: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4205: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4206: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4207: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4208: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 3565 at Tue May  2 15:35:03 UTC 2017
kill -USR1 3565
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 3565 killed at Tue May  2 15:35:03 UTC 2017
TIMESTAMP chains END: Tue May  2 15:35:03 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:35:03 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:35:03 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4209: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:35:03 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:35:03 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4210: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4211: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4212: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4213: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4214: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4215: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:35:04 UTC 2017
TIMESTAMP ec END: Tue May  2 15:35:04 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:35:04 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4216: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4217: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4218: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4219: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4220: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4221: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4222: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4223: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4224: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4225: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4226: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4227: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4228: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4229: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4230: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4231: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4232: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #4233: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #4234: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:35:04 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:35:04 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4235: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4236: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4237: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4238: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4239: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4240: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4241: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4242: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4243: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4244: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4245: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4246: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4247: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4248: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4249: create certificate: sign  - PASSED
ssl_gtest.sh: #4250: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:35:05 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:35:05 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:35:05 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:35:05 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #4251: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #4252: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4253: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4254: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4255: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #4256: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4257: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4258: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4259: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4260: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4261: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4262: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4263: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #4264: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4265: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4266: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4267: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4268: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4269: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4270: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4271: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4272: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4273: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4274: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4275: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4276: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4277: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4278: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4279: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4280: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4281: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4282: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4283: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4284: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4285: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4286: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #4287: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4288: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4289: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4290: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4291: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4292: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4293: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4294: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4295: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4296: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4297: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4298: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4299: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #4300: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4301: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4302: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #4303: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4304: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4305: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4306: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #4307: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4308: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4309: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4310: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #4311: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4312: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4313: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #4314: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4315: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4316: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4317: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #4318: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4319: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4320: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4321: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4322: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4323: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4324: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4325: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4326: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4327: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4328: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #4329: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4330: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4331: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #4332: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4333: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4334: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4335: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #4336: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4337: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4338: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4339: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #4340: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4341: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4342: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #4343: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4344: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4345: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4346: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #4347: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4348: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4349: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4350: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4351: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4352: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4353: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4354: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4355: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4356: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4357: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #4358: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4359: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #4360: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4361: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #4362: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4363: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #4364: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4365: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4366: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #4367: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4368: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4369: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #4370: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4371: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4372: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #4373: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4374: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4375: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #4376: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4377: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4378: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4379: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #4380: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4381: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #4382: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4383: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #4384: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4385: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4386: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4387: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4388: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4389: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4390: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4391: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4392: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4393: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4394: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4395: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4396: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4397: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4398: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #4399: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4400: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4401: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4402: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4403: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4404: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4405: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4406: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4407: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4408: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4409: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4410: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4411: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4412: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4413: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4414: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4415: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #4416: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4417: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #4418: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4419: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4420: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4421: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #4422: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4423: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4424: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #4425: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4426: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4427: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #4428: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4429: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4430: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #4431: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4432: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4433: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #4434: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4435: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #4436: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4437: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #4438: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4439: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4440: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4441: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #4442: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4443: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4444: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #4445: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4446: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4447: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #4448: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4449: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4450: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #4451: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4452: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4453: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #4454: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4455: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #4456: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4457: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #4458: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4459: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #4460: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4461: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #4462: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4463: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4464: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #4465: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4466: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4467: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #4468: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4469: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4470: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #4471: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4472: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4473: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #4474: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4475: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #4476: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4477: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #4478: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4479: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #4480: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4481: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4482: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4483: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4484: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4485: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4486: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4487: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4488: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4489: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4490: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4491: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4492: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4493: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4494: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4495: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #4496: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4497: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4498: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4499: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4500: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #4501: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4502: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4503: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #4504: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4505: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #4506: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4507: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #4508: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4509: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #4510: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4511: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #4512: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4513: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4514: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #4515: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4516: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4517: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #4518: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4519: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #4520: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4521: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #4522: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4523: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #4524: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4525: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #4526: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4527: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4528: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #4529: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4530: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4531: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #4532: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4533: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4534: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #4535: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4536: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4537: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #4538: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4539: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:30
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:20 2017
            Not After : Wed Aug 02 15:35:20 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:19:3c:5f:29:4e:78:22:fd:0e:9c:79:23:8a:eb:cc:
                    85:da:75:95:e0:3a:9c:67:3a:a4:6a:fa:5e:e4:ba:b3:
                    4d:fd:e1:4a:79:0f:85:64:30:2f:5a:63:60:1b:49:9e:
                    a1:47:bb:4e:f0:c2:05:db:ff:0c:36:34:18:99:45:7e:
                    85:14:0d:85:f8:4b:2d:e6:99:de:7f:2d:88:3f:84:b8:
                    bc:8a:a1:d9:ab:08:1b:a9:30:9f:41:b5:04:f7:a5:26:
                    5e:13:fe:b2:d9:5d:da:b2:e2:3a:a8:33:09:d9:ca:ca:
                    c4:3d:da:e9:1d:62:ee:f3:dd:4a:89:ff:0b:02:46:5d:
                    a0:35:69:88:7c:89:b0:11:3a:b0:19:e9:36:2b:41:2d:
                    04:b6:00:ab:7c:08:36:fd:b8:a1:b6:4e:5a:87:9d:ca:
                    ba:34:c9:bc:22:14:0b:98:9a:dc:5e:5d:93:78:60:d3:
                    0e:6f:a5:51:77:f3:70:9a:ca:41:2c:10:0a:3d:0f:70:
                    44:90:a3:09:af:57:ce:17:c9:6d:a0:73:80:87:5d:27:
                    ea:57:4e:5c:63:e6:6f:e8:6b:9b:7c:74:df:45:16:e0:
                    25:df:2f:ae:40:97:3a:9e:78:eb:e4:99:32:cb:b3:d3:
                    8d:66:e0:fb:f9:3a:cc:8d:20:58:73:f8:82:fb:5c:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:10:42:00:26:3d:ba:10:fe:cd:56:27:81:f7:f1:a3:
        c2:6b:b0:d3:5e:0b:fd:87:38:72:2f:aa:0d:3b:67:94:
        8c:64:1b:9f:37:4f:b6:61:32:09:b8:71:e9:24:74:e2:
        f0:20:9f:ad:da:09:e2:ac:75:ab:de:f8:a2:08:37:32:
        13:80:ba:39:93:f0:a7:c7:75:56:76:3e:7e:bf:ab:aa:
        9b:60:95:89:39:33:19:d2:ae:5b:7d:e2:aa:5f:82:59:
        27:f0:4f:5a:9e:5e:5c:7e:57:83:8a:eb:1b:1a:0e:0d:
        9b:e0:e0:00:fc:73:f8:d8:c0:ab:34:b5:42:df:bf:60:
        17:85:ba:9a:23:3e:91:10:f1:0a:9a:01:cf:3b:33:0a:
        e1:3d:5d:0e:ea:af:56:7a:89:d3:d6:08:f8:fb:8d:bf:
        7d:62:5d:69:77:ec:2a:9b:b2:83:17:78:93:49:0a:1a:
        5b:35:74:75:86:8d:f8:66:86:f3:d1:a9:6d:c7:97:ae:
        23:98:e9:3e:cf:74:48:fb:cb:a8:85:fb:6c:3d:75:0b:
        e8:7b:93:c4:5b:5f:87:06:d3:6b:f2:09:72:5e:09:42:
        b9:2d:58:01:7b:93:a8:b7:49:fc:58:fe:17:f9:1f:55:
        8a:77:38:6d:40:12:77:ff:69:4e:15:0b:71:e3:83:26
    Fingerprint (SHA-256):
        E8:55:C0:B2:1A:0B:6F:26:37:B7:04:6F:42:A6:52:7F:BC:B3:27:38:C5:B5:0E:5E:6F:FE:91:E4:26:13:7D:E7
    Fingerprint (SHA1):
        99:A4:31:B1:FF:13:FA:E9:44:1B:AA:6F:2F:D3:AF:41:7A:8D:B4:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4540: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:32
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:21 2017
            Not After : Wed Aug 02 15:35:21 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:f3:0a:57:df:4c:a4:0e:82:0c:00:13:3c:e4:78:1a:
                    b0:e0:ed:bf:f5:d8:ba:0f:8f:0c:ca:69:87:13:3e:7b:
                    e4:c2:0a:dc:67:05:31:f3:d8:f6:60:46:58:f6:d5:88:
                    6d:b6:4b:f7:a7:68:85:a1:2c:4b:20:4d:a9:11:d3:e4:
                    cd:b7:17:4b:42:e3:7f:28:76:cf:22:65:41:3e:e9:79:
                    f1:76:9a:15:13:6c:02:7c:ec:75:5b:b4:89:0d:11:0c:
                    7f:85:8a:1e:1e:c5:d9:46:8a:d6:78:6e:3d:39:79:3d:
                    a4:d5:8c:de:b3:40:0d:66:eb:82:64:4b:6e:b6:f6:04:
                    e9:78:0c:60:9e:a9:74:c1:db:64:f1:5e:b4:e4:d8:fc:
                    ca:c0:e5:d9:3e:8a:4c:b1:c9:17:5e:9b:c3:6a:5f:a9:
                    13:5a:0c:00:aa:3e:c7:a3:d0:76:18:52:e3:1c:57:59:
                    95:de:a2:07:27:fe:e8:c6:48:66:08:00:6b:bf:88:82:
                    81:c8:1e:97:8b:47:56:82:cd:8c:7d:e1:42:85:51:be:
                    20:c5:0f:b1:c5:6e:8b:fa:89:36:2d:8e:aa:f0:30:7c:
                    a2:e0:57:6f:c0:7b:c4:ea:aa:13:38:59:b4:0c:21:b7:
                    7c:b5:6d:6b:a1:35:b0:0b:26:78:bd:28:af:cf:7b:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:40:23:bd:f6:3a:81:b1:d9:1c:0e:58:26:de:80:76:
        7b:7b:f1:42:ea:d7:5a:7b:5a:58:91:b0:26:6a:f7:25:
        24:80:b2:4d:29:c4:e1:81:85:3e:55:d7:c0:0b:a4:93:
        53:28:40:14:35:cf:34:24:4d:50:71:20:2c:14:c0:28:
        dc:fa:df:48:81:09:e9:b1:84:18:23:ec:f5:9c:b1:07:
        87:17:7d:83:bb:15:8a:05:65:e5:45:51:50:58:22:3a:
        cb:7e:bb:31:c3:b6:f9:82:39:30:14:da:6f:a9:32:1d:
        82:e6:08:68:89:70:cf:89:f5:47:a5:4e:16:3a:ea:d6:
        2f:b4:a9:b5:97:6e:67:d1:b1:8e:2e:35:ad:d8:06:60:
        63:f6:ae:f2:e6:ff:10:c6:59:ee:38:ea:d9:e5:fb:03:
        cb:5b:1b:14:07:20:ef:c8:c9:e4:bc:75:bc:97:52:94:
        21:38:ba:93:13:eb:1d:ab:29:b7:11:ea:ed:b6:df:01:
        85:28:b3:3e:a9:e0:ef:da:f9:37:11:37:41:19:b7:20:
        8e:88:b7:19:75:66:37:89:6b:0c:37:3c:35:fc:6c:07:
        8a:d6:63:a6:03:2c:33:c3:08:b4:2a:56:a9:01:33:57:
        ad:25:19:a1:20:50:41:99:1e:3d:ba:b7:2f:9a:83:64
    Fingerprint (SHA-256):
        16:98:44:62:4A:D8:3F:47:F4:0D:B7:8D:D3:10:59:50:BE:47:7A:8E:3A:48:C5:4F:AC:E0:25:C1:25:9B:11:82
    Fingerprint (SHA1):
        05:21:99:99:D3:ED:97:AA:0F:86:F2:0B:62:7F:13:95:6D:59:EB:6F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4541: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:33
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:21 2017
            Not After : Wed Aug 02 15:35:21 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:29:d0:c7:c7:b9:2a:e9:c7:cc:b6:11:bd:5e:e1:20:
                    2c:6f:56:72:d9:c1:94:10:37:e5:cd:1e:07:59:ab:e3:
                    59:8f:49:b1:25:ab:f5:e0:e2:3c:1c:8c:62:89:bb:78:
                    bf:e9:0b:88:82:4b:75:72:23:5a:24:d6:f2:ce:85:3d:
                    b3:fc:80:da:89:40:97:fc:6d:24:8f:2f:f9:f8:94:b3:
                    1f:98:5d:99:86:c3:91:8a:9b:6a:af:8c:77:4c:99:78:
                    10:0a:c4:fa:44:b3:95:28:32:5d:c1:a1:22:48:b9:86:
                    92:fa:c1:d4:08:4d:18:c3:fe:b1:3b:c8:a6:a0:ba:15:
                    c5:fa:19:fb:cb:83:b2:34:65:09:31:f0:0a:c9:39:37:
                    f9:c3:f9:a4:4b:3a:5f:44:2f:8c:f3:44:58:ac:e4:0b:
                    2d:0b:32:1e:b1:d8:e9:90:5c:20:ce:3a:aa:b8:3d:de:
                    d1:de:62:03:06:12:c9:80:2f:0b:05:04:b8:49:97:71:
                    57:97:f4:e7:a0:62:56:53:fa:70:5c:16:ef:02:d0:75:
                    d3:86:74:02:15:d8:b5:2e:10:93:19:53:a1:5b:26:21:
                    38:f8:41:89:a5:81:06:27:6c:5e:45:c2:28:d5:f1:d1:
                    cb:c1:b3:f3:ab:7c:bf:dd:35:f9:41:57:b7:ad:57:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:72:02:52:3b:67:c3:5b:ee:bc:f2:53:72:3d:01:bf:
        7d:a9:e3:36:e6:cc:5c:a1:f3:82:34:ea:c2:0a:dc:93:
        6a:32:bb:96:57:44:d1:88:a0:36:06:c0:f0:63:cb:f0:
        3d:8f:cf:01:c5:a5:93:68:83:b9:c5:9b:e6:65:7f:51:
        49:4a:51:0c:f4:18:34:67:38:3f:2c:57:36:24:60:d8:
        23:07:ad:20:a8:5f:9f:f0:24:cf:1c:d0:0b:1b:67:bd:
        87:25:cd:95:6a:0c:d6:36:ae:51:06:c9:e8:85:b2:09:
        66:13:5b:ba:40:8b:fa:5b:af:44:62:46:ef:66:cc:b0:
        f8:0e:af:ed:89:e2:2e:bb:96:6e:2e:ec:23:fa:fc:9a:
        0f:e3:65:70:a7:8d:d2:c0:ed:80:3c:bb:6c:22:18:f0:
        3b:66:8f:2b:68:a9:10:fe:93:39:f6:47:1c:76:ad:26:
        f6:16:90:d5:d6:ad:c2:3f:b6:61:aa:77:22:79:4a:4c:
        c2:31:f9:3d:3e:34:64:c5:86:b5:ce:e4:65:47:f3:b7:
        a9:3d:48:c7:95:cb:69:69:82:14:aa:b9:b0:e9:64:53:
        e5:2e:ea:f4:d5:75:c0:ff:ce:27:4f:5d:e0:73:d0:1d:
        66:05:c5:b7:0b:bf:b0:21:32:10:fc:89:61:50:74:d3
    Fingerprint (SHA-256):
        1E:4D:58:FC:1A:36:4A:6C:59:96:75:2A:8E:82:D3:F2:28:E7:EB:24:DD:67:D3:6B:62:FB:A7:15:DC:CD:50:86
    Fingerprint (SHA1):
        8D:31:D2:75:BD:4D:0B:87:E4:68:7F:65:C5:72:CF:3E:60:9F:85:43
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4542: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:34
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:21 2017
            Not After : Wed Aug 02 15:35:21 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:19:37:8f:b4:f2:f7:6b:02:c7:d6:23:a2:d0:f9:05:
                    71:09:1d:48:1d:77:14:21:9a:6f:0d:93:78:67:22:ce:
                    62:33:db:11:c2:56:60:78:69:84:86:9e:f8:10:df:30:
                    d6:3f:df:38:d4:bb:40:37:ff:ab:19:89:a0:0f:57:22:
                    1a:d7:0b:40:d6:a0:31:f1:f7:18:f3:12:b8:b1:51:f7:
                    16:db:4d:bb:96:52:2d:24:c2:2c:07:38:7c:d5:01:2c:
                    57:5a:d6:2a:8e:80:51:c6:c8:ab:ee:63:c6:76:06:fc:
                    24:43:63:93:97:98:fc:8d:d0:9b:d5:be:ef:cd:5a:ca:
                    a1:1f:40:96:fc:57:0f:f7:32:b9:da:28:38:40:a5:fd:
                    2d:2e:c7:3a:d7:7f:a4:2f:aa:dc:aa:20:56:6d:5d:0e:
                    0b:e3:6d:37:07:be:4f:67:7b:04:7c:08:16:14:c6:8e:
                    5c:0d:b5:02:d4:32:db:40:6f:6d:81:71:b2:1f:32:a5:
                    56:a1:90:26:06:f4:fd:f3:01:60:9e:11:b2:0f:91:2b:
                    2e:22:0e:6c:9d:4f:a7:61:ce:52:fa:12:f4:9c:5f:c9:
                    77:af:4c:3d:e2:00:00:e5:5d:df:44:d8:fd:4e:9f:34:
                    97:2c:5d:b8:d9:3d:bf:ea:77:86:06:c1:7c:a6:f9:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:ea:15:59:de:a6:8a:f0:09:d5:38:af:f2:22:63:b4:
        3a:9c:f4:92:57:e8:7d:eb:08:97:41:62:66:49:33:ee:
        b4:6b:2b:4d:a7:0e:28:8c:08:e0:3a:97:8e:67:3e:e3:
        72:11:5a:ad:d0:e9:d6:0b:b7:ba:ea:0b:b0:54:e5:cc:
        38:26:d7:1f:42:fb:c3:0c:21:d3:7f:86:98:ed:73:bd:
        2c:a4:ef:fc:52:3b:3c:28:e7:57:b6:5c:b9:f5:42:0c:
        8b:2c:87:d1:d7:1f:21:8d:64:c2:e0:71:77:76:64:15:
        e7:ab:06:b6:50:31:ea:13:52:e4:b9:0b:7d:07:d3:ff:
        46:a4:d4:50:04:c0:5a:be:fc:fb:62:4c:cb:de:03:3d:
        46:93:31:da:33:69:19:90:52:7c:5d:4e:a1:17:e1:7a:
        e8:63:0a:34:ea:8f:8b:c9:0e:20:63:fc:21:8e:e0:2e:
        80:44:62:26:92:39:db:5f:66:54:56:2b:0b:8f:cc:e8:
        0b:8d:c6:dd:d3:d2:04:58:94:c8:54:b5:e1:71:25:37:
        6a:51:86:e4:d1:63:50:8f:c1:44:d0:60:af:98:f4:da:
        ec:28:ac:b9:b4:c0:cf:2e:23:61:d6:52:a4:95:be:74:
        f6:10:f1:03:f2:b1:d7:ea:1c:4f:63:62:05:04:f5:c9
    Fingerprint (SHA-256):
        35:7A:81:C2:E9:A9:4A:F7:4A:80:EE:6B:EA:4B:A4:54:63:89:DE:DF:00:C6:75:14:2C:A2:F3:2B:F4:2D:68:73
    Fingerprint (SHA1):
        04:BE:06:16:99:BC:7C:C0:3F:C3:CB:17:7D:3F:74:6A:54:C0:E5:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4543: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:35
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Wed Aug 02 15:35:22 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:b3:12:ae:1f:4f:11:31:5c:91:cc:ce:19:c1:60:e3:
                    e5:b7:0f:f2:fb:82:15:4d:42:4e:39:44:01:ff:fb:04:
                    f2:2c:96:8c:ae:9b:3b:a2:20:ca:ea:7f:da:a8:0d:9d:
                    e9:1e:d0:b8:0e:94:8e:b3:a3:2d:5e:62:2a:09:06:cd:
                    f0:df:7b:30:5d:b8:58:50:4d:49:d9:23:64:f3:04:d8:
                    0f:eb:f2:3c:f9:9e:65:7f:fc:16:7d:87:f4:97:9a:91:
                    76:89:e5:d2:fc:fc:44:80:eb:aa:7c:67:2f:76:a3:1d:
                    41:35:aa:af:51:09:e0:14:3c:9b:bf:2a:36:66:7d:f2:
                    ae:d3:e0:b0:c9:f6:c2:f8:3d:49:9e:e6:3e:39:b2:e7:
                    b2:8c:20:4b:07:72:c5:d4:6b:32:46:d6:7e:8e:7e:4a:
                    6a:6e:e8:dc:58:d9:ae:bd:6a:f0:85:24:27:e1:2f:c0:
                    d9:d0:e3:23:61:35:19:bb:8c:59:f8:5d:cb:80:40:ca:
                    49:d5:27:82:e4:9b:51:0e:fd:5b:d6:f3:1f:5e:52:10:
                    93:52:24:33:6a:e5:6a:9c:22:ec:58:af:31:ed:05:40:
                    84:8f:69:16:5c:c7:f6:e4:25:cd:80:48:4e:f6:14:65:
                    5f:38:19:78:d5:59:d4:4d:56:34:2d:52:9f:ce:fd:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:b2:d7:ee:b7:ee:df:45:19:fd:8b:59:c8:12:7a:77:
        78:ac:78:be:e1:c5:8a:32:82:8b:3f:28:fa:74:06:5f:
        76:2f:d0:8d:72:8c:52:0b:70:88:c1:9a:a4:30:11:1d:
        75:2e:8f:90:d4:d5:80:8a:3a:12:04:cd:ad:7d:f4:60:
        12:bf:67:12:ca:d7:22:7a:44:da:07:f9:c2:ae:13:36:
        bd:80:cb:43:c2:de:86:97:0b:e8:05:e0:c0:55:24:4d:
        5b:a0:23:9d:56:f4:8e:77:0d:ee:db:ba:14:72:a8:5f:
        72:82:e2:d3:0c:35:0e:3b:23:26:0e:8e:cd:76:9b:e0:
        46:7d:5b:de:a4:a1:d7:b8:e8:00:d8:3f:6e:8f:a8:c9:
        83:71:bb:86:96:12:ae:a1:8f:3e:18:8a:5f:07:f4:45:
        b2:38:5b:ef:30:1a:33:bc:9c:61:1b:ec:2d:c7:05:16:
        ed:f5:2d:16:ad:84:99:e6:ef:6e:1d:66:28:2b:5d:44:
        e2:79:b2:81:cd:c2:c6:dd:48:76:9e:ba:aa:de:81:e5:
        85:88:20:82:b5:d3:11:6a:65:28:ac:e7:8d:90:18:26:
        e2:c5:8d:33:c9:c1:32:e8:7c:ab:08:1d:70:2e:3d:ba:
        aa:8a:5a:01:29:d4:1e:b9:1d:ff:be:42:16:5f:88:a8
    Fingerprint (SHA-256):
        39:FF:1D:27:62:1C:50:90:DC:A5:AB:D5:4E:20:62:0B:1D:51:D0:81:A3:34:CB:F7:01:A7:90:74:FA:ED:B7:62
    Fingerprint (SHA1):
        75:3A:59:5F:4E:52:35:B6:3E:F7:A1:37:3D:91:84:A8:EA:8B:2D:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4544: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:36
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:22 2017
            Not After : Wed Aug 02 15:35:22 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:38:6f:2e:c0:3a:d9:14:02:03:f5:8c:96:2e:06:30:
                    64:73:9f:51:ef:10:a2:d8:a1:b4:e3:0d:fd:48:d2:7c:
                    9b:7f:10:3b:4e:fa:71:52:7e:d5:d8:30:ed:c7:e7:32:
                    2f:86:e6:70:c2:56:ac:ac:f9:27:0a:ef:9b:64:d7:90:
                    d5:ea:28:22:34:32:72:35:55:3a:1b:04:14:e5:7d:24:
                    7f:e9:9b:a8:e0:f7:8a:0d:2a:2d:6f:08:31:b8:20:47:
                    75:6b:ce:48:26:4e:2b:ea:0d:52:f8:f9:49:d4:4f:1c:
                    90:11:c2:6d:3b:0d:28:5d:06:69:0b:dc:86:34:8d:c9:
                    02:60:f7:e5:c3:b5:27:24:0e:fa:cb:6c:a3:d2:f6:b5:
                    de:d6:a9:1f:78:ad:14:25:54:7d:d1:f8:0b:d6:19:35:
                    d2:64:89:6d:c4:6c:18:c3:26:25:ee:1b:e5:95:92:6f:
                    0a:02:9f:dc:1b:ac:2c:e3:61:fd:0d:0a:3c:b5:53:90:
                    85:9d:d0:1f:40:52:e2:f4:06:50:d5:ca:ef:0b:10:6d:
                    a2:e1:93:56:2a:fe:03:d4:d8:ad:fe:73:f2:fa:66:50:
                    38:68:93:e0:9c:24:2d:1b:1d:77:68:35:56:5b:b2:45:
                    d6:bc:c6:11:bc:b6:82:f0:69:3e:6f:9f:67:6b:0b:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:50:39:42:2d:ee:c7:27:d9:74:97:92:52:bd:bf:c7:
        4f:f0:22:f6:65:18:a9:ad:ee:2d:96:4b:39:95:07:8b:
        48:60:1f:fd:bb:da:b9:d7:90:be:c7:09:38:d6:f2:ef:
        0f:70:d8:a5:5a:1d:06:59:f8:ad:ed:64:f6:90:4a:7f:
        ea:98:b1:e1:a0:2f:c8:09:75:ab:ae:b0:8d:5c:40:b0:
        b4:61:46:86:b5:b4:ac:50:59:41:fb:f4:19:a4:0f:50:
        6b:f1:0c:69:65:3f:b4:c3:bd:09:e3:01:9d:69:58:4c:
        49:5d:ad:08:be:f1:b7:83:10:54:52:a6:8a:95:21:2b:
        a6:24:8a:3e:b9:c4:e3:7e:8b:ac:ab:80:0a:61:01:b3:
        3b:b6:65:93:c8:0c:57:ef:0b:e7:b7:ba:f8:e3:16:fa:
        34:02:51:24:b5:aa:8a:02:b1:60:85:f9:97:85:2c:d9:
        87:19:42:70:25:a0:ee:ae:48:78:7d:cc:39:29:13:ae:
        9d:16:95:d8:0d:83:01:97:57:40:4e:b3:fc:ea:80:f2:
        70:c2:46:aa:16:ad:87:c5:40:ca:6b:22:03:ce:d1:08:
        9f:42:2b:9b:85:17:a9:09:74:fd:35:d4:80:3f:dc:2c:
        ba:02:9c:9b:ff:08:c4:56:d7:98:86:44:52:74:3c:7f
    Fingerprint (SHA-256):
        59:CB:F7:55:E5:D7:EB:D5:44:0A:B4:7E:4E:DF:0D:38:4D:B4:54:F4:8A:4B:AB:31:35:63:B1:9B:ED:F1:01:19
    Fingerprint (SHA1):
        23:48:0F:E0:FF:34:CC:3E:8E:9F:AE:E8:40:F7:6F:B6:E7:14:7F:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4545: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:37
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:23 2017
            Not After : Wed Aug 02 15:35:23 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:dc:23:ca:21:a8:db:d3:7b:0b:e0:56:93:17:00:81:
                    de:86:40:99:89:60:64:38:0c:f9:44:52:0f:04:9d:bb:
                    2e:cc:72:04:83:37:3a:43:0d:5a:df:b9:5f:8d:88:17:
                    43:df:85:b0:69:25:d2:f5:45:8b:12:17:72:74:ef:28:
                    27:f9:db:b3:2f:0b:f0:1c:83:ac:1b:1f:90:f4:ad:98:
                    98:70:1e:8f:06:58:cb:58:a6:f4:53:7e:4c:25:d7:07:
                    98:bd:22:00:9b:bb:42:95:2b:62:69:7b:02:37:c1:ee:
                    20:c6:43:d4:93:cf:32:fa:76:6f:67:27:ee:78:fa:d2:
                    71:bc:4b:dc:4d:b9:19:6c:74:97:e5:cd:b0:b7:05:a2:
                    c9:e2:ad:9f:b3:43:04:43:23:d5:49:6b:59:c9:a4:a5:
                    4a:f8:65:0d:ee:89:c5:e5:ee:9f:9b:81:3d:52:99:a6:
                    01:b7:1f:f9:f2:c1:35:6b:d5:cf:14:e2:b1:06:f6:18:
                    0a:72:5c:fd:a9:8f:07:8d:ef:da:74:01:cf:58:49:e8:
                    e1:a3:9d:77:cb:9c:17:de:91:5c:4f:0c:c3:db:0e:ae:
                    a9:ef:dd:43:bf:ee:56:3e:ea:24:45:62:8c:5e:ab:a4:
                    2b:c2:b6:92:8b:38:86:7b:2e:78:0d:10:65:db:78:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:63:90:fc:14:85:e5:06:13:b8:d4:dc:fd:eb:ff:e1:
        98:7c:bc:33:50:4c:26:8b:0d:dc:92:28:66:7e:a7:d3:
        b7:cb:8d:a5:dd:35:ef:3d:1c:ec:5d:83:91:92:82:48:
        ce:db:d1:8f:fc:9c:ce:0d:c7:cc:63:51:79:cd:8b:a3:
        9b:37:20:a2:66:c2:47:bc:b7:85:fe:1d:0c:a0:1e:77:
        c0:c4:39:50:7f:3f:b2:d6:fe:79:a8:b5:67:2e:bc:e4:
        11:e6:64:3d:8c:b1:2c:f2:2b:33:36:cf:84:e6:d6:5f:
        10:84:64:36:b0:33:b7:c7:5b:85:65:73:6a:89:72:56:
        a8:fd:26:5f:57:69:fc:34:f6:ed:08:f4:c8:5a:de:20:
        89:8c:3c:36:88:9f:22:35:ac:f4:7b:85:e4:4d:5b:35:
        00:b6:1e:cb:fa:88:02:d1:03:3b:0b:3f:17:d9:c2:9a:
        d5:08:ca:ae:01:84:61:65:e1:5c:f0:1b:03:5a:65:85:
        ba:77:f6:97:5b:3b:44:9b:3d:47:8a:9f:f4:eb:25:76:
        a1:c5:63:98:33:cc:a5:d1:d1:e0:d5:19:7c:a7:c5:65:
        7a:00:cd:11:ef:13:38:d0:79:dc:c3:9d:61:86:99:76:
        3b:a8:3b:98:e3:15:49:20:0a:16:c3:c3:fb:f7:d8:2b
    Fingerprint (SHA-256):
        A0:C7:25:E7:54:FD:D8:44:DA:64:58:F8:53:BB:14:8F:7D:BB:96:E9:EC:AC:33:50:12:43:AF:A8:F3:4D:3A:DC
    Fingerprint (SHA1):
        2A:B9:AF:55:91:5A:B5:AB:38:71:71:62:EA:3A:BA:7C:94:A7:4B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4546: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:38
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:23 2017
            Not After : Wed Aug 02 15:35:23 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:87:cd:a4:73:12:63:55:9a:94:44:6c:90:a0:e7:70:
                    21:cc:e1:ed:ed:71:ca:14:db:04:2b:98:c5:3a:e1:27:
                    70:3f:44:88:5e:a9:43:b1:06:b6:77:d9:d2:77:a6:cb:
                    a3:2e:3f:61:6a:fb:f1:5a:f4:7d:56:f2:06:91:b3:1f:
                    6e:f4:01:a6:70:01:31:33:f8:cc:0b:a5:35:35:61:ff:
                    0a:d2:06:fc:b9:0a:54:ca:f8:5c:f9:a3:3f:d3:09:97:
                    d8:90:0d:65:af:c2:24:67:d5:0c:c4:7e:4b:b8:1d:2a:
                    6f:b1:9f:9e:49:72:b0:08:f6:b2:ab:35:45:15:15:3f:
                    34:44:72:68:a6:ba:7b:60:78:57:63:10:40:76:68:d3:
                    05:b1:72:28:f8:d1:b1:6c:19:19:69:c6:9e:3b:ce:48:
                    4e:70:a5:d9:ea:94:be:1b:60:f0:2a:45:0a:44:35:96:
                    64:f2:16:56:69:d6:c5:f9:8b:9c:f4:8d:2f:92:66:46:
                    6a:97:da:75:22:f0:1d:4a:7d:d8:1f:d9:1b:be:b1:47:
                    c5:25:2d:3e:93:19:da:a1:d4:a3:c6:ed:9a:14:bf:00:
                    e0:81:cf:b8:42:61:7f:32:9f:77:29:d8:2c:21:bf:aa:
                    86:d6:c7:e4:b7:b2:3f:9f:04:d9:e2:ad:1a:eb:94:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:c1:71:6a:bb:3f:00:0b:8c:fc:66:cf:4c:76:cc:cb:
        16:70:c1:3d:20:bc:a2:e7:a4:39:76:87:d9:fa:ae:6a:
        55:11:31:39:e9:24:07:85:ea:01:32:91:56:6e:11:63:
        52:c3:45:79:53:84:cf:4b:3d:77:e4:9f:40:42:38:06:
        24:07:1d:80:4e:9e:6e:15:e9:54:01:c7:6a:5f:bd:06:
        8e:af:47:f2:e0:23:60:1f:dc:c6:24:22:cb:cb:c7:e7:
        68:01:75:a6:8d:61:57:95:bd:2e:9e:6d:43:29:6f:41:
        a5:31:c3:fe:62:cf:5e:28:b7:c9:c9:c8:50:05:21:b7:
        02:93:ae:b2:04:7a:24:d9:cc:ca:82:01:6d:2f:99:45:
        77:87:85:9a:9b:c5:c6:34:f0:f7:06:c6:c7:31:01:dd:
        5d:7c:01:6c:69:e8:88:16:cc:45:c0:9b:61:a4:dd:08:
        f4:23:b5:6d:b2:33:69:0f:77:cb:6b:e6:6c:90:c7:c1:
        e9:93:e5:69:82:7b:94:21:5c:63:ec:35:f4:51:f7:ea:
        02:77:80:7d:57:8a:e1:09:da:24:35:51:93:e5:c7:50:
        62:fd:c1:cf:57:42:5b:f2:ef:33:9f:56:32:29:87:f4:
        4d:67:c4:ee:f4:4d:fd:25:5a:ba:b0:e3:61:33:7b:9c
    Fingerprint (SHA-256):
        40:98:CE:69:2F:EB:E9:D7:34:4E:19:C1:CD:12:B1:E3:02:83:A4:41:8F:BF:31:A6:CB:F7:DC:8B:0F:EF:33:45
    Fingerprint (SHA1):
        1A:19:36:AC:AF:CF:67:57:10:4E:1E:63:60:3C:5E:7B:8D:78:10:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4547: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:38
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:24 2017
            Not After : Wed Aug 02 15:35:24 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:69:1d:8a:d8:6d:11:e8:39:0b:7e:2e:31:86:b9:56:
                    c2:20:54:75:7f:27:22:7c:f5:a6:a6:1c:b6:7d:54:65:
                    a9:72:bd:83:51:b5:22:15:c9:71:bd:78:8c:50:1f:e5:
                    fd:13:02:5d:69:2b:5d:8f:1a:8e:d8:9f:6e:bd:7e:52:
                    21:f5:dc:f4:31:03:7e:d3:c5:52:52:e8:39:4f:67:bf:
                    a8:04:18:e7:d5:d3:6a:cd:d5:29:ac:4d:04:ed:af:73:
                    78:2e:2f:7f:a5:9b:10:8e:62:2b:97:8e:a3:4a:74:b9:
                    f7:a0:e3:34:7c:99:6c:e2:c4:fc:7b:dd:8a:8d:18:2c:
                    13:3b:32:e5:70:97:9c:4a:e5:4f:96:43:42:2c:8c:5f:
                    4c:31:62:02:88:d4:05:2f:34:cb:79:fc:69:a4:71:80:
                    41:5f:1f:16:46:64:b1:27:3d:02:b8:9d:6d:94:5e:9f:
                    5b:b1:1e:fc:04:d8:e0:14:dc:f9:c1:5f:18:6c:c5:cb:
                    2e:43:a9:2c:ef:dd:7c:69:92:ee:df:36:2d:d1:42:f7:
                    00:b3:33:50:ee:4a:a4:0f:1a:7d:8d:54:e7:0e:3d:ce:
                    e1:ff:d9:c2:4e:6f:ac:6f:51:16:9c:ae:f4:d9:ee:20:
                    ad:b9:39:33:f1:8f:ca:d8:df:3f:a3:ed:94:e0:7a:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:9f:0c:60:79:7f:1d:80:e1:79:4e:5d:85:4a:27:
        f7:26:75:9a:f0:d4:3e:5e:05:75:48:3a:c6:46:5a:fa:
        16:7b:92:7f:89:49:af:fe:29:f9:26:16:90:af:aa:5c:
        6f:3f:0f:fc:0f:c5:69:65:00:f0:8a:f2:2d:df:a4:0d:
        f5:6c:cd:25:c7:0d:7b:8a:e7:cb:0c:18:e6:bd:9d:16:
        f0:a2:40:a5:5a:32:8a:cc:83:f7:e8:68:3b:b0:14:a4:
        6c:ed:ef:11:bd:a4:f5:7c:d6:47:5f:57:42:4f:48:39:
        33:cf:9a:2f:cd:9a:ed:d7:94:47:1a:61:92:a8:6c:4f:
        87:90:93:50:32:7f:35:ec:f5:f8:b2:f4:ae:74:69:e2:
        83:26:1e:ee:bc:9b:43:f8:9f:3a:3f:62:99:82:72:12:
        58:73:6f:60:fa:40:c4:94:72:9b:83:c4:00:22:64:89:
        af:2f:82:2c:9a:4f:67:a5:ee:59:d0:5c:b1:fa:f1:4c:
        0d:0a:94:a5:98:e9:aa:54:d2:b7:20:c9:5b:b8:a6:1f:
        a9:ab:0f:f2:22:7e:a2:88:4e:7f:97:f5:d6:b2:1c:6b:
        1d:7c:53:1f:b1:9d:85:ba:3d:2b:b6:9a:ca:6b:31:da:
        f1:87:03:27:ed:a8:b1:97:3b:6e:8e:0d:d2:ae:e8:64
    Fingerprint (SHA-256):
        67:B6:0A:A0:FF:00:D9:08:EA:6F:61:2B:23:76:55:4C:84:BB:AB:43:4A:E8:24:B0:11:0C:45:72:90:FB:FA:13
    Fingerprint (SHA1):
        6F:78:57:2E:F7:D7:CD:6C:0F:62:4F:AC:08:12:33:8A:F2:57:76:5A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4548: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:39
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:24 2017
            Not After : Wed Aug 02 15:35:24 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:de:f4:fa:eb:f9:cc:e4:0c:2b:12:44:ad:b6:bc:ac:
                    84:2f:b4:fb:19:c2:93:b6:a7:84:73:85:94:66:0d:f7:
                    16:39:e1:cf:98:95:d7:d1:91:d9:c9:45:2c:b0:de:b0:
                    d1:e6:2c:06:15:5c:84:05:65:26:43:bb:c5:e1:07:4d:
                    41:3a:b2:e3:6b:b9:33:14:e8:91:a3:bf:90:d7:e1:d4:
                    80:dc:d6:77:a5:c7:ec:01:e3:41:4e:51:1c:b2:5c:de:
                    5a:54:2a:0d:00:35:56:85:a6:81:f4:9b:5d:f9:24:9c:
                    3a:c6:93:ab:4b:6f:9a:d2:e1:6c:00:92:66:14:d4:f6:
                    06:6e:c5:d7:24:1f:58:bd:12:cc:c1:43:4e:3b:e8:6a:
                    34:cb:35:e1:18:d8:e3:66:ed:24:2e:66:05:a2:f6:a2:
                    e6:b0:a6:54:63:c8:02:ca:54:86:2e:dc:8f:9f:4b:56:
                    25:e5:de:dd:57:48:b9:08:e2:1e:c0:0c:74:22:ad:5f:
                    57:8e:5a:7c:2c:55:48:0e:3d:ad:d8:66:f5:63:fa:dc:
                    5d:a8:f1:ed:3b:4c:a7:47:e7:58:de:97:cc:69:e7:d6:
                    ec:d6:7c:d2:ed:dc:13:c8:e6:eb:ab:5f:49:f8:72:64:
                    2e:d9:61:ac:ee:96:5b:e4:e2:0a:45:85:4b:4d:df:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:5b:8a:47:dc:aa:fb:b8:6a:69:f5:14:0c:89:9d:6d:
        f0:e4:46:28:5a:fd:ab:f2:6b:0a:04:de:e6:b5:70:45:
        ca:72:70:49:04:6e:b3:07:c5:8f:48:8b:00:11:1b:38:
        e8:e1:9d:d9:c9:24:40:4a:9c:4b:87:2e:ac:22:7d:a7:
        eb:11:36:0f:06:c7:ff:77:c9:70:99:27:46:70:38:32:
        63:07:75:dc:84:c2:be:72:fe:b0:70:d9:63:12:90:d2:
        96:e9:78:d2:1d:73:3a:7b:91:24:72:52:8e:83:cf:4a:
        01:1f:f6:0e:f0:d3:2f:1d:d8:3e:16:7b:44:4c:93:41:
        c8:d5:94:ad:ae:3f:4c:cd:10:76:7e:54:2a:78:b0:2a:
        de:cd:b0:e1:43:34:48:13:c9:a8:8e:0e:08:ac:4f:a6:
        b9:9e:07:a4:fb:78:a6:b8:86:2f:dc:7f:83:a3:6e:15:
        83:39:4b:9d:04:b5:92:38:27:e7:d3:ca:ba:d4:c2:bb:
        f0:b0:d0:41:fe:70:8d:fa:03:52:c9:84:02:40:ac:63:
        e6:ff:26:82:15:0a:0d:74:0e:2b:c1:c2:df:1e:a6:de:
        78:7e:f5:10:01:52:d8:39:c4:35:36:5c:ce:b6:2c:be:
        50:06:55:7b:38:02:c7:55:94:7c:dd:4f:1c:e9:19:7a
    Fingerprint (SHA-256):
        F7:26:0B:DB:32:C3:0A:00:EB:D3:48:EE:94:48:A6:55:90:EE:46:DF:81:63:DC:DD:A3:08:29:90:31:9E:33:F2
    Fingerprint (SHA1):
        D0:8B:78:98:BC:20:D7:05:73:89:3B:F6:B6:C2:3A:FB:7E:F7:19:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4549: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:3b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:35:25 2017
            Not After : Wed Aug 02 15:35:25 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:58:8d:29:b8:c2:f8:ae:92:46:26:8f:33:12:20:2b:
                    48:c0:cd:72:8e:eb:a5:08:f4:bc:eb:93:96:a8:c4:4f:
                    6a:27:11:b9:74:e4:10:66:66:f6:5c:4e:7c:80:9c:ad:
                    11:bc:77:b7:fa:49:20:7c:f1:92:35:b9:28:34:59:70:
                    65:ae:93:23:9a:39:d1:b1:dc:ec:2c:29:67:1c:94:8a:
                    64:7a:53:e3:77:1e:24:34:19:cb:ee:ee:eb:cd:6c:7b:
                    5a:b6:b0:e1:2d:80:9a:14:35:47:92:98:b1:07:1f:71:
                    49:37:b3:b0:a4:4e:c3:89:00:71:c5:59:af:aa:58:64:
                    ee:2e:aa:d9:b6:8b:58:1b:e8:17:e3:55:dc:9d:1f:50:
                    42:41:73:c8:8f:71:84:08:96:54:1f:5a:26:6a:d0:21:
                    fa:9c:8e:7d:7a:80:20:89:a7:3b:a1:72:12:bf:e6:ea:
                    17:73:3e:cb:4c:51:bb:9a:e5:23:eb:39:94:2d:eb:29:
                    86:d3:89:1f:c5:04:fd:99:cb:9b:15:a6:67:62:dd:b9:
                    b9:45:78:65:c8:ac:d0:72:97:ca:f4:f2:a2:3b:39:0a:
                    04:79:d1:1c:8c:3e:21:46:90:d2:9e:4b:2d:96:9e:97:
                    0d:bf:9e:d2:de:50:b1:32:6c:41:33:52:4b:72:e7:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:c3:bb:8a:a3:cd:02:28:6d:e0:14:b8:7c:d8:73:9c:
        a9:26:7d:40:a0:99:79:17:de:fc:d0:a1:f8:f4:be:08:
        58:71:45:ec:32:87:86:88:65:fc:d4:3b:79:67:85:a8:
        db:d1:e3:a6:fc:27:f5:91:b8:6e:47:1d:eb:8f:4d:65:
        ab:12:29:bf:6c:4f:73:42:10:8b:95:6c:71:46:4b:cd:
        3a:4f:9a:a0:7f:69:dd:fc:48:fe:c3:52:a1:23:eb:71:
        40:52:9c:66:28:d7:4a:60:fc:aa:54:46:b4:0d:f1:74:
        ac:72:08:d2:c4:6c:75:dc:ba:8b:02:43:0e:5a:b0:c0:
        80:17:11:3a:cd:2f:06:82:bf:da:5e:bd:ee:fc:2e:b5:
        7b:95:9b:7e:8c:47:d1:9d:26:61:9f:f9:e2:51:42:35:
        c1:4f:00:fc:65:41:cf:b0:a2:fa:51:ea:d3:30:1d:cc:
        47:d3:ce:42:4c:8a:50:59:6c:b3:93:57:a1:8e:a3:68:
        39:68:9c:8e:d1:fa:19:d8:f4:24:ed:9d:7c:36:b5:19:
        50:7c:6b:16:77:30:36:a0:8a:da:ea:1e:26:9f:95:0f:
        ab:d4:48:0a:a3:9b:47:45:06:b0:58:9d:63:47:35:ef:
        29:17:5e:02:f0:8c:28:c5:06:98:f7:c3:41:3f:8e:b7
    Fingerprint (SHA-256):
        9D:4F:F7:C1:38:50:82:CF:B1:A3:C1:26:A7:49:B9:DE:C6:16:C8:57:A3:B7:DE:76:AE:DB:B7:8A:E3:51:81:89
    Fingerprint (SHA1):
        47:82:43:19:A6:70:65:20:E4:7B:0A:C3:78:9D:5D:83:41:09:05:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4550: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4551: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4552: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #4553: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:3c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:35:26 2017
            Not After : Wed Aug 02 15:35:26 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:d2:40:07:5b:e7:c9:f9:49:23:2a:c9:9f:05:81:d6:
                    90:81:ea:a2:04:97:c7:45:c7:25:0f:cb:47:df:b7:57:
                    af:ac:04:7a:80:93:64:a0:99:66:1e:00:68:ca:16:fd:
                    a1:41:8c:94:e1:b6:a3:a6:11:85:00:37:e3:d8:ce:61:
                    13:0d:a1:fd:b1:05:90:9e:a8:4b:e1:cc:8f:09:91:bc:
                    cf:da:ad:54:05:53:e6:b7:5c:70:85:a3:50:da:ad:00:
                    1b:f4:e2:45:38:e7:a8:26:b9:3e:d0:7b:f7:8e:5e:bf:
                    6b:c1:e5:6e:1f:3a:f3:65:00:be:81:8d:3a:65:9d:3a:
                    2e:71:05:10:3a:93:d4:87:87:44:af:8a:b0:0f:03:16:
                    41:7c:bd:58:f8:20:c9:6e:8f:c0:66:d7:0e:d3:f9:82:
                    87:b9:cc:27:bf:27:41:4f:ad:7b:1f:57:bc:d1:9b:c9:
                    b7:6e:fd:d6:e7:70:78:5f:06:1a:73:81:66:71:b6:00:
                    4d:3b:90:ff:09:cc:57:32:d8:d9:a4:aa:7b:26:0f:fb:
                    ed:f5:20:80:0a:48:59:6f:56:ff:97:f2:f8:a2:18:a3:
                    ef:ee:4f:09:b8:7d:4b:46:0a:db:8d:a5:97:2e:a4:32:
                    14:eb:0d:d3:f4:9f:14:ec:4f:1c:e9:d4:91:02:21:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:4d:ea:08:f7:05:65:67:22:a9:80:d1:05:1f:d6:9f:
        ab:62:50:19:cc:0a:bb:dc:40:d0:20:e0:1d:7f:28:15:
        95:a0:50:34:68:d2:b5:a4:3f:49:0b:c0:b8:2d:5c:76:
        42:06:11:80:3b:32:fe:e1:3d:d6:41:c5:cc:6d:33:cd:
        51:1a:84:7c:49:70:a8:0d:9b:c4:a1:34:0c:fc:cf:ef:
        b4:30:13:8d:e0:ef:7a:9c:22:b5:1d:2a:be:98:da:fb:
        32:2d:f3:8b:92:e8:e0:2e:0e:f3:7b:6e:b6:4f:db:fb:
        bb:03:e7:2a:f6:2d:1e:26:aa:d3:ef:2a:bb:9e:bb:8c:
        56:7a:c1:08:99:0a:57:c4:b5:19:25:c5:1b:53:cb:71:
        a8:f3:3f:ec:5c:9a:83:59:b1:8e:a3:c1:9d:1c:8a:ca:
        05:90:51:f4:eb:ef:28:4c:e1:b9:7c:e0:2c:98:81:26:
        16:55:d6:2a:af:87:69:b2:0e:b1:15:03:db:cb:52:87:
        9d:c0:9f:63:17:9c:7f:30:e7:3f:40:57:07:04:43:7e:
        ef:a8:80:e6:06:9f:d1:a3:32:07:0f:65:3a:2b:8c:ba:
        3b:ea:8b:f7:9a:3a:f3:4c:7a:94:d2:70:0f:24:30:3d:
        16:23:8e:50:5c:ef:00:bc:da:ef:85:03:1a:c0:d6:fb
    Fingerprint (SHA-256):
        AE:12:81:A9:80:B3:56:06:52:6B:1A:8D:82:D1:8B:F1:50:E6:E4:5D:B3:40:9D:A3:2A:56:F6:B2:B7:DD:F3:23
    Fingerprint (SHA1):
        7C:F0:7B:D2:CC:61:ED:FA:33:31:AC:D4:EA:A7:C3:91:CC:B3:92:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4554: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #4555: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4556: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4557: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4558: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4559: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4560: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #4561: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:89:3f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:35:27 2017
            Not After : Wed Aug 02 15:35:27 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:1c:7d:7b:5f:ef:84:9e:ea:27:fc:fb:f8:a6:15:67:
                    54:dd:98:0e:8b:a0:6f:4b:47:94:33:05:92:8b:8c:b4:
                    48:47:5f:4b:ef:ea:2d:ba:c1:61:a6:4e:62:da:ab:74:
                    77:45:d9:a2:e2:3e:fa:3e:a8:00:e8:59:b8:9a:af:bb:
                    77:af:52:d4:b2:20:50:c8:53:67:ca:7d:8d:0c:fd:95:
                    a3:6a:ae:98:ed:d0:99:2c:5f:a9:af:b7:3f:3d:8e:cc:
                    50:66:d3:e1:49:92:24:66:a4:c0:aa:01:dd:a0:37:3c:
                    97:8a:53:0f:6c:b9:38:2f:80:8d:52:5f:93:b2:e3:df:
                    e0:dc:19:52:b6:e6:21:17:65:43:fa:4b:04:d8:55:da:
                    83:10:99:3f:7b:6b:94:c6:38:88:4b:19:9c:a3:a8:0b:
                    b4:7b:94:31:58:c4:1c:54:83:e7:ed:dc:39:5d:bf:83:
                    c3:4f:24:8e:51:a5:2a:25:4b:aa:1c:b9:5b:1b:1e:d4:
                    80:47:2d:a9:fd:bf:91:1c:be:f6:9c:36:c5:63:af:e6:
                    55:76:50:56:78:69:93:1c:04:1a:68:c0:43:ce:bd:9b:
                    aa:97:18:96:d2:d4:7d:fb:ea:b8:f7:f2:8c:f9:2b:45:
                    d2:21:a7:d7:ef:8f:3f:e9:91:92:6f:c2:37:eb:e8:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:ac:d7:de:cc:28:f4:da:6a:bc:7d:7a:ff:df:4e:00:
        ea:5f:2e:be:8f:02:22:38:4c:63:42:70:06:48:f7:ff:
        e7:c3:c2:35:19:32:ed:79:43:98:22:2b:d3:6e:7f:1d:
        8d:ae:12:3f:0d:6a:db:77:79:95:1b:4f:38:e5:1c:fa:
        8b:7b:43:68:9a:0d:f6:17:7c:8d:37:f8:bd:14:8a:ea:
        43:85:8b:de:13:b9:69:17:9a:67:0e:f2:5c:0d:5f:14:
        0f:31:53:d1:4c:c7:5e:0f:86:b6:7a:e9:16:1b:cf:0e:
        c9:51:b1:31:be:1e:48:4e:bd:65:6f:64:2d:4e:af:a5:
        bd:a7:bc:58:4d:18:f4:68:ff:6e:21:4c:db:39:9a:42:
        bc:c1:3b:c6:5e:d6:84:48:bf:55:99:37:72:d1:05:fe:
        30:41:6e:fd:75:b6:8d:9c:41:d9:6d:7d:0f:2b:cd:15:
        cb:98:c1:e9:f9:10:de:bf:91:90:c9:52:03:0c:b0:cc:
        a3:c0:b8:3c:11:49:4e:e5:62:2f:9e:c9:03:b5:30:e6:
        ad:08:75:70:80:81:8c:8d:d5:bd:05:32:ab:60:2a:20:
        5c:c9:02:3c:6c:fa:71:ea:8a:93:13:98:0f:fd:26:d8:
        6e:ea:a6:a7:25:d6:d8:32:0e:4e:96:a3:36:69:ad:5c
    Fingerprint (SHA-256):
        E8:80:AA:DB:BF:D7:A1:82:A7:28:CB:0D:30:B5:9F:F3:27:7A:3E:E5:2E:36:47:55:86:0F:42:46:E2:99:B4:4C
    Fingerprint (SHA1):
        9A:4C:4E:D2:CF:5F:B1:4C:DB:0C:8C:41:DB:DD:D7:E6:D2:91:5F:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4562: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4563: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4564: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #4565: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4566: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4567: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #4568: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #4569: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4570: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #4571: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4572: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4573: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #4574: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4575: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #4576: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4577: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #4578: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4579: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4580: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #4581: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4582: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4583: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #4584: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4585: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4586: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #4587: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4588: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4589: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #4590: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4591: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4592: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #4593: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4594: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #4595: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4596: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #4597: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4598: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4599: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4600: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4601: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4602: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4603: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4604: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4605: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4606: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4607: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4608: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4609: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4610: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #4611: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4612: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #4613: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4614: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4615: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #4616: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4617: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4618: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #4619: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4620: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4621: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #4622: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4623: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4624: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #4625: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4626: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4627: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #4628: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4629: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4630: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #4631: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4632: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4633: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #4634: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4635: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4636: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #4637: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4638: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4639: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #4640: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4641: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4642: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #4643: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4644: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4645: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #4646: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4647: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4648: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #4649: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4650: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4651: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #4652: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4653: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4654: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #4655: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4656: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4657: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #4658: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4659: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4660: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #4661: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4662: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4663: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #4664: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4665: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4666: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #4667: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4668: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4669: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #4670: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4671: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4672: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #4673: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4674: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4675: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #4676: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4677: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4678: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #4679: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4680: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4681: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #4682: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4683: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4684: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #4685: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4686: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4687: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #4688: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4689: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4690: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #4691: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4692: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4693: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #4694: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4695: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4696: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #4697: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4698: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4699: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #4700: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4701: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4702: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #4703: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4704: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4705: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #4706: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4707: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4708: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #4709: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4710: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4711: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #4712: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4713: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4714: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #4715: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4716: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4717: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #4718: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4719: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4720: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #4721: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4722: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4723: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #4724: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4725: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4726: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #4727: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4728: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4729: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #4730: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4731: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4732: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #4733: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4734: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4735: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #4736: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4737: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4738: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #4739: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4740: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4741: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #4742: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4743: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4744: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #4745: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4746: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4747: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #4748: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4749: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4750: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #4751: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4752: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4753: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #4754: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4755: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4756: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #4757: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4758: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4759: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #4760: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4761: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4762: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #4763: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4764: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4765: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #4766: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4767: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4768: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #4769: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4770: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4771: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #4772: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4773: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4774: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #4775: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4776: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4777: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #4778: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4779: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4780: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #4781: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4782: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4783: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #4784: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4785: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4786: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #4787: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4788: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4789: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #4790: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4791: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4792: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #4793: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4794: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4795: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #4796: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4797: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4798: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #4799: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4800: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4801: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #4802: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4803: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4804: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #4805: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4806: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #4807: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #4808: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #4809: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #4810: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #4811: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #4812: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4813: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4814: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #4815: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #4816: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #4817: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #4818: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #4819: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4820: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #4821: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4822: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #4823: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:35:51 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:35:51 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4824: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7c:0c:1a:f7:84:e7:6e:47:49:27:9a:0f:5f:3c:6e:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4825: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4826: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4827: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4828: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f4:0d:93:af:2f:35:ba:f2:23:c7:61:40:9a:70:d3:1c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:35:09 2017
            Not After : Mon May 02 15:35:09 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:5f:5a:1c:93:e9:1c:85:5e:8f:93:48:59:4c:7a:
                    7a:ce:70:ea:d9:4f:56:b9:cf:91:d8:03:1e:c0:44:60:
                    89:ed:e9:39:cf:cd:f6:cc:73:64:cd:3a:4e:ee:c1:b3:
                    0a:f7:8b:f0:fd:3d:c2:52:59:60:fb:99:89:83:44:2d:
                    dd:30:09:01:07:d5:cf:8e:81:71:fc:8d:e3:02:ec:96:
                    18:f5:0f:0f:4f:01:6b:97:54:b6:57:8f:dc:2f:2d:6f:
                    b1:cc:d0:d3:3c:03:3b:d5:02:08:16:7e:f8:cb:c3:65:
                    79:5e:e7:ef:bd:0e:c2:ca:4c:bc:31:c2:48:ff:50:55:
                    0c:95:c4:ae:49
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:6b:58:68:9c:6b:6c:2e:44:9a:28:06:
        3d:3a:34:bd:25:13:6f:42:5c:a5:34:27:99:30:c8:d2:
        3e:ee:ca:58:29:0e:f5:b8:9f:d7:34:7b:c4:e4:30:1e:
        38:16:c1:2e:ad:49:f7:c2:86:3f:84:4a:53:7e:0e:84:
        a1:3c:e8:e1:ca:0d:02:42:00:d2:5e:2c:f6:a2:12:d7:
        50:62:cd:35:7f:e6:69:e1:c1:33:c6:ba:91:68:83:f1:
        1f:ac:6b:d9:5e:6d:ae:87:72:57:6c:e5:19:4f:8d:65:
        b9:92:3f:69:87:ca:e1:09:54:01:32:1b:c5:cb:62:7b:
        7f:67:be:d7:9c:0d:ab:ae:bd:50
    Fingerprint (SHA-256):
        CA:C2:BA:BE:D9:91:E8:E1:00:23:8E:D0:B6:37:29:9C:1D:97:7F:3B:4B:BF:FC:74:7B:6A:B5:BE:B2:2B:6A:69
    Fingerprint (SHA1):
        4F:16:34:D5:EB:60:F6:6F:E6:8C:1C:BD:16:8D:C7:2D:35:E2:A6:11
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:b3:0a:09:83:45:54:c6:02:5a:c6:3e:34:20:d5:58:
                    eb:d3:2c:9a:6d:2e:e6:8e:58:6c:2e:57:83:8f:8e:c6:
                    62:81:a3:6b:4f:79:01:7b:86:7a:c8:cb:f9:c5:d8:79:
                    4e:8d:91:15:fb:90:96:de:08:c8:fc:6e:cf:a3:f1:01:
                    78:59:16:94:81:9e:d7:ee:58:41:79:e7:40:34:e5:8e:
                    ce:8c:36:d2:39:e0:eb:f3:1f:e1:de:25:a9:6d:62:d8:
                    72
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:38:91:05:12:36:8c:d7:d7:b7:88:
        cb:e0:60:e4:5c:f5:63:14:ef:f8:45:83:49:83:a9:2f:
        52:0f:75:19:96:ad:b7:ed:8f:c1:25:f7:2f:92:c3:fa:
        0b:56:f9:8a:b5:96:e8:df:a9:66:13:1d:ae:2f:83:dc:
        54:05:d7:ca:44:61:5f:02:42:00:e4:f9:86:0a:a4:7e:
        cb:50:c3:db:5d:de:d4:2f:65:91:bd:e6:80:9d:54:c8:
        eb:d4:90:8c:4a:99:90:77:c6:c1:54:b0:c5:2d:86:0a:
        0b:8c:b9:b7:07:07:27:2b:20:c3:cf:4d:c0:d9:15:89:
        b8:53:ee:30:31:25:03:7f:47:52:a8
    Fingerprint (SHA-256):
        85:0D:86:97:BA:2C:B5:D2:BC:37:2E:A3:01:E3:C8:AA:9B:99:6A:A3:0E:CF:28:68:6A:DE:2C:3F:BF:B6:2F:B4
    Fingerprint (SHA1):
        40:BF:7A:9A:0C:25:3F:34:E9:24:02:2A:83:9E:75:D4:0D:77:BB:0A
    Friendly Name: Alice-ec
tools.sh: #4829: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4830: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                6d:01:1b:f0:f0:c1:0d:b3:79:42:aa:2e:a7:2d:fd:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4831: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4832: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4833: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                63:58:0e:ab:5b:dd:fc:7d:e7:48:e5:b8:f3:0f:16:1a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4834: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4835: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4836: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                97:31:33:5e:92:b0:66:66:57:fb:6d:21:c9:1a:2a:9c
            Iteration Count: 2000 (0x7d0)
tools.sh: #4837: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4838: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4839: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                dd:cc:90:16:04:a0:5f:ab:c2:67:f0:f9:38:59:1a:a4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4840: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4841: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4842: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e1:20:af:20:85:2c:cc:da:33:ea:af:e3:14:e8:78:24
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4843: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4844: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4845: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ff:24:9d:fe:c8:70:e1:92:97:e1:10:a9:0c:91:5a:14
            Iteration Count: 2000 (0x7d0)
tools.sh: #4846: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4847: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4848: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        40:16:24:72:80:0e:cf:d5:d1:6e:5f:5f:d3:db:fa:61
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5c:f7:e5:8d:58:fb:e3:d8:74:e9:75:47:41:e1:
                    36:12
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4849: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4850: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4851: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:06:42:ea:8c:de:ca:4f:63:fe:4d:96:83:38:90:63
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:aa:98:c3:d4:81:ab:7c:31:e8:b0:8c:ae:af:bb:
                    91:4d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4852: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4853: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4854: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        65:5b:0d:76:21:4b:04:64:8e:e8:bc:55:56:9c:51:b9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5f:03:e9:7e:40:b7:bd:89:e1:f8:f4:d4:b6:c1:
                    81:7f
tools.sh: #4855: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4856: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4857: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        19:f4:a9:97:67:5c:c7:85:5b:25:12:8b:b3:50:8a:93
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:33:35:6f:d9:ba:2f:38:99:85:23:1c:22:c2:91:
                    02:25
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4858: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4859: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4860: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:6e:13:12:09:a0:ba:fc:3e:6d:88:cc:71:43:1c:49
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:43:7e:9b:85:c0:79:b5:4c:f3:ad:c3:48:2b:21:
                    22:c1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4861: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4862: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4863: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b5:19:b5:68:e7:bc:3d:36:c3:bc:a0:50:b8:59:87:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:2e:31:53:eb:dc:cb:6b:a5:b2:e2:89:73:54:93:
                    de:3e
tools.sh: #4864: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4865: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4866: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b5:86:b3:28:1b:3e:05:80:81:e3:ed:f1:d7:fc:03:e7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e6:23:6b:b3:bf:14:5e:20:e7:00:d3:2a:bd:4b:
                    4f:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4867: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4868: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4869: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bb:db:f7:86:63:20:e0:74:7f:c2:5e:da:56:82:68:09
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:63:d9:e2:90:ba:92:c0:3e:31:8f:8a:9e:60:29:
                    eb:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4870: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4871: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4872: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:0c:4a:7f:10:9f:91:77:e4:a5:d9:6c:ac:4a:0f:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:0f:e2:36:a7:c3:0b:40:20:ff:f3:0e:6f:b5:ea:
                    aa:16
tools.sh: #4873: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4874: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4875: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ed:f7:e3:10:12:29:ea:3c:26:c8:99:1c:bd:7d:ea:8d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fa:cd:0a:6e:a8:ee:37:0f:aa:a6:62:88:8d:cd:
                    ae:12
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4876: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4877: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4878: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0e:ad:ed:19:29:97:89:8a:94:c1:56:9a:82:24:0d:e3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:66:43:a5:fc:1d:0e:82:65:d8:b9:e8:9f:58:af:
                    4f:f9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4879: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4880: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4881: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4f:a4:a7:12:63:9c:c9:49:7a:a1:0f:af:8b:ab:e6:6a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fd:df:87:f2:3a:62:54:b2:d0:94:45:60:90:83:
                    db:90
tools.sh: #4882: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4883: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4884: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ba:dd:ed:22:ba:fe:94:83:34:71:42:00:0f:21:4a:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d8:ab:cc:44:28:27:cc:3f:8f:9b:b3:51:8b:5a:
                    b3:7b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4885: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4886: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4887: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f8:07:9e:cf:e1:82:a6:1a:14:97:83:5c:98:a1:64:76
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ba:08:03:dc:f6:20:3f:18:f7:01:c9:7c:30:48:
                    13:9c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4888: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4889: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4890: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3c:fd:3b:77:87:9f:6f:5b:80:67:d8:ca:9e:73:75:d9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9f:1c:eb:d2:61:2a:17:7c:15:60:a9:2b:4c:22:
                    a6:ec
tools.sh: #4891: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4892: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4893: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cd:69:72:47:7c:49:b6:07:5f:ab:e8:1e:07:ec:35:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:07:34:82:f6:68:67:24:cb:d2:0a:ab:53:17:9a:
                    36:e6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4894: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4895: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4896: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f0:4c:8a:9a:41:be:64:b7:0f:12:42:dc:79:4b:95:80
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:23:21:1e:9c:50:c7:e6:93:40:e6:53:31:d9:ae:
                    82:5c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4897: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4898: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4899: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2e:1d:f9:9a:c0:f2:0b:b7:3b:e3:84:9c:8a:f9:ac:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:31:45:7c:f2:02:94:5c:e7:21:0d:55:f4:b2:59:
                    26:04
tools.sh: #4900: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4901: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4902: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                89:26:48:4a:43:2e:30:f3:d8:d9:44:62:f5:19:e6:82
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4903: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4904: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4905: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ae:d4:0f:82:8c:a9:38:87:5b:84:4f:aa:03:b7:1d:87
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4906: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4907: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4908: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8e:af:5d:2f:70:c1:44:88:71:a9:54:c2:0a:b2:2c:28
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4909: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4910: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4911: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5f:0c:46:aa:d7:5e:cc:79:76:87:6c:e9:e8:73:97:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4912: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4913: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4914: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                d0:c4:05:07:79:b2:3d:ec:db:9d:b6:fe:0c:e9:bd:64
            Iteration Count: 2000 (0x7d0)
tools.sh: #4915: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4916: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4917: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                3e:dc:72:e4:c7:60:8b:ab:f5:0a:73:b3:f5:7b:74:1e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4918: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4919: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4920: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                1e:99:74:4c:3f:a6:ff:08:cc:e0:3e:aa:2d:d6:1f:01
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4921: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4922: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4923: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                d5:56:99:7c:45:5a:f7:55:5d:e9:61:8a:5d:3f:bd:57
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4924: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4925: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4926: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                75:90:21:dd:94:f5:d8:31:a7:b4:02:12:9b:42:a6:e6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4927: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4928: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4929: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                45:f6:3d:9d:36:33:2d:b3:69:d4:ea:f9:cf:6b:fd:88
            Iteration Count: 2000 (0x7d0)
tools.sh: #4930: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4931: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4932: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                5a:db:a2:2e:7f:95:af:6a:ab:90:1a:fd:10:9c:2b:ac
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4933: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4934: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4935: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                33:cb:8c:7d:11:21:d7:f1:1a:71:64:50:aa:b3:00:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4936: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4937: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4938: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                69:30:50:63:02:04:e9:ec:51:fa:f8:54:bc:b5:89:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4939: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4940: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4941: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                fa:c5:fd:77:0b:f1:37:1c:19:43:fb:37:2b:0e:b7:b2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4942: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4943: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4944: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                6f:d6:68:ee:36:f6:f6:6f:11:a1:98:3c:a9:b2:f9:24
            Iteration Count: 2000 (0x7d0)
tools.sh: #4945: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4946: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4947: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ae:4f:7d:fb:bc:55:24:d2:c6:2a:49:c1:22:bf:7c:ee
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4948: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4949: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4950: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ef:1d:d3:ed:f5:f2:8b:c6:3f:77:4e:57:0e:2a:da:eb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4951: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4952: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4953: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8c:7a:59:11:12:08:3e:90:f6:87:40:45:15:5b:ce:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4954: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4955: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4956: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                90:7d:3b:b4:1b:ed:a9:eb:20:bb:78:8f:cf:02:ba:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4957: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4958: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4959: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7f:46:b4:3c:52:b3:53:9c:38:a8:d2:cd:63:a8:29:87
            Iteration Count: 2000 (0x7d0)
tools.sh: #4960: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4961: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4962: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:8b:fa:33:38:71:8f:d4:a3:c0:73:6c:cf:ef:26:50
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4963: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4964: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4965: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f8:fd:8f:ed:bb:1a:e7:9d:12:aa:10:dc:b0:05:a8:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4966: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4967: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4968: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0f:de:02:b0:30:8a:21:7c:59:7e:3e:5a:bc:32:48:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4969: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4970: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4971: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5c:10:a4:39:65:52:5b:61:f7:f4:21:42:aa:12:82:97
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4972: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4973: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4974: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:e5:d7:0f:fa:b1:cb:3f:92:44:75:27:01:42:5a:38
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4975: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4976: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4977: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bf:0e:fe:fd:c0:d4:ca:3b:62:cb:d7:c9:51:18:9c:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4978: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4979: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4980: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9d:b6:5b:7a:81:2e:e8:09:d2:ed:fe:06:a5:74:c0:2d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4981: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4982: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4983: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c6:57:a5:14:20:4f:01:98:7f:ba:9b:5f:91:e1:f0:8a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4984: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4985: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4986: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:ed:42:54:0d:de:0a:00:51:f2:cc:c2:29:e2:69:6e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4987: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4988: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4989: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                84:ac:da:db:db:3f:cd:28:bc:c9:9e:8c:60:8a:b7:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:06 2017
            Not After : Mon May 02 15:35:06 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3c:78:a1:99:2f:1a:d8:f0:18:d3:1e:5c:54:22:24:
                    dd:e5:7c:6c:66:35:cf:78:7e:b5:1d:fb:d3:c1:9f:fc:
                    d4:e5:ac:32:ba:e7:98:e2:f3:f4:0b:b5:2b:2f:78:5a:
                    b2:66:77:35:8a:24:da:50:66:56:b8:a0:ad:ac:9e:d4:
                    62:9b:97:a5:4c:89:29:d0:32:d7:81:c6:09:b2:25:a6:
                    6f:29:db:67:3c:f4:df:6d:d4:62:00:cc:77:08:d7:8a:
                    04:57:fb:02:91:ea:d6:60:81:5c:ea:f3:1b:bb:0c:60:
                    ec:d4:3b:59:6e:1c:2e:56:15:a0:d7:40:6a:b7:cb:c7:
                    69:82:cf:a1:fc:5f:6a:a2:72:64:42:d4:30:48:1c:65:
                    c6:1d:58:bc:bc:cd:c9:03:b7:d9:d8:b2:32:8e:6f:3c:
                    47:63:9a:da:73:e9:6f:c1:44:c5:74:da:c5:46:96:0a:
                    d5:6b:81:9c:3b:dc:f6:a2:14:b2:2c:fe:e6:51:af:95:
                    07:db:4c:e5:2a:05:a3:8d:b9:05:19:c2:87:78:8c:fd:
                    e5:28:16:22:17:91:b3:79:b7:45:5c:82:8c:54:b2:ee:
                    dc:3b:f1:21:b2:5e:67:16:a5:33:9f:1c:e7:83:cb:e8:
                    10:0f:66:b7:26:b4:2b:21:ab:81:90:af:85:0c:19:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:29:5d:dd:e7:5d:d6:dd:d4:94:ce:b1:8f:3b:c5:21:
        8a:c6:54:e1:85:28:69:9d:7d:3a:fe:f9:72:52:3a:7b:
        49:65:cc:60:17:c8:93:5c:66:bb:7d:42:2c:3a:40:3a:
        f3:28:ed:91:e5:46:76:f3:fb:42:90:7b:40:85:18:21:
        63:69:2a:a3:88:f5:3d:4f:e7:e0:8a:fb:e8:a0:27:69:
        05:be:7b:8c:59:08:00:63:28:06:a0:82:d2:f9:93:b4:
        68:a7:4f:bb:31:e8:56:88:fb:59:bf:94:4f:bf:1b:3b:
        ba:b6:6d:f5:f5:e0:7a:af:68:5d:f3:30:da:e2:c9:51:
        49:1b:22:d2:59:49:f6:c3:03:7b:01:cc:3b:77:75:8c:
        8f:ef:61:a3:20:b7:9e:2a:b9:cb:c6:8e:0a:d5:e4:b6:
        e2:28:f9:27:09:fb:36:fc:6a:c3:5f:69:eb:29:14:03:
        fe:dc:03:88:6e:3a:48:a5:cf:95:02:c4:ea:4c:96:12:
        0c:5f:03:37:85:72:da:a9:65:a1:dc:ea:de:2e:15:0f:
        3f:8e:21:eb:e8:4b:b2:ac:14:16:8a:04:76:8d:e6:fd:
        b6:7e:37:c9:47:48:8e:01:d1:0b:ac:52:c9:72:ac:b3:
        b0:26:56:a5:42:ca:4b:59:3d:67:f5:1b:47:15:0e:a2
    Fingerprint (SHA-256):
        73:35:48:B4:5B:E3:99:F7:E1:82:5F:F8:96:F6:96:99:48:95:21:F6:32:81:61:C5:53:70:13:59:5F:5F:C1:03
    Fingerprint (SHA1):
        51:34:72:19:A9:3F:78:E0:F8:2F:FC:31:F3:B5:CC:96:3F:54:1C:4D
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:35:14 2017
            Not After : Mon May 02 15:35:14 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f2:e5:00:19:e0:de:cb:64:93:de:43:9a:f3:59:58:
                    c7:fe:5e:69:b4:db:4c:13:c5:e7:6c:55:0a:a3:49:d4:
                    21:3a:c4:d4:4a:ba:0a:c8:c7:8e:4e:5e:92:c6:74:52:
                    3b:6f:30:b1:dd:04:00:3c:00:7a:11:ba:e9:be:cb:ef:
                    ad:e6:0d:92:89:f5:dc:ec:ff:4a:8f:62:12:09:52:53:
                    92:0d:48:33:6d:c5:24:26:ac:06:c1:76:87:8d:49:19:
                    ef:02:e7:e5:bc:39:78:45:67:0e:11:8a:46:a8:c9:ca:
                    29:5a:dc:85:6c:8a:ae:2c:e2:a6:a0:e1:dc:2e:f7:f4:
                    4d:c9:57:64:62:d9:0b:cf:18:b9:dc:18:82:bc:3b:5d:
                    a7:64:42:a1:b4:e5:18:d1:78:d5:ed:02:4a:be:a2:d3:
                    74:32:54:b5:3b:b4:a4:03:45:10:11:e5:45:13:93:0b:
                    0d:9d:c8:92:02:ce:35:8e:f6:19:73:fc:30:40:a1:97:
                    38:34:c0:b5:c0:18:d9:db:be:35:79:9c:58:21:48:91:
                    74:38:e6:fb:a6:e9:db:5d:bf:17:55:43:1e:ba:e5:6a:
                    29:ba:3c:52:82:c5:5a:60:80:b5:f9:8c:e8:3c:4b:3e:
                    d8:4a:96:15:24:6f:da:7e:21:4b:e0:18:9d:51:0d:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a1:50:9c:96:33:4a:54:33:64:97:6b:de:d4:d9:a5:
        73:f3:b4:d2:9e:a6:7c:a4:10:6d:25:9a:b5:43:83:67:
        37:ac:59:b9:ca:cd:b5:27:32:88:5a:3c:68:e5:8d:a2:
        27:32:4e:f3:a5:da:99:32:bc:6e:54:84:55:b4:80:92:
        10:f3:50:5a:9e:a0:2d:84:bd:70:ac:be:3b:f3:74:b1:
        12:d4:9f:37:8f:5e:d9:ca:e5:db:cf:5c:65:57:1c:b2:
        31:25:27:49:bf:e8:1d:d4:df:c5:b5:92:f6:0a:03:c7:
        89:b3:3b:61:e5:d3:33:f5:38:82:b0:07:cf:49:67:af:
        b1:d7:87:99:c6:5e:0c:53:52:43:50:84:c0:be:be:4d:
        55:7f:41:41:8d:76:e0:69:cf:bb:c2:f7:b9:32:05:16:
        c4:ed:05:02:b6:48:56:20:91:d2:4a:9b:3d:97:1a:83:
        59:fa:69:10:9c:e7:6e:63:bb:9c:0d:32:9b:d7:b3:61:
        2b:ad:30:3c:55:dd:48:9d:b0:38:5a:b6:34:58:6e:6a:
        14:a6:d6:fd:1d:bb:93:85:5c:25:2d:e9:7c:87:93:98:
        c4:71:00:12:f1:14:35:0d:34:c7:7f:4c:37:00:09:77:
        79:9f:a9:1d:05:da:8a:f1:f7:99:a7:1f:59:08:47:d0
    Fingerprint (SHA-256):
        43:D1:0C:F8:17:E7:97:37:B2:8F:80:F0:DA:EB:BD:14:90:F6:B7:81:0C:C4:74:0A:F5:3D:31:AB:38:9C:18:15
    Fingerprint (SHA1):
        B9:08:D9:33:E7:CA:7F:C5:01:F0:7E:69:BE:C1:34:B7:12:8C:6B:E5
    Friendly Name: Alice
tools.sh: #4990: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4991: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #4992: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4993: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #4994: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #4995: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #4996: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #4997: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #4998: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #4999: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5000: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:35:55 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:35:55 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5001: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5002: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6b0bf9c217cf3dd4e4eed0db607efaa82e17efb1   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5003: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5004: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5005: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5006: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5007: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5008: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5009: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5010: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5011: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5012: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5013: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6b0bf9c217cf3dd4e4eed0db607efaa82e17efb1   FIPS_PUB_140_Test_Certificate
fips.sh: #5014: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5015: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5016: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5017: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5018: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6b0bf9c217cf3dd4e4eed0db607efaa82e17efb1   FIPS_PUB_140_Test_Certificate
fips.sh: #5019: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #5020: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #5021: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x000447d4 (280532): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #5022: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:36:09 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:36:09 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28224 >/dev/null 2>/dev/null
selfserv_9122 with PID 28224 found at Tue May  2 15:36:09 UTC 2017
selfserv_9122 with PID 28224 started at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5023: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28224 at Tue May  2 15:36:09 UTC 2017
kill -USR1 28224
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28224 killed at Tue May  2 15:36:09 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28280 >/dev/null 2>/dev/null
selfserv_9122 with PID 28280 found at Tue May  2 15:36:09 UTC 2017
selfserv_9122 with PID 28280 started at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5024: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28280 at Tue May  2 15:36:09 UTC 2017
kill -USR1 28280
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28280 killed at Tue May  2 15:36:09 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28336 >/dev/null 2>/dev/null
selfserv_9122 with PID 28336 found at Tue May  2 15:36:09 UTC 2017
selfserv_9122 with PID 28336 started at Tue May  2 15:36:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5025: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28336 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28336
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28336 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28404 >/dev/null 2>/dev/null
selfserv_9122 with PID 28404 found at Tue May  2 15:36:10 UTC 2017
selfserv_9122 with PID 28404 started at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5026: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28404 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28404 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28460 >/dev/null 2>/dev/null
selfserv_9122 with PID 28460 found at Tue May  2 15:36:10 UTC 2017
selfserv_9122 with PID 28460 started at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5027: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28460 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28460
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28460 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28516 >/dev/null 2>/dev/null
selfserv_9122 with PID 28516 found at Tue May  2 15:36:10 UTC 2017
selfserv_9122 with PID 28516 started at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5028: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28516 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28516
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28516 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28584 >/dev/null 2>/dev/null
selfserv_9122 with PID 28584 found at Tue May  2 15:36:10 UTC 2017
selfserv_9122 with PID 28584 started at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5029: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28584 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28584
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28584 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28640 >/dev/null 2>/dev/null
selfserv_9122 with PID 28640 found at Tue May  2 15:36:10 UTC 2017
selfserv_9122 with PID 28640 started at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5030: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 28640 at Tue May  2 15:36:10 UTC 2017
kill -USR1 28640
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28640 killed at Tue May  2 15:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28696 >/dev/null 2>/dev/null
selfserv_9122 with PID 28696 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 28696 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5031: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28696 at Tue May  2 15:36:11 UTC 2017
kill -USR1 28696
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28696 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28764 >/dev/null 2>/dev/null
selfserv_9122 with PID 28764 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 28764 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5032: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28764 at Tue May  2 15:36:11 UTC 2017
kill -USR1 28764
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28764 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28820 >/dev/null 2>/dev/null
selfserv_9122 with PID 28820 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 28820 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5033: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28820 at Tue May  2 15:36:11 UTC 2017
kill -USR1 28820
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28820 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28876 >/dev/null 2>/dev/null
selfserv_9122 with PID 28876 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 28876 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5034: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28876 at Tue May  2 15:36:11 UTC 2017
kill -USR1 28876
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28876 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28944 >/dev/null 2>/dev/null
selfserv_9122 with PID 28944 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 28944 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5035: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 28944 at Tue May  2 15:36:11 UTC 2017
kill -USR1 28944
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28944 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29002 >/dev/null 2>/dev/null
selfserv_9122 with PID 29002 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 29002 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5036: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29002 at Tue May  2 15:36:11 UTC 2017
kill -USR1 29002
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29002 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29058 >/dev/null 2>/dev/null
selfserv_9122 with PID 29058 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 29058 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5037: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29058 at Tue May  2 15:36:11 UTC 2017
kill -USR1 29058
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29058 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29126 >/dev/null 2>/dev/null
selfserv_9122 with PID 29126 found at Tue May  2 15:36:11 UTC 2017
selfserv_9122 with PID 29126 started at Tue May  2 15:36:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5038: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29126 at Tue May  2 15:36:11 UTC 2017
kill -USR1 29126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29126 killed at Tue May  2 15:36:11 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29182 >/dev/null 2>/dev/null
selfserv_9122 with PID 29182 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29182 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5039: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29182 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29182
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29182 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29238 >/dev/null 2>/dev/null
selfserv_9122 with PID 29238 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29238 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5040: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29238 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29238
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29238 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29306 >/dev/null 2>/dev/null
selfserv_9122 with PID 29306 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29306 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5041: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29306 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29306
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29306 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29362 >/dev/null 2>/dev/null
selfserv_9122 with PID 29362 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29362 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5042: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29362 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29362
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29362 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29418 >/dev/null 2>/dev/null
selfserv_9122 with PID 29418 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29418 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5043: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29418 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29418
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29418 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29486 >/dev/null 2>/dev/null
selfserv_9122 with PID 29486 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29486 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5044: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29486 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29486
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29486 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29542 >/dev/null 2>/dev/null
selfserv_9122 with PID 29542 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29542 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5045: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29542 at Tue May  2 15:36:12 UTC 2017
kill -USR1 29542
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29542 killed at Tue May  2 15:36:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29598 >/dev/null 2>/dev/null
selfserv_9122 with PID 29598 found at Tue May  2 15:36:12 UTC 2017
selfserv_9122 with PID 29598 started at Tue May  2 15:36:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5046: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29598 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29598
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29598 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29666 >/dev/null 2>/dev/null
selfserv_9122 with PID 29666 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29666 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5047: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29666 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29666
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29666 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29722 >/dev/null 2>/dev/null
selfserv_9122 with PID 29722 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29722 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5048: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 29722 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29722
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29722 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29778 >/dev/null 2>/dev/null
selfserv_9122 with PID 29778 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29778 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5049: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29778 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29778
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29778 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29846 >/dev/null 2>/dev/null
selfserv_9122 with PID 29846 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29846 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5050: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29846 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29846
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29846 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29902 >/dev/null 2>/dev/null
selfserv_9122 with PID 29902 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29902 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5051: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29902 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29902
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29902 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29958 >/dev/null 2>/dev/null
selfserv_9122 with PID 29958 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 29958 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5052: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 29958 at Tue May  2 15:36:13 UTC 2017
kill -USR1 29958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29958 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30026 >/dev/null 2>/dev/null
selfserv_9122 with PID 30026 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 30026 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5053: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 30026 at Tue May  2 15:36:13 UTC 2017
kill -USR1 30026
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30026 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30082 >/dev/null 2>/dev/null
selfserv_9122 with PID 30082 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 30082 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5054: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 30082 at Tue May  2 15:36:13 UTC 2017
kill -USR1 30082
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30082 killed at Tue May  2 15:36:13 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30138 >/dev/null 2>/dev/null
selfserv_9122 with PID 30138 found at Tue May  2 15:36:13 UTC 2017
selfserv_9122 with PID 30138 started at Tue May  2 15:36:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5055: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 30138 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30138
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30138 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30206 >/dev/null 2>/dev/null
selfserv_9122 with PID 30206 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30206 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5056: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 30206 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30206
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30206 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30262 >/dev/null 2>/dev/null
selfserv_9122 with PID 30262 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30262 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5057: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30262 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30262
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30262 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30318 >/dev/null 2>/dev/null
selfserv_9122 with PID 30318 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30318 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5058: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 30318 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30318 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30386 >/dev/null 2>/dev/null
selfserv_9122 with PID 30386 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30386 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5059: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30386 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30386 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30442 >/dev/null 2>/dev/null
selfserv_9122 with PID 30442 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30442 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5060: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30442 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30442
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30442 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9122 with PID 30498 found at Tue May  2 15:36:14 UTC 2017
selfserv_9122 with PID 30498 started at Tue May  2 15:36:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5061: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30498 at Tue May  2 15:36:14 UTC 2017
kill -USR1 30498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30498 killed at Tue May  2 15:36:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30566 >/dev/null 2>/dev/null
selfserv_9122 with PID 30566 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30566 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5062: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30566 at Tue May  2 15:36:15 UTC 2017
kill -USR1 30566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30566 killed at Tue May  2 15:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30622 >/dev/null 2>/dev/null
selfserv_9122 with PID 30622 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30622 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5063: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30622 at Tue May  2 15:36:15 UTC 2017
kill -USR1 30622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30622 killed at Tue May  2 15:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30678 >/dev/null 2>/dev/null
selfserv_9122 with PID 30678 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30678 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5064: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30678 at Tue May  2 15:36:15 UTC 2017
kill -USR1 30678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30678 killed at Tue May  2 15:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30746 >/dev/null 2>/dev/null
selfserv_9122 with PID 30746 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30746 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5065: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30746 at Tue May  2 15:36:15 UTC 2017
kill -USR1 30746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30746 killed at Tue May  2 15:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30802 >/dev/null 2>/dev/null
selfserv_9122 with PID 30802 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30802 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5066: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 30802 at Tue May  2 15:36:15 UTC 2017
kill -USR1 30802
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30802 killed at Tue May  2 15:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30858 >/dev/null 2>/dev/null
selfserv_9122 with PID 30858 found at Tue May  2 15:36:15 UTC 2017
selfserv_9122 with PID 30858 started at Tue May  2 15:36:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5067: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30858 at Tue May  2 15:36:16 UTC 2017
kill -USR1 30858
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30858 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30926 >/dev/null 2>/dev/null
selfserv_9122 with PID 30926 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 30926 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5068: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30926 at Tue May  2 15:36:16 UTC 2017
kill -USR1 30926
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30926 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30982 >/dev/null 2>/dev/null
selfserv_9122 with PID 30982 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 30982 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5069: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30982 at Tue May  2 15:36:16 UTC 2017
kill -USR1 30982
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30982 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31038 >/dev/null 2>/dev/null
selfserv_9122 with PID 31038 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 31038 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5070: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31038 at Tue May  2 15:36:16 UTC 2017
kill -USR1 31038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31038 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31106 >/dev/null 2>/dev/null
selfserv_9122 with PID 31106 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 31106 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5071: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31106 at Tue May  2 15:36:16 UTC 2017
kill -USR1 31106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31106 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31163 >/dev/null 2>/dev/null
selfserv_9122 with PID 31163 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 31163 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5072: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31163 at Tue May  2 15:36:16 UTC 2017
kill -USR1 31163
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31163 killed at Tue May  2 15:36:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31219 >/dev/null 2>/dev/null
selfserv_9122 with PID 31219 found at Tue May  2 15:36:16 UTC 2017
selfserv_9122 with PID 31219 started at Tue May  2 15:36:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5073: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31219 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31219
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31219 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31287 >/dev/null 2>/dev/null
selfserv_9122 with PID 31287 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31287 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5074: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31287 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31287
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31287 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31343 >/dev/null 2>/dev/null
selfserv_9122 with PID 31343 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31343 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5075: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31343 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31343
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31343 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31399 >/dev/null 2>/dev/null
selfserv_9122 with PID 31399 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31399 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5076: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31399 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31399
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31399 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31467 >/dev/null 2>/dev/null
selfserv_9122 with PID 31467 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31467 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5077: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31467 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31467
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31467 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31523 >/dev/null 2>/dev/null
selfserv_9122 with PID 31523 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31523 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5078: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31523 at Tue May  2 15:36:17 UTC 2017
kill -USR1 31523
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31523 killed at Tue May  2 15:36:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31579 >/dev/null 2>/dev/null
selfserv_9122 with PID 31579 found at Tue May  2 15:36:17 UTC 2017
selfserv_9122 with PID 31579 started at Tue May  2 15:36:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5079: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31579 at Tue May  2 15:36:18 UTC 2017
kill -USR1 31579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31579 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31647 >/dev/null 2>/dev/null
selfserv_9122 with PID 31647 found at Tue May  2 15:36:18 UTC 2017
selfserv_9122 with PID 31647 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5080: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31647 at Tue May  2 15:36:18 UTC 2017
kill -USR1 31647
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31647 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31703 >/dev/null 2>/dev/null
selfserv_9122 with PID 31703 found at Tue May  2 15:36:18 UTC 2017
selfserv_9122 with PID 31703 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5081: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31703 at Tue May  2 15:36:18 UTC 2017
kill -USR1 31703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31703 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31759 >/dev/null 2>/dev/null
selfserv_9122 with PID 31759 found at Tue May  2 15:36:18 UTC 2017
selfserv_9122 with PID 31759 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5082: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31759 at Tue May  2 15:36:18 UTC 2017
kill -USR1 31759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31759 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31827 >/dev/null 2>/dev/null
selfserv_9122 with PID 31827 found at Tue May  2 15:36:18 UTC 2017
selfserv_9122 with PID 31827 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5083: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31827 at Tue May  2 15:36:19 UTC 2017
kill -USR1 31827
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31827 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31883 >/dev/null 2>/dev/null
selfserv_9122 with PID 31883 found at Tue May  2 15:36:19 UTC 2017
selfserv_9122 with PID 31883 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5084: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31883 at Tue May  2 15:36:19 UTC 2017
kill -USR1 31883
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31883 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31939 >/dev/null 2>/dev/null
selfserv_9122 with PID 31939 found at Tue May  2 15:36:19 UTC 2017
selfserv_9122 with PID 31939 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5085: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31939 at Tue May  2 15:36:19 UTC 2017
kill -USR1 31939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31939 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32007 >/dev/null 2>/dev/null
selfserv_9122 with PID 32007 found at Tue May  2 15:36:19 UTC 2017
selfserv_9122 with PID 32007 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5086: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32007 at Tue May  2 15:36:19 UTC 2017
kill -USR1 32007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32007 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32063 >/dev/null 2>/dev/null
selfserv_9122 with PID 32063 found at Tue May  2 15:36:19 UTC 2017
selfserv_9122 with PID 32063 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5087: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32063 at Tue May  2 15:36:19 UTC 2017
kill -USR1 32063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32063 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32119 >/dev/null 2>/dev/null
selfserv_9122 with PID 32119 found at Tue May  2 15:36:19 UTC 2017
selfserv_9122 with PID 32119 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5088: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32119 at Tue May  2 15:36:20 UTC 2017
kill -USR1 32119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32119 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32187 >/dev/null 2>/dev/null
selfserv_9122 with PID 32187 found at Tue May  2 15:36:20 UTC 2017
selfserv_9122 with PID 32187 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5089: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32187 at Tue May  2 15:36:20 UTC 2017
kill -USR1 32187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32187 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32243 >/dev/null 2>/dev/null
selfserv_9122 with PID 32243 found at Tue May  2 15:36:20 UTC 2017
selfserv_9122 with PID 32243 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5090: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32243 at Tue May  2 15:36:20 UTC 2017
kill -USR1 32243
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32243 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32299 >/dev/null 2>/dev/null
selfserv_9122 with PID 32299 found at Tue May  2 15:36:20 UTC 2017
selfserv_9122 with PID 32299 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5091: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32299 at Tue May  2 15:36:20 UTC 2017
kill -USR1 32299
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32299 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32367 >/dev/null 2>/dev/null
selfserv_9122 with PID 32367 found at Tue May  2 15:36:20 UTC 2017
selfserv_9122 with PID 32367 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5092: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32367 at Tue May  2 15:36:20 UTC 2017
kill -USR1 32367
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32367 killed at Tue May  2 15:36:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32423 >/dev/null 2>/dev/null
selfserv_9122 with PID 32423 found at Tue May  2 15:36:20 UTC 2017
selfserv_9122 with PID 32423 started at Tue May  2 15:36:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5093: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32423 at Tue May  2 15:36:21 UTC 2017
kill -USR1 32423
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32423 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32479 >/dev/null 2>/dev/null
selfserv_9122 with PID 32479 found at Tue May  2 15:36:21 UTC 2017
selfserv_9122 with PID 32479 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5094: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 32479 at Tue May  2 15:36:21 UTC 2017
kill -USR1 32479
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32479 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32547 >/dev/null 2>/dev/null
selfserv_9122 with PID 32547 found at Tue May  2 15:36:21 UTC 2017
selfserv_9122 with PID 32547 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5095: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32547 at Tue May  2 15:36:21 UTC 2017
kill -USR1 32547
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32547 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32603 >/dev/null 2>/dev/null
selfserv_9122 with PID 32603 found at Tue May  2 15:36:21 UTC 2017
selfserv_9122 with PID 32603 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5096: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32603 at Tue May  2 15:36:21 UTC 2017
kill -USR1 32603
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32603 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32659 >/dev/null 2>/dev/null
selfserv_9122 with PID 32659 found at Tue May  2 15:36:21 UTC 2017
selfserv_9122 with PID 32659 started at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5097: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32659 at Tue May  2 15:36:21 UTC 2017
kill -USR1 32659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32659 killed at Tue May  2 15:36:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32727 >/dev/null 2>/dev/null
selfserv_9122 with PID 32727 found at Tue May  2 15:36:21 UTC 2017
selfserv_9122 with PID 32727 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5098: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32727 at Tue May  2 15:36:22 UTC 2017
kill -USR1 32727
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32727 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 318 >/dev/null 2>/dev/null
selfserv_9122 with PID 318 found at Tue May  2 15:36:22 UTC 2017
selfserv_9122 with PID 318 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5099: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 318 at Tue May  2 15:36:22 UTC 2017
kill -USR1 318
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 318 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 375 >/dev/null 2>/dev/null
selfserv_9122 with PID 375 found at Tue May  2 15:36:22 UTC 2017
selfserv_9122 with PID 375 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5100: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 375 at Tue May  2 15:36:22 UTC 2017
kill -USR1 375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 375 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 446 >/dev/null 2>/dev/null
selfserv_9122 with PID 446 found at Tue May  2 15:36:22 UTC 2017
selfserv_9122 with PID 446 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5101: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 446 at Tue May  2 15:36:22 UTC 2017
kill -USR1 446
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 446 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 505 >/dev/null 2>/dev/null
selfserv_9122 with PID 505 found at Tue May  2 15:36:22 UTC 2017
selfserv_9122 with PID 505 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5102: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 505 at Tue May  2 15:36:22 UTC 2017
kill -USR1 505
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 505 killed at Tue May  2 15:36:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 564 >/dev/null 2>/dev/null
selfserv_9122 with PID 564 found at Tue May  2 15:36:22 UTC 2017
selfserv_9122 with PID 564 started at Tue May  2 15:36:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5103: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 564 at Tue May  2 15:36:23 UTC 2017
kill -USR1 564
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 564 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 648 >/dev/null 2>/dev/null
selfserv_9122 with PID 648 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 648 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5104: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 648 at Tue May  2 15:36:23 UTC 2017
kill -USR1 648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 648 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 707 >/dev/null 2>/dev/null
selfserv_9122 with PID 707 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 707 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5105: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 707 at Tue May  2 15:36:23 UTC 2017
kill -USR1 707
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 707 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 765 >/dev/null 2>/dev/null
selfserv_9122 with PID 765 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 765 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5106: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 765 at Tue May  2 15:36:23 UTC 2017
kill -USR1 765
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 765 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 889 >/dev/null 2>/dev/null
selfserv_9122 with PID 889 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 889 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5107: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 889 at Tue May  2 15:36:23 UTC 2017
kill -USR1 889
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 889 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 945 >/dev/null 2>/dev/null
selfserv_9122 with PID 945 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 945 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5108: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 945 at Tue May  2 15:36:23 UTC 2017
kill -USR1 945
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 945 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1004 >/dev/null 2>/dev/null
selfserv_9122 with PID 1004 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 1004 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5109: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1004 at Tue May  2 15:36:23 UTC 2017
kill -USR1 1004
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1004 killed at Tue May  2 15:36:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1073 >/dev/null 2>/dev/null
selfserv_9122 with PID 1073 found at Tue May  2 15:36:23 UTC 2017
selfserv_9122 with PID 1073 started at Tue May  2 15:36:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5110: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1073 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1073
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1073 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1129 >/dev/null 2>/dev/null
selfserv_9122 with PID 1129 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1129 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5111: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1129 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1129
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1129 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1185 >/dev/null 2>/dev/null
selfserv_9122 with PID 1185 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1185 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5112: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 1185 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1185
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1185 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1262 >/dev/null 2>/dev/null
selfserv_9122 with PID 1262 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1262 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5113: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1262 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1262
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1262 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1318 >/dev/null 2>/dev/null
selfserv_9122 with PID 1318 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1318 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5114: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1318 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1318 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1374 >/dev/null 2>/dev/null
selfserv_9122 with PID 1374 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1374 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5115: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1374 at Tue May  2 15:36:24 UTC 2017
kill -USR1 1374
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1374 killed at Tue May  2 15:36:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1442 >/dev/null 2>/dev/null
selfserv_9122 with PID 1442 found at Tue May  2 15:36:24 UTC 2017
selfserv_9122 with PID 1442 started at Tue May  2 15:36:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5116: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1442 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1442
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1442 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1498 >/dev/null 2>/dev/null
selfserv_9122 with PID 1498 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1498 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5117: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1498 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1498
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1498 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1554 >/dev/null 2>/dev/null
selfserv_9122 with PID 1554 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1554 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5118: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1554 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1554
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1554 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1622 >/dev/null 2>/dev/null
selfserv_9122 with PID 1622 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1622 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5119: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1622 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1622
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1622 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1679 >/dev/null 2>/dev/null
selfserv_9122 with PID 1679 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1679 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5120: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1679 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1679 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1735 >/dev/null 2>/dev/null
selfserv_9122 with PID 1735 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1735 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5121: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1735 at Tue May  2 15:36:25 UTC 2017
kill -USR1 1735
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1735 killed at Tue May  2 15:36:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1803 >/dev/null 2>/dev/null
selfserv_9122 with PID 1803 found at Tue May  2 15:36:25 UTC 2017
selfserv_9122 with PID 1803 started at Tue May  2 15:36:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5122: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1803 at Tue May  2 15:36:26 UTC 2017
kill -USR1 1803
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1803 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1859 >/dev/null 2>/dev/null
selfserv_9122 with PID 1859 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 1859 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5123: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1859 at Tue May  2 15:36:26 UTC 2017
kill -USR1 1859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1859 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1915 >/dev/null 2>/dev/null
selfserv_9122 with PID 1915 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 1915 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5124: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1915 at Tue May  2 15:36:26 UTC 2017
kill -USR1 1915
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1915 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1983 >/dev/null 2>/dev/null
selfserv_9122 with PID 1983 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 1983 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5125: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1983 at Tue May  2 15:36:26 UTC 2017
kill -USR1 1983
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1983 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2039 >/dev/null 2>/dev/null
selfserv_9122 with PID 2039 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 2039 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5126: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2039 at Tue May  2 15:36:26 UTC 2017
kill -USR1 2039
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2039 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2095 >/dev/null 2>/dev/null
selfserv_9122 with PID 2095 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 2095 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5127: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2095 at Tue May  2 15:36:26 UTC 2017
kill -USR1 2095
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2095 killed at Tue May  2 15:36:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2163 >/dev/null 2>/dev/null
selfserv_9122 with PID 2163 found at Tue May  2 15:36:26 UTC 2017
selfserv_9122 with PID 2163 started at Tue May  2 15:36:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5128: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2163 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2163
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2163 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2219 >/dev/null 2>/dev/null
selfserv_9122 with PID 2219 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2219 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5129: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2219 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2219
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2219 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2275 >/dev/null 2>/dev/null
selfserv_9122 with PID 2275 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2275 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5130: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2275 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2275
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2275 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2343 >/dev/null 2>/dev/null
selfserv_9122 with PID 2343 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2343 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5131: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2343 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2343 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2399 >/dev/null 2>/dev/null
selfserv_9122 with PID 2399 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2399 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5132: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2399 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2399
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2399 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2455 >/dev/null 2>/dev/null
selfserv_9122 with PID 2455 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2455 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5133: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2455 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2455
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2455 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2523 >/dev/null 2>/dev/null
selfserv_9122 with PID 2523 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2523 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5134: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2523 at Tue May  2 15:36:27 UTC 2017
kill -USR1 2523
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2523 killed at Tue May  2 15:36:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2579 >/dev/null 2>/dev/null
selfserv_9122 with PID 2579 found at Tue May  2 15:36:27 UTC 2017
selfserv_9122 with PID 2579 started at Tue May  2 15:36:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5135: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2579 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2579
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2579 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2635 >/dev/null 2>/dev/null
selfserv_9122 with PID 2635 found at Tue May  2 15:36:28 UTC 2017
selfserv_9122 with PID 2635 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5136: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 2635 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2635
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2635 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2703 >/dev/null 2>/dev/null
selfserv_9122 with PID 2703 found at Tue May  2 15:36:28 UTC 2017
selfserv_9122 with PID 2703 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5137: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2703 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2703 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2759 >/dev/null 2>/dev/null
selfserv_9122 with PID 2759 found at Tue May  2 15:36:28 UTC 2017
selfserv_9122 with PID 2759 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5138: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2759 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2759 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2815 >/dev/null 2>/dev/null
selfserv_9122 with PID 2815 found at Tue May  2 15:36:28 UTC 2017
selfserv_9122 with PID 2815 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5139: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2815 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2815
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2815 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2883 >/dev/null 2>/dev/null
selfserv_9122 with PID 2883 found at Tue May  2 15:36:28 UTC 2017
selfserv_9122 with PID 2883 started at Tue May  2 15:36:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5140: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2883 at Tue May  2 15:36:28 UTC 2017
kill -USR1 2883
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2883 killed at Tue May  2 15:36:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2939 >/dev/null 2>/dev/null
selfserv_9122 with PID 2939 found at Tue May  2 15:36:29 UTC 2017
selfserv_9122 with PID 2939 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5141: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2939 at Tue May  2 15:36:29 UTC 2017
kill -USR1 2939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2939 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2995 >/dev/null 2>/dev/null
selfserv_9122 with PID 2995 found at Tue May  2 15:36:29 UTC 2017
selfserv_9122 with PID 2995 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5142: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2995 at Tue May  2 15:36:29 UTC 2017
kill -USR1 2995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2995 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3063 >/dev/null 2>/dev/null
selfserv_9122 with PID 3063 found at Tue May  2 15:36:29 UTC 2017
selfserv_9122 with PID 3063 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5143: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3063 at Tue May  2 15:36:29 UTC 2017
kill -USR1 3063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3063 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3119 >/dev/null 2>/dev/null
selfserv_9122 with PID 3119 found at Tue May  2 15:36:29 UTC 2017
selfserv_9122 with PID 3119 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5144: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3119 at Tue May  2 15:36:29 UTC 2017
kill -USR1 3119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3119 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3175 >/dev/null 2>/dev/null
selfserv_9122 with PID 3175 found at Tue May  2 15:36:29 UTC 2017
selfserv_9122 with PID 3175 started at Tue May  2 15:36:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5145: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3175 at Tue May  2 15:36:29 UTC 2017
kill -USR1 3175
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3175 killed at Tue May  2 15:36:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3243 >/dev/null 2>/dev/null
selfserv_9122 with PID 3243 found at Tue May  2 15:36:30 UTC 2017
selfserv_9122 with PID 3243 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5146: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3243 at Tue May  2 15:36:30 UTC 2017
kill -USR1 3243
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3243 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3299 >/dev/null 2>/dev/null
selfserv_9122 with PID 3299 found at Tue May  2 15:36:30 UTC 2017
selfserv_9122 with PID 3299 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5147: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3299 at Tue May  2 15:36:30 UTC 2017
kill -USR1 3299
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3299 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3355 >/dev/null 2>/dev/null
selfserv_9122 with PID 3355 found at Tue May  2 15:36:30 UTC 2017
selfserv_9122 with PID 3355 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5148: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3355 at Tue May  2 15:36:30 UTC 2017
kill -USR1 3355
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3355 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3423 >/dev/null 2>/dev/null
selfserv_9122 with PID 3423 found at Tue May  2 15:36:30 UTC 2017
selfserv_9122 with PID 3423 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5149: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3423 at Tue May  2 15:36:30 UTC 2017
kill -USR1 3423
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3423 killed at Tue May  2 15:36:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3479 >/dev/null 2>/dev/null
selfserv_9122 with PID 3479 found at Tue May  2 15:36:30 UTC 2017
selfserv_9122 with PID 3479 started at Tue May  2 15:36:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5150: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3479 at Tue May  2 15:36:31 UTC 2017
kill -USR1 3479
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3479 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3535 >/dev/null 2>/dev/null
selfserv_9122 with PID 3535 found at Tue May  2 15:36:31 UTC 2017
selfserv_9122 with PID 3535 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5151: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3535 at Tue May  2 15:36:31 UTC 2017
kill -USR1 3535
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3535 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3604 >/dev/null 2>/dev/null
selfserv_9122 with PID 3604 found at Tue May  2 15:36:31 UTC 2017
selfserv_9122 with PID 3604 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5152: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3604 at Tue May  2 15:36:31 UTC 2017
kill -USR1 3604
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3604 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3660 >/dev/null 2>/dev/null
selfserv_9122 with PID 3660 found at Tue May  2 15:36:31 UTC 2017
selfserv_9122 with PID 3660 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5153: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3660 at Tue May  2 15:36:31 UTC 2017
kill -USR1 3660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3660 killed at Tue May  2 15:36:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3716 >/dev/null 2>/dev/null
selfserv_9122 with PID 3716 found at Tue May  2 15:36:31 UTC 2017
selfserv_9122 with PID 3716 started at Tue May  2 15:36:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5154: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3716 at Tue May  2 15:36:32 UTC 2017
kill -USR1 3716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3716 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3784 >/dev/null 2>/dev/null
selfserv_9122 with PID 3784 found at Tue May  2 15:36:32 UTC 2017
selfserv_9122 with PID 3784 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5155: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3784 at Tue May  2 15:36:32 UTC 2017
kill -USR1 3784
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3784 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3841 >/dev/null 2>/dev/null
selfserv_9122 with PID 3841 found at Tue May  2 15:36:32 UTC 2017
selfserv_9122 with PID 3841 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5156: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3841 at Tue May  2 15:36:32 UTC 2017
kill -USR1 3841
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3841 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3897 >/dev/null 2>/dev/null
selfserv_9122 with PID 3897 found at Tue May  2 15:36:32 UTC 2017
selfserv_9122 with PID 3897 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5157: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3897 at Tue May  2 15:36:32 UTC 2017
kill -USR1 3897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3897 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3965 >/dev/null 2>/dev/null
selfserv_9122 with PID 3965 found at Tue May  2 15:36:32 UTC 2017
selfserv_9122 with PID 3965 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5158: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3965 at Tue May  2 15:36:32 UTC 2017
kill -USR1 3965
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3965 killed at Tue May  2 15:36:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4021 >/dev/null 2>/dev/null
selfserv_9122 with PID 4021 found at Tue May  2 15:36:32 UTC 2017
selfserv_9122 with PID 4021 started at Tue May  2 15:36:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5159: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4021 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4021
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4021 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4078 >/dev/null 2>/dev/null
selfserv_9122 with PID 4078 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4078 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5160: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4078 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4078
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4078 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4146 >/dev/null 2>/dev/null
selfserv_9122 with PID 4146 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4146 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5161: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4146 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4146 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4202 >/dev/null 2>/dev/null
selfserv_9122 with PID 4202 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4202 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5162: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4202 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4202
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4202 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4258 >/dev/null 2>/dev/null
selfserv_9122 with PID 4258 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4258 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5163: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4258 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4258
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4258 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4326 >/dev/null 2>/dev/null
selfserv_9122 with PID 4326 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4326 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5164: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4326 at Tue May  2 15:36:33 UTC 2017
kill -USR1 4326
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4326 killed at Tue May  2 15:36:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4382 >/dev/null 2>/dev/null
selfserv_9122 with PID 4382 found at Tue May  2 15:36:33 UTC 2017
selfserv_9122 with PID 4382 started at Tue May  2 15:36:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5165: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4382 at Tue May  2 15:36:34 UTC 2017
kill -USR1 4382
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4382 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4438 >/dev/null 2>/dev/null
selfserv_9122 with PID 4438 found at Tue May  2 15:36:34 UTC 2017
selfserv_9122 with PID 4438 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5166: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4438 at Tue May  2 15:36:34 UTC 2017
kill -USR1 4438
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4438 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4506 >/dev/null 2>/dev/null
selfserv_9122 with PID 4506 found at Tue May  2 15:36:34 UTC 2017
selfserv_9122 with PID 4506 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5167: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4506 at Tue May  2 15:36:34 UTC 2017
kill -USR1 4506
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4506 killed at Tue May  2 15:36:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4562 >/dev/null 2>/dev/null
selfserv_9122 with PID 4562 found at Tue May  2 15:36:34 UTC 2017
selfserv_9122 with PID 4562 started at Tue May  2 15:36:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5168: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4562 at Tue May  2 15:36:35 UTC 2017
kill -USR1 4562
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4562 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4618 >/dev/null 2>/dev/null
selfserv_9122 with PID 4618 found at Tue May  2 15:36:35 UTC 2017
selfserv_9122 with PID 4618 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5169: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4618 at Tue May  2 15:36:35 UTC 2017
kill -USR1 4618
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4618 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4686 >/dev/null 2>/dev/null
selfserv_9122 with PID 4686 found at Tue May  2 15:36:35 UTC 2017
selfserv_9122 with PID 4686 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5170: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4686 at Tue May  2 15:36:35 UTC 2017
kill -USR1 4686
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4686 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4742 >/dev/null 2>/dev/null
selfserv_9122 with PID 4742 found at Tue May  2 15:36:35 UTC 2017
selfserv_9122 with PID 4742 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5171: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4742 at Tue May  2 15:36:35 UTC 2017
kill -USR1 4742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4742 killed at Tue May  2 15:36:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4798 >/dev/null 2>/dev/null
selfserv_9122 with PID 4798 found at Tue May  2 15:36:35 UTC 2017
selfserv_9122 with PID 4798 started at Tue May  2 15:36:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5172: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4798 at Tue May  2 15:36:35 UTC 2017
kill -USR1 4798
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4798 killed at Tue May  2 15:36:36 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9122 starting at Tue May  2 15:36:36 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
selfserv_9122 with PID 4861 started at Tue May  2 15:36:36 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5173: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5174: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5175: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5176: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5177: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5178: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5179: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5180: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:36 UTC 2017
ssl.sh: #5181: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5182: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5183: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5184: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5185: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5186: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5187: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5188: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5189: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5190: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5191: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:37 UTC 2017
ssl.sh: #5192: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5193: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5194: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5195: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5196: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5197: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5198: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5199: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5200: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5201: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5202: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:38 UTC 2017
ssl.sh: #5203: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5204: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5205: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5206: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5207: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5208: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5209: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5210: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5211: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5212: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4861 >/dev/null 2>/dev/null
selfserv_9122 with PID 4861 found at Tue May  2 15:36:39 UTC 2017
ssl.sh: #5213: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 4861 at Tue May  2 15:36:39 UTC 2017
kill -USR1 4861
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4861 killed at Tue May  2 15:36:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:39 UTC 2017
selfserv_9122 with PID 6283 started at Tue May  2 15:36:39 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5214: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5215: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5216: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5217: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5218: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5219: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5220: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5221: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5222: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5223: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5224: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:40 UTC 2017
ssl.sh: #5225: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5226: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5227: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5228: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5229: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5230: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5231: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5232: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5233: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5234: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:41 UTC 2017
ssl.sh: #5235: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5236: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5237: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5238: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5239: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5240: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5241: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5242: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5243: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:42 UTC 2017
ssl.sh: #5244: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5245: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5246: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5247: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5248: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5249: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5250: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5251: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5252: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5253: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9122 with PID 6283 found at Tue May  2 15:36:43 UTC 2017
ssl.sh: #5254: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6283 at Tue May  2 15:36:43 UTC 2017
kill -USR1 6283
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6283 killed at Tue May  2 15:36:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:43 UTC 2017
selfserv_9122 with PID 7708 started at Tue May  2 15:36:43 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5255: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5256: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5257: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5258: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5259: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5260: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:44 UTC 2017
ssl.sh: #5261: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5262: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5263: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5264: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5265: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5266: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:45 UTC 2017
ssl.sh: #5267: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5268: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5269: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5270: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5271: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5272: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5273: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5274: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:46 UTC 2017
ssl.sh: #5275: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5276: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5277: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5278: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5279: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5280: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5281: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5282: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:47 UTC 2017
ssl.sh: #5283: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5284: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5285: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5286: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5287: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5288: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5289: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5290: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:48 UTC 2017
ssl.sh: #5291: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5292: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5293: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5294: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7708 >/dev/null 2>/dev/null
selfserv_9122 with PID 7708 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5295: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 7708 at Tue May  2 15:36:49 UTC 2017
kill -USR1 7708
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7708 killed at Tue May  2 15:36:49 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:49 UTC 2017
selfserv_9122 with PID 9131 started at Tue May  2 15:36:49 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5296: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5297: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:49 UTC 2017
ssl.sh: #5298: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5299: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5300: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5301: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5302: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5303: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5304: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5305: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5306: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:50 UTC 2017
ssl.sh: #5307: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5308: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5309: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5310: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5311: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5312: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5313: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5314: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5315: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5316: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5317: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5318: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:51 UTC 2017
ssl.sh: #5319: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5320: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5321: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5322: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5323: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5324: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5325: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5326: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5327: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5328: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5329: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5330: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:52 UTC 2017
ssl.sh: #5331: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5332: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5333: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5334: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5335: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9131 >/dev/null 2>/dev/null
selfserv_9122 with PID 9131 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5336: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9131 at Tue May  2 15:36:53 UTC 2017
kill -USR1 9131
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9131 killed at Tue May  2 15:36:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10558 >/dev/null 2>/dev/null
selfserv_9122 with PID 10558 found at Tue May  2 15:36:53 UTC 2017
selfserv_9122 with PID 10558 started at Tue May  2 15:36:53 UTC 2017
trying to kill selfserv_9122 with PID 10558 at Tue May  2 15:36:53 UTC 2017
kill -USR1 10558
./ssl.sh: line 183: 10558 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10558 killed at Tue May  2 15:36:53 UTC 2017
selfserv_9122 starting at Tue May  2 15:36:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:53 UTC 2017
selfserv_9122 with PID 10600 started at Tue May  2 15:36:53 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:53 UTC 2017
ssl.sh: #5340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5344: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5346: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:54 UTC 2017
ssl.sh: #5349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5350: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:55 UTC 2017
ssl.sh: #5358: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5359: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5360: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5361: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5362: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5363: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5364: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5365: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5366: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:56 UTC 2017
ssl.sh: #5367: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5368: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5369: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5370: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5371: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5372: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5373: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5374: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5375: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:57 UTC 2017
ssl.sh: #5376: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10600 >/dev/null 2>/dev/null
selfserv_9122 with PID 10600 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5377: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10600 at Tue May  2 15:36:58 UTC 2017
kill -USR1 10600
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10600 killed at Tue May  2 15:36:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:36:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:36:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
selfserv_9122 with PID 12025 started at Tue May  2 15:36:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:58 UTC 2017
ssl.sh: #5383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5385: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5387: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:36:59 UTC 2017
ssl.sh: #5389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5391: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:00 UTC 2017
ssl.sh: #5397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5399: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5400: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5401: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5402: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5403: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
ssl.sh: #5404: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5405: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5406: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5407: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5408: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5409: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5410: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5411: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:02 UTC 2017
ssl.sh: #5412: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5413: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5414: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5415: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5416: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5417: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12025 >/dev/null 2>/dev/null
selfserv_9122 with PID 12025 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5418: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12025 at Tue May  2 15:37:03 UTC 2017
kill -USR1 12025
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12025 killed at Tue May  2 15:37:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:03 UTC 2017
selfserv_9122 with PID 13454 started at Tue May  2 15:37:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:03 UTC 2017
ssl.sh: #5419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5426: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5428: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:04 UTC 2017
ssl.sh: #5429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5432: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:05 UTC 2017
ssl.sh: #5440: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5441: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5442: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5443: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5444: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5445: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5446: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5447: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5448: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5449: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5450: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:06 UTC 2017
ssl.sh: #5451: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5452: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5453: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5454: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5455: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5456: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5457: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5458: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13454 >/dev/null 2>/dev/null
selfserv_9122 with PID 13454 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5459: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13454 at Tue May  2 15:37:07 UTC 2017
kill -USR1 13454
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13454 killed at Tue May  2 15:37:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:07 UTC 2017
selfserv_9122 with PID 14876 started at Tue May  2 15:37:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:07 UTC 2017
ssl.sh: #5460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5467: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:08 UTC 2017
ssl.sh: #5468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5469: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5473: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:09 UTC 2017
ssl.sh: #5477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5481: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5482: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5483: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:10 UTC 2017
ssl.sh: #5484: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5485: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5486: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5487: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5488: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5489: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5490: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5491: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:11 UTC 2017
ssl.sh: #5492: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5493: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5494: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5495: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5496: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5497: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5498: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:12 UTC 2017
ssl.sh: #5499: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14876 >/dev/null 2>/dev/null
selfserv_9122 with PID 14876 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5500: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 14876 at Tue May  2 15:37:13 UTC 2017
kill -USR1 14876
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14876 killed at Tue May  2 15:37:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
selfserv_9122 with PID 16299 started at Tue May  2 15:37:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:13 UTC 2017
ssl.sh: #5505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5508: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5510: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:14 UTC 2017
ssl.sh: #5511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5514: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:15 UTC 2017
ssl.sh: #5518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5522: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5523: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:16 UTC 2017
ssl.sh: #5524: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #5525: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #5526: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #5527: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5528: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #5529: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:17 UTC 2017
ssl.sh: #5530: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5531: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5532: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5533: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5534: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5535: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:18 UTC 2017
ssl.sh: #5536: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5537: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5538: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5539: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5540: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16299 >/dev/null 2>/dev/null
selfserv_9122 with PID 16299 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5541: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16299 at Tue May  2 15:37:19 UTC 2017
kill -USR1 16299
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16299 killed at Tue May  2 15:37:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:19 UTC 2017
selfserv_9122 with PID 17724 started at Tue May  2 15:37:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:19 UTC 2017
ssl.sh: #5543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5549: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5551: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:20 UTC 2017
ssl.sh: #5552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5555: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:21 UTC 2017
ssl.sh: #5560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5563: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5564: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5565: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5566: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5567: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:22 UTC 2017
ssl.sh: #5568: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5569: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5570: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5571: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5572: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5573: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5574: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5575: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5576: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:23 UTC 2017
ssl.sh: #5577: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5578: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5579: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5580: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5581: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17724 >/dev/null 2>/dev/null
selfserv_9122 with PID 17724 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5582: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17724 at Tue May  2 15:37:24 UTC 2017
kill -USR1 17724
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17724 killed at Tue May  2 15:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19150 >/dev/null 2>/dev/null
selfserv_9122 with PID 19150 found at Tue May  2 15:37:24 UTC 2017
selfserv_9122 with PID 19150 started at Tue May  2 15:37:24 UTC 2017
trying to kill selfserv_9122 with PID 19150 at Tue May  2 15:37:24 UTC 2017
kill -USR1 19150
./ssl.sh: line 183: 19150 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 19150 killed at Tue May  2 15:37:24 UTC 2017
selfserv_9122 starting at Tue May  2 15:37:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:24 UTC 2017
selfserv_9122 with PID 19192 started at Tue May  2 15:37:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5583: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5584: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:24 UTC 2017
ssl.sh: #5585: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5586: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5587: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5588: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5589: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5590: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5591: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5592: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:25 UTC 2017
ssl.sh: #5593: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5594: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5595: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5596: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5597: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5598: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5599: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5600: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5601: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:26 UTC 2017
ssl.sh: #5602: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5603: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5604: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5605: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5606: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5607: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5608: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:27 UTC 2017
ssl.sh: #5609: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5610: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5611: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5612: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5613: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5614: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5615: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5616: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:28 UTC 2017
ssl.sh: #5617: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5618: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5619: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5620: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5621: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5622: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19192 >/dev/null 2>/dev/null
selfserv_9122 with PID 19192 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5623: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 19192 at Tue May  2 15:37:29 UTC 2017
kill -USR1 19192
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 19192 killed at Tue May  2 15:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:29 UTC 2017
selfserv_9122 with PID 20633 started at Tue May  2 15:37:29 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:29 UTC 2017
ssl.sh: #5624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:30 UTC 2017
ssl.sh: #5630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5631: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5633: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
ssl.sh: #5636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5637: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:32 UTC 2017
ssl.sh: #5644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5645: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5646: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5647: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5648: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5649: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
ssl.sh: #5650: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5651: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5652: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5653: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5654: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5655: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5656: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5657: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:34 UTC 2017
ssl.sh: #5658: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5659: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5660: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5661: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5662: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5663: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20633 >/dev/null 2>/dev/null
selfserv_9122 with PID 20633 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5664: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 20633 at Tue May  2 15:37:35 UTC 2017
kill -USR1 20633
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 20633 killed at Tue May  2 15:37:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:35 UTC 2017
selfserv_9122 with PID 22057 started at Tue May  2 15:37:35 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:35 UTC 2017
ssl.sh: #5665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5672: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5674: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:36 UTC 2017
ssl.sh: #5675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5678: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:37 UTC 2017
ssl.sh: #5685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5686: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5687: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5688: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5689: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5690: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5691: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5692: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5693: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5694: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:38 UTC 2017
ssl.sh: #5695: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5696: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5697: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5698: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5699: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5700: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5701: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5702: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5703: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5704: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22057 >/dev/null 2>/dev/null
selfserv_9122 with PID 22057 found at Tue May  2 15:37:39 UTC 2017
ssl.sh: #5705: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 22057 at Tue May  2 15:37:39 UTC 2017
kill -USR1 22057
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22057 killed at Tue May  2 15:37:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:39 UTC 2017
selfserv_9122 with PID 23481 started at Tue May  2 15:37:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:40 UTC 2017
ssl.sh: #5712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5713: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5715: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5719: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:41 UTC 2017
ssl.sh: #5720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5727: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:42 UTC 2017
ssl.sh: #5728: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5729: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5730: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5731: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5732: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5733: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5734: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5735: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:43 UTC 2017
ssl.sh: #5736: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5737: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5738: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5739: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5740: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5741: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5742: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5743: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:44 UTC 2017
ssl.sh: #5744: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5745: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23481 >/dev/null 2>/dev/null
selfserv_9122 with PID 23481 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5746: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 23481 at Tue May  2 15:37:45 UTC 2017
kill -USR1 23481
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23481 killed at Tue May  2 15:37:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:45 UTC 2017
selfserv_9122 with PID 24905 started at Tue May  2 15:37:45 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:45 UTC 2017
ssl.sh: #5750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5754: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:46 UTC 2017
ssl.sh: #5756: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #5757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #5758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #5759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5760: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #5761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:47 UTC 2017
ssl.sh: #5762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5768: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:48 UTC 2017
ssl.sh: #5769: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #5770: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #5771: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #5772: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #5773: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5774: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:49 UTC 2017
ssl.sh: #5775: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5776: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5777: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5778: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5779: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5780: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5781: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:50 UTC 2017
ssl.sh: #5782: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5783: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5784: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5785: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5786: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24905 >/dev/null 2>/dev/null
selfserv_9122 with PID 24905 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5787: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24905 at Tue May  2 15:37:51 UTC 2017
kill -USR1 24905
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24905 killed at Tue May  2 15:37:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:51 UTC 2017
selfserv_9122 with PID 26327 started at Tue May  2 15:37:51 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:51 UTC 2017
ssl.sh: #5790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5795: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5797: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:52 UTC 2017
ssl.sh: #5799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5801: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:53 UTC 2017
ssl.sh: #5808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5809: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5810: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5811: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5812: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5813: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5814: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5815: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:54 UTC 2017
ssl.sh: #5816: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5817: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5818: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5819: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5820: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5821: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5822: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5823: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5824: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5825: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:55 UTC 2017
ssl.sh: #5826: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #5827: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26327 >/dev/null 2>/dev/null
selfserv_9122 with PID 26327 found at Tue May  2 15:37:56 UTC 2017
ssl.sh: #5828: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26327 at Tue May  2 15:37:56 UTC 2017
kill -USR1 26327
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26327 killed at Tue May  2 15:37:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:37:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:37:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27750 >/dev/null 2>/dev/null
selfserv_9122 with PID 27750 found at Tue May  2 15:37:56 UTC 2017
selfserv_9122 with PID 27750 started at Tue May  2 15:37:56 UTC 2017
trying to kill selfserv_9122 with PID 27750 at Tue May  2 15:37:56 UTC 2017
kill -USR1 27750
./ssl.sh: line 183: 27750 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27750 killed at Tue May  2 15:37:56 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:37:56 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:37:56 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:37:56 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:37:56 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:37:56 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:37:56 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #5829: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153757 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5830: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #5831: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5832: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #5833: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5834: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5835: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5836: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5837: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #5838: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5839: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5840: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5841: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5842: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #5843: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5844: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5845: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5846: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5847: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #5848: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5849: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5850: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5851: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #5852: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5853: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5854: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5855: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #5856: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5857: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5858: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5859: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #5860: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5861: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5862: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5863: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #5864: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5865: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5866: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5867: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #5868: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5869: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5870: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5871: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #5872: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5873: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5874: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5875: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #5876: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5877: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5878: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5879: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #5880: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5881: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5882: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5883: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #5884: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5885: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5886: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5887: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #5888: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5889: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5890: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5891: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153804Z
nextupdate=20180502153804Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:38:04 2017
    Next Update: Wed May 02 15:38:04 2018
    CRL Extensions:
chains.sh: #5892: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502153805Z
addcert 2 20170502153805Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:38:05 2017
    Next Update: Wed May 02 15:38:04 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:05 2017
    CRL Extensions:
chains.sh: #5893: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153805Z
nextupdate=20180502153805Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:38:05 2017
    Next Update: Wed May 02 15:38:05 2018
    CRL Extensions:
chains.sh: #5894: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153806Z
addcert 2 20170502153806Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:38:06 2017
    Next Update: Wed May 02 15:38:05 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:06 2017
    CRL Extensions:
chains.sh: #5895: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502153807Z
addcert 4 20170502153807Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:38:07 2017
    Next Update: Wed May 02 15:38:05 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:06 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:38:07 2017
    CRL Extensions:
chains.sh: #5896: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153807Z
nextupdate=20180502153807Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:38:07 2017
    Next Update: Wed May 02 15:38:07 2018
    CRL Extensions:
chains.sh: #5897: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153808Z
addcert 2 20170502153808Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:38:08 2017
    Next Update: Wed May 02 15:38:07 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:08 2017
    CRL Extensions:
chains.sh: #5898: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502153809Z
addcert 3 20170502153809Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:38:09 2017
    Next Update: Wed May 02 15:38:07 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:08 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:38:09 2017
    CRL Extensions:
chains.sh: #5899: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153809Z
nextupdate=20180502153809Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:38:09 2017
    Next Update: Wed May 02 15:38:09 2018
    CRL Extensions:
chains.sh: #5900: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153810Z
addcert 2 20170502153810Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:38:10 2017
    Next Update: Wed May 02 15:38:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:10 2017
    CRL Extensions:
chains.sh: #5901: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502153811Z
addcert 3 20170502153811Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:38:11 2017
    Next Update: Wed May 02 15:38:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:38:10 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:38:11 2017
    CRL Extensions:
chains.sh: #5902: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #5903: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #5904: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5905: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5906: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5907: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5908: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5909: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #5910: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #5911: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5912: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #5913: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #5914: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #5915: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #5916: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #5917: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #5918: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #5919: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #5920: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #5921: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #5922: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #5923: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #5924: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #5925: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #5926: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:38:12 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:38:12 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 29386 >/dev/null 2>/dev/null
httpserv with PID 29386 found at Tue May  2 15:38:12 UTC 2017
httpserv with PID 29386 started at Tue May  2 15:38:12 UTC 2017
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #5927: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153757 (0x1dee421d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:37:56 2017
            Not After : Mon May 02 15:37:56 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:4c:12:d9:b9:c5:ad:20:a4:21:00:f2:08:5e:99:93:
                    9c:31:49:d4:9a:68:3a:2c:05:c6:3e:fc:2d:0a:f4:e8:
                    9a:3f:50:3c:1c:9e:cf:b2:0e:5f:a0:83:77:a2:65:d4:
                    df:ae:74:89:85:d4:57:c1:72:6b:1e:4c:64:d2:12:7e:
                    43:74:94:cd:26:10:60:e9:77:d6:ef:ed:d7:08:b3:c7:
                    e5:d5:e3:c9:a2:78:ff:ea:fd:df:fe:e3:f4:e1:ff:81:
                    9a:36:e9:29:29:7d:95:d3:78:0b:96:a3:d6:e1:d0:ac:
                    88:6f:a0:63:3f:23:10:ef:0c:ad:c2:2c:e5:02:6f:f7:
                    40:aa:9a:2d:23:61:4b:cd:51:a9:b0:39:fe:3b:fc:44:
                    48:dc:84:7b:50:e7:b1:87:99:33:85:3d:73:e9:67:71:
                    68:66:4f:6e:fc:8d:cf:b5:0a:0d:76:e6:95:fb:46:c3:
                    83:8e:dd:d4:c9:c3:c8:db:4c:76:a8:b5:f9:21:44:00:
                    05:13:b9:d8:e0:d7:d4:32:02:02:88:5a:37:03:c2:30:
                    0e:c2:3b:d0:4e:08:25:73:0a:5e:8c:3d:4d:ab:b9:d2:
                    f7:bf:7d:e8:74:dd:64:1f:8b:fc:91:9e:25:3e:36:51:
                    12:c9:ee:1b:aa:cf:28:f4:db:b6:83:94:39:86:b4:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:e7:13:ca:35:98:ed:97:18:ae:fd:7b:e7:d5:92:a3:
        bd:31:d9:79:e3:94:32:ae:44:86:16:ff:45:83:a7:00:
        ce:00:fa:64:8b:7a:11:5e:ca:e3:07:22:94:fd:31:c8:
        44:98:65:68:77:7f:19:96:3b:e9:89:36:d3:ca:e0:a3:
        26:11:a3:4e:2a:03:25:b4:9c:f1:30:3a:3d:7b:2f:56:
        b2:89:f4:21:76:1b:b7:35:7a:d1:fa:58:27:5f:e9:2e:
        91:36:56:b1:2b:4c:1e:f0:a9:ad:59:1a:1b:13:1e:f7:
        4e:8f:57:e2:e2:74:da:66:53:d5:72:60:c3:5b:0a:fe:
        a5:bd:8d:22:a5:fd:b4:62:a2:d7:35:86:db:72:cf:43:
        54:fa:d7:e6:70:c0:21:97:bd:5d:4b:9b:4d:3b:1c:d0:
        6d:8c:6c:99:ff:7e:63:84:6a:1c:90:1a:bd:85:a0:8d:
        ea:4d:1d:1c:4d:79:3c:45:32:19:e8:17:d3:fc:f9:fe:
        c5:4f:96:d2:20:74:28:91:50:86:5f:37:b4:e6:74:a5:
        3a:7a:b5:b6:7b:68:db:fe:03:a1:cb:21:33:c2:fc:89:
        c3:d5:1e:19:41:5c:be:62:98:6f:40:25:f9:36:b0:ca:
        a6:0e:9a:8a:5b:23:c6:49:75:d1:17:d3:5d:34:54:cb
    Fingerprint (SHA-256):
        F3:4F:4B:08:81:F7:C6:0B:1C:4B:13:D0:3D:79:9F:9C:F9:DF:36:62:EC:16:29:F9:94:26:D4:D2:3A:1F:55:96
    Fingerprint (SHA1):
        ED:51:BE:85:C3:47:78:F7:99:15:22:44:44:B1:4F:30:24:56:90:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5928: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5929: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5930: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 29386 at Tue May  2 15:38:12 UTC 2017
kill -USR1 29386
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 29386 killed at Tue May  2 15:38:12 UTC 2017
httpserv starting at Tue May  2 15:38:12 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:38:12 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 29555 >/dev/null 2>/dev/null
httpserv with PID 29555 found at Tue May  2 15:38:12 UTC 2017
httpserv with PID 29555 started at Tue May  2 15:38:12 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5931: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5932: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5933: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #5934: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153757 (0x1dee421d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:37:56 2017
            Not After : Mon May 02 15:37:56 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:4c:12:d9:b9:c5:ad:20:a4:21:00:f2:08:5e:99:93:
                    9c:31:49:d4:9a:68:3a:2c:05:c6:3e:fc:2d:0a:f4:e8:
                    9a:3f:50:3c:1c:9e:cf:b2:0e:5f:a0:83:77:a2:65:d4:
                    df:ae:74:89:85:d4:57:c1:72:6b:1e:4c:64:d2:12:7e:
                    43:74:94:cd:26:10:60:e9:77:d6:ef:ed:d7:08:b3:c7:
                    e5:d5:e3:c9:a2:78:ff:ea:fd:df:fe:e3:f4:e1:ff:81:
                    9a:36:e9:29:29:7d:95:d3:78:0b:96:a3:d6:e1:d0:ac:
                    88:6f:a0:63:3f:23:10:ef:0c:ad:c2:2c:e5:02:6f:f7:
                    40:aa:9a:2d:23:61:4b:cd:51:a9:b0:39:fe:3b:fc:44:
                    48:dc:84:7b:50:e7:b1:87:99:33:85:3d:73:e9:67:71:
                    68:66:4f:6e:fc:8d:cf:b5:0a:0d:76:e6:95:fb:46:c3:
                    83:8e:dd:d4:c9:c3:c8:db:4c:76:a8:b5:f9:21:44:00:
                    05:13:b9:d8:e0:d7:d4:32:02:02:88:5a:37:03:c2:30:
                    0e:c2:3b:d0:4e:08:25:73:0a:5e:8c:3d:4d:ab:b9:d2:
                    f7:bf:7d:e8:74:dd:64:1f:8b:fc:91:9e:25:3e:36:51:
                    12:c9:ee:1b:aa:cf:28:f4:db:b6:83:94:39:86:b4:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:e7:13:ca:35:98:ed:97:18:ae:fd:7b:e7:d5:92:a3:
        bd:31:d9:79:e3:94:32:ae:44:86:16:ff:45:83:a7:00:
        ce:00:fa:64:8b:7a:11:5e:ca:e3:07:22:94:fd:31:c8:
        44:98:65:68:77:7f:19:96:3b:e9:89:36:d3:ca:e0:a3:
        26:11:a3:4e:2a:03:25:b4:9c:f1:30:3a:3d:7b:2f:56:
        b2:89:f4:21:76:1b:b7:35:7a:d1:fa:58:27:5f:e9:2e:
        91:36:56:b1:2b:4c:1e:f0:a9:ad:59:1a:1b:13:1e:f7:
        4e:8f:57:e2:e2:74:da:66:53:d5:72:60:c3:5b:0a:fe:
        a5:bd:8d:22:a5:fd:b4:62:a2:d7:35:86:db:72:cf:43:
        54:fa:d7:e6:70:c0:21:97:bd:5d:4b:9b:4d:3b:1c:d0:
        6d:8c:6c:99:ff:7e:63:84:6a:1c:90:1a:bd:85:a0:8d:
        ea:4d:1d:1c:4d:79:3c:45:32:19:e8:17:d3:fc:f9:fe:
        c5:4f:96:d2:20:74:28:91:50:86:5f:37:b4:e6:74:a5:
        3a:7a:b5:b6:7b:68:db:fe:03:a1:cb:21:33:c2:fc:89:
        c3:d5:1e:19:41:5c:be:62:98:6f:40:25:f9:36:b0:ca:
        a6:0e:9a:8a:5b:23:c6:49:75:d1:17:d3:5d:34:54:cb
    Fingerprint (SHA-256):
        F3:4F:4B:08:81:F7:C6:0B:1C:4B:13:D0:3D:79:9F:9C:F9:DF:36:62:EC:16:29:F9:94:26:D4:D2:3A:1F:55:96
    Fingerprint (SHA1):
        ED:51:BE:85:C3:47:78:F7:99:15:22:44:44:B1:4F:30:24:56:90:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5935: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5936: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5937: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 29555 at Tue May  2 15:38:13 UTC 2017
kill -USR1 29555
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 29555 killed at Tue May  2 15:38:13 UTC 2017
httpserv starting at Tue May  2 15:38:13 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:38:13 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 29804 >/dev/null 2>/dev/null
httpserv with PID 29804 found at Tue May  2 15:38:13 UTC 2017
httpserv with PID 29804 started at Tue May  2 15:38:13 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5938: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #5939: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153758 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5940: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #5941: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #5942: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153759 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5943: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #5944: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #5945: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5946: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153760 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5947: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5948: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153761 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5949: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5950: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #5951: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #5952: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5953: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153762   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5954: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5955: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #5956: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #5957: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #5958: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153759 (0x1dee421f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:38:15 2017
            Not After : Mon May 02 15:38:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:93:22:77:1b:ca:8f:3b:cb:ca:88:2a:d5:7c:a0:36:
                    4e:fa:03:4a:27:43:0b:d4:c6:19:47:6e:36:32:b9:f6:
                    00:3c:68:87:15:2c:b5:3e:a2:d5:fa:b8:0a:80:cb:4f:
                    36:0a:c8:d6:a6:b4:b0:ff:97:bf:a8:ff:f6:c4:c7:bc:
                    1e:3b:22:4b:08:2e:df:a4:0b:66:e9:4d:1c:b8:72:b9:
                    53:3a:af:73:66:5c:e3:26:fe:5b:c9:d5:9f:a9:3a:2f:
                    f9:56:b9:a0:f4:c5:86:55:5a:23:62:45:85:92:cb:97:
                    cc:1a:d1:ca:1b:08:0e:89:52:5b:07:74:98:a9:0d:22:
                    ee:55:90:f4:75:04:d4:dd:08:61:14:11:55:6c:9e:db:
                    a0:76:fe:27:c5:17:28:71:e4:72:ae:d2:d5:30:de:7a:
                    c9:b6:81:2d:a0:5e:ce:5f:f3:d9:47:d4:ed:b7:05:c6:
                    ac:95:f7:93:27:f6:30:94:3b:64:75:57:f9:bd:4c:e8:
                    f8:6b:06:c8:c8:a9:a3:1b:07:91:0f:00:b1:03:63:b2:
                    60:1f:db:53:2c:62:a8:82:6a:75:c8:ae:08:fc:58:c5:
                    6c:70:27:e0:99:c0:d5:4c:6b:52:39:dd:e3:9c:5e:a2:
                    6a:64:47:f6:2c:cb:49:e7:66:3e:5e:7c:20:1e:20:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:3b:25:ff:1f:59:ea:47:3c:d2:15:cf:06:9a:a0:f4:
        1f:13:e1:9d:fd:8f:c9:31:2c:50:e5:d8:39:ec:42:c1:
        28:90:71:85:d7:81:cd:a4:48:06:88:c3:ad:55:97:91:
        60:d4:d9:13:4d:5a:53:be:86:e1:99:cc:a6:a4:44:cb:
        4f:df:8c:4e:81:c7:42:9a:a2:51:1f:2c:7c:3c:ce:6b:
        25:ae:32:2d:9a:0d:bf:ab:65:b5:1d:dc:48:53:a6:67:
        2a:c7:03:d8:cf:1d:f9:6d:7d:19:7b:47:f1:5b:a0:36:
        ac:20:5c:85:5a:a8:01:8b:38:29:b3:48:08:b1:4d:d8:
        43:68:da:fa:20:e0:3e:22:be:c8:c6:73:b8:c0:d0:b1:
        11:fa:47:7d:48:f7:76:4f:9f:66:7a:6e:51:26:23:73:
        50:87:30:0a:91:bf:29:67:51:c2:54:39:27:a5:37:e8:
        b3:ef:16:42:7d:7d:18:41:e1:9c:3b:5c:7b:67:51:a3:
        fe:b9:19:eb:b8:48:50:8a:88:c2:df:3c:59:7d:ba:11:
        c2:27:1c:a7:0c:ff:ba:98:44:03:d4:7f:d8:bf:ef:c9:
        50:14:25:22:67:c9:46:8e:0d:71:f3:9c:a5:a2:c3:8b:
        3f:82:1b:8b:1d:e5:a0:5a:21:e8:d8:8b:73:a8:4d:d0
    Fingerprint (SHA-256):
        F9:2C:22:43:5A:36:A2:F8:59:60:9D:D4:09:65:F4:49:F3:93:29:9D:1D:BB:9D:E3:4A:2A:B9:9C:EC:29:F0:3D
    Fingerprint (SHA1):
        36:37:8C:E7:FD:4B:2B:A0:38:71:D3:50:EC:92:26:BD:55:A6:E0:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5959: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153758 (0x1dee421e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:38:14 2017
            Not After : Mon May 02 15:38:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:44:10:00:24:c3:38:1e:e7:b3:9c:c8:a2:8f:a6:44:
                    fe:b4:7d:92:83:67:61:a8:1e:e3:83:61:06:58:c2:28:
                    74:c6:89:e2:51:ce:2b:af:eb:fc:bc:e2:9f:cd:85:a2:
                    c3:ab:01:2b:bf:a4:20:74:44:b2:d4:e9:93:da:3a:02:
                    ac:7c:24:10:b1:a8:4e:a8:6d:e2:07:48:29:7f:2b:8d:
                    b3:de:a3:11:88:f0:2c:39:07:f1:b8:1e:ff:72:ff:11:
                    2e:55:a3:45:8a:01:5f:13:8e:77:fc:1d:45:ed:f1:9c:
                    a8:6d:18:e0:4d:9a:48:86:27:bb:2b:d4:f4:ab:ae:73:
                    ef:77:35:0f:27:84:98:85:e9:5c:13:43:58:8b:29:a3:
                    35:c1:3c:43:3b:34:15:74:fa:61:33:aa:9f:f0:62:f0:
                    8f:e7:2f:15:5f:0b:d2:5f:ef:f5:d9:69:71:6e:83:d6:
                    ed:0d:06:da:b9:cb:64:d5:25:13:a6:7b:12:22:ea:8b:
                    d7:33:cb:66:c1:56:40:ef:8c:22:32:e2:9d:b2:36:6c:
                    73:67:45:68:b1:1d:46:37:cd:9a:f1:ba:e4:3f:72:81:
                    18:55:32:e6:5b:5b:62:c8:1f:df:95:83:29:1d:38:5c:
                    86:fe:76:c2:90:ad:94:c1:dc:4c:03:22:03:74:27:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:ee:b9:04:16:7d:a0:d5:9b:04:7a:0a:dc:2f:59:a5:
        b3:77:ba:76:17:51:2e:ff:3e:94:a6:67:5c:7f:2a:0a:
        23:b5:4a:e7:c9:58:1a:02:4b:9d:a4:ac:ad:2d:94:4f:
        a8:29:0a:ae:cb:98:88:88:e8:6e:66:38:f6:7a:a3:bb:
        5c:2c:96:8c:12:ac:a7:a9:a7:67:22:99:89:cb:78:61:
        92:86:13:f8:79:51:43:ff:08:63:ea:63:c5:76:cb:45:
        8a:f3:b5:fe:16:64:d5:98:74:ff:28:d7:a3:7e:bf:1d:
        ce:bc:05:97:f3:d9:7e:e7:f8:73:b6:49:3e:c9:3c:23:
        91:dd:c6:b9:f0:8a:38:67:4a:e0:1e:81:d2:ff:a2:52:
        1a:d1:11:21:58:cf:7d:89:12:75:3a:34:3f:1c:e5:13:
        05:cd:f9:db:be:27:2e:65:4b:b1:5a:e3:a2:08:1d:60:
        68:a7:1f:77:20:d8:6b:a7:54:b7:ea:d9:44:1c:0a:c9:
        af:ff:22:ff:b1:53:64:65:ff:1e:57:53:88:1e:ec:24:
        6e:ff:ba:bf:a0:8d:dc:61:99:dd:36:05:f9:d2:c8:8e:
        0a:2e:ab:eb:1e:8b:12:20:aa:b2:00:a1:27:81:04:c8:
        fb:b4:af:ee:de:50:0d:5f:3e:ec:fc:80:ef:83:48:64
    Fingerprint (SHA-256):
        53:A0:D6:E7:D1:D8:F6:0D:80:2E:84:CA:D8:4E:B1:85:62:07:91:6B:19:49:A4:4F:A6:CF:03:BD:06:55:BD:C1
    Fingerprint (SHA1):
        B1:35:1F:92:5E:D3:91:B1:3A:D1:8F:60:16:66:90:D6:74:E0:7B:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5960: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5961: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #5962: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #5963: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153758 (0x1dee421e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:38:14 2017
            Not After : Mon May 02 15:38:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:44:10:00:24:c3:38:1e:e7:b3:9c:c8:a2:8f:a6:44:
                    fe:b4:7d:92:83:67:61:a8:1e:e3:83:61:06:58:c2:28:
                    74:c6:89:e2:51:ce:2b:af:eb:fc:bc:e2:9f:cd:85:a2:
                    c3:ab:01:2b:bf:a4:20:74:44:b2:d4:e9:93:da:3a:02:
                    ac:7c:24:10:b1:a8:4e:a8:6d:e2:07:48:29:7f:2b:8d:
                    b3:de:a3:11:88:f0:2c:39:07:f1:b8:1e:ff:72:ff:11:
                    2e:55:a3:45:8a:01:5f:13:8e:77:fc:1d:45:ed:f1:9c:
                    a8:6d:18:e0:4d:9a:48:86:27:bb:2b:d4:f4:ab:ae:73:
                    ef:77:35:0f:27:84:98:85:e9:5c:13:43:58:8b:29:a3:
                    35:c1:3c:43:3b:34:15:74:fa:61:33:aa:9f:f0:62:f0:
                    8f:e7:2f:15:5f:0b:d2:5f:ef:f5:d9:69:71:6e:83:d6:
                    ed:0d:06:da:b9:cb:64:d5:25:13:a6:7b:12:22:ea:8b:
                    d7:33:cb:66:c1:56:40:ef:8c:22:32:e2:9d:b2:36:6c:
                    73:67:45:68:b1:1d:46:37:cd:9a:f1:ba:e4:3f:72:81:
                    18:55:32:e6:5b:5b:62:c8:1f:df:95:83:29:1d:38:5c:
                    86:fe:76:c2:90:ad:94:c1:dc:4c:03:22:03:74:27:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:ee:b9:04:16:7d:a0:d5:9b:04:7a:0a:dc:2f:59:a5:
        b3:77:ba:76:17:51:2e:ff:3e:94:a6:67:5c:7f:2a:0a:
        23:b5:4a:e7:c9:58:1a:02:4b:9d:a4:ac:ad:2d:94:4f:
        a8:29:0a:ae:cb:98:88:88:e8:6e:66:38:f6:7a:a3:bb:
        5c:2c:96:8c:12:ac:a7:a9:a7:67:22:99:89:cb:78:61:
        92:86:13:f8:79:51:43:ff:08:63:ea:63:c5:76:cb:45:
        8a:f3:b5:fe:16:64:d5:98:74:ff:28:d7:a3:7e:bf:1d:
        ce:bc:05:97:f3:d9:7e:e7:f8:73:b6:49:3e:c9:3c:23:
        91:dd:c6:b9:f0:8a:38:67:4a:e0:1e:81:d2:ff:a2:52:
        1a:d1:11:21:58:cf:7d:89:12:75:3a:34:3f:1c:e5:13:
        05:cd:f9:db:be:27:2e:65:4b:b1:5a:e3:a2:08:1d:60:
        68:a7:1f:77:20:d8:6b:a7:54:b7:ea:d9:44:1c:0a:c9:
        af:ff:22:ff:b1:53:64:65:ff:1e:57:53:88:1e:ec:24:
        6e:ff:ba:bf:a0:8d:dc:61:99:dd:36:05:f9:d2:c8:8e:
        0a:2e:ab:eb:1e:8b:12:20:aa:b2:00:a1:27:81:04:c8:
        fb:b4:af:ee:de:50:0d:5f:3e:ec:fc:80:ef:83:48:64
    Fingerprint (SHA-256):
        53:A0:D6:E7:D1:D8:F6:0D:80:2E:84:CA:D8:4E:B1:85:62:07:91:6B:19:49:A4:4F:A6:CF:03:BD:06:55:BD:C1
    Fingerprint (SHA1):
        B1:35:1F:92:5E:D3:91:B1:3A:D1:8F:60:16:66:90:D6:74:E0:7B:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5964: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153759 (0x1dee421f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:38:15 2017
            Not After : Mon May 02 15:38:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:93:22:77:1b:ca:8f:3b:cb:ca:88:2a:d5:7c:a0:36:
                    4e:fa:03:4a:27:43:0b:d4:c6:19:47:6e:36:32:b9:f6:
                    00:3c:68:87:15:2c:b5:3e:a2:d5:fa:b8:0a:80:cb:4f:
                    36:0a:c8:d6:a6:b4:b0:ff:97:bf:a8:ff:f6:c4:c7:bc:
                    1e:3b:22:4b:08:2e:df:a4:0b:66:e9:4d:1c:b8:72:b9:
                    53:3a:af:73:66:5c:e3:26:fe:5b:c9:d5:9f:a9:3a:2f:
                    f9:56:b9:a0:f4:c5:86:55:5a:23:62:45:85:92:cb:97:
                    cc:1a:d1:ca:1b:08:0e:89:52:5b:07:74:98:a9:0d:22:
                    ee:55:90:f4:75:04:d4:dd:08:61:14:11:55:6c:9e:db:
                    a0:76:fe:27:c5:17:28:71:e4:72:ae:d2:d5:30:de:7a:
                    c9:b6:81:2d:a0:5e:ce:5f:f3:d9:47:d4:ed:b7:05:c6:
                    ac:95:f7:93:27:f6:30:94:3b:64:75:57:f9:bd:4c:e8:
                    f8:6b:06:c8:c8:a9:a3:1b:07:91:0f:00:b1:03:63:b2:
                    60:1f:db:53:2c:62:a8:82:6a:75:c8:ae:08:fc:58:c5:
                    6c:70:27:e0:99:c0:d5:4c:6b:52:39:dd:e3:9c:5e:a2:
                    6a:64:47:f6:2c:cb:49:e7:66:3e:5e:7c:20:1e:20:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:3b:25:ff:1f:59:ea:47:3c:d2:15:cf:06:9a:a0:f4:
        1f:13:e1:9d:fd:8f:c9:31:2c:50:e5:d8:39:ec:42:c1:
        28:90:71:85:d7:81:cd:a4:48:06:88:c3:ad:55:97:91:
        60:d4:d9:13:4d:5a:53:be:86:e1:99:cc:a6:a4:44:cb:
        4f:df:8c:4e:81:c7:42:9a:a2:51:1f:2c:7c:3c:ce:6b:
        25:ae:32:2d:9a:0d:bf:ab:65:b5:1d:dc:48:53:a6:67:
        2a:c7:03:d8:cf:1d:f9:6d:7d:19:7b:47:f1:5b:a0:36:
        ac:20:5c:85:5a:a8:01:8b:38:29:b3:48:08:b1:4d:d8:
        43:68:da:fa:20:e0:3e:22:be:c8:c6:73:b8:c0:d0:b1:
        11:fa:47:7d:48:f7:76:4f:9f:66:7a:6e:51:26:23:73:
        50:87:30:0a:91:bf:29:67:51:c2:54:39:27:a5:37:e8:
        b3:ef:16:42:7d:7d:18:41:e1:9c:3b:5c:7b:67:51:a3:
        fe:b9:19:eb:b8:48:50:8a:88:c2:df:3c:59:7d:ba:11:
        c2:27:1c:a7:0c:ff:ba:98:44:03:d4:7f:d8:bf:ef:c9:
        50:14:25:22:67:c9:46:8e:0d:71:f3:9c:a5:a2:c3:8b:
        3f:82:1b:8b:1d:e5:a0:5a:21:e8:d8:8b:73:a8:4d:d0
    Fingerprint (SHA-256):
        F9:2C:22:43:5A:36:A2:F8:59:60:9D:D4:09:65:F4:49:F3:93:29:9D:1D:BB:9D:E3:4A:2A:B9:9C:EC:29:F0:3D
    Fingerprint (SHA1):
        36:37:8C:E7:FD:4B:2B:A0:38:71:D3:50:EC:92:26:BD:55:A6:E0:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5965: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #5966: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #5967: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5968: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5969: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5970: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153759 (0x1dee421f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:38:15 2017
            Not After : Mon May 02 15:38:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:93:22:77:1b:ca:8f:3b:cb:ca:88:2a:d5:7c:a0:36:
                    4e:fa:03:4a:27:43:0b:d4:c6:19:47:6e:36:32:b9:f6:
                    00:3c:68:87:15:2c:b5:3e:a2:d5:fa:b8:0a:80:cb:4f:
                    36:0a:c8:d6:a6:b4:b0:ff:97:bf:a8:ff:f6:c4:c7:bc:
                    1e:3b:22:4b:08:2e:df:a4:0b:66:e9:4d:1c:b8:72:b9:
                    53:3a:af:73:66:5c:e3:26:fe:5b:c9:d5:9f:a9:3a:2f:
                    f9:56:b9:a0:f4:c5:86:55:5a:23:62:45:85:92:cb:97:
                    cc:1a:d1:ca:1b:08:0e:89:52:5b:07:74:98:a9:0d:22:
                    ee:55:90:f4:75:04:d4:dd:08:61:14:11:55:6c:9e:db:
                    a0:76:fe:27:c5:17:28:71:e4:72:ae:d2:d5:30:de:7a:
                    c9:b6:81:2d:a0:5e:ce:5f:f3:d9:47:d4:ed:b7:05:c6:
                    ac:95:f7:93:27:f6:30:94:3b:64:75:57:f9:bd:4c:e8:
                    f8:6b:06:c8:c8:a9:a3:1b:07:91:0f:00:b1:03:63:b2:
                    60:1f:db:53:2c:62:a8:82:6a:75:c8:ae:08:fc:58:c5:
                    6c:70:27:e0:99:c0:d5:4c:6b:52:39:dd:e3:9c:5e:a2:
                    6a:64:47:f6:2c:cb:49:e7:66:3e:5e:7c:20:1e:20:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:3b:25:ff:1f:59:ea:47:3c:d2:15:cf:06:9a:a0:f4:
        1f:13:e1:9d:fd:8f:c9:31:2c:50:e5:d8:39:ec:42:c1:
        28:90:71:85:d7:81:cd:a4:48:06:88:c3:ad:55:97:91:
        60:d4:d9:13:4d:5a:53:be:86:e1:99:cc:a6:a4:44:cb:
        4f:df:8c:4e:81:c7:42:9a:a2:51:1f:2c:7c:3c:ce:6b:
        25:ae:32:2d:9a:0d:bf:ab:65:b5:1d:dc:48:53:a6:67:
        2a:c7:03:d8:cf:1d:f9:6d:7d:19:7b:47:f1:5b:a0:36:
        ac:20:5c:85:5a:a8:01:8b:38:29:b3:48:08:b1:4d:d8:
        43:68:da:fa:20:e0:3e:22:be:c8:c6:73:b8:c0:d0:b1:
        11:fa:47:7d:48:f7:76:4f:9f:66:7a:6e:51:26:23:73:
        50:87:30:0a:91:bf:29:67:51:c2:54:39:27:a5:37:e8:
        b3:ef:16:42:7d:7d:18:41:e1:9c:3b:5c:7b:67:51:a3:
        fe:b9:19:eb:b8:48:50:8a:88:c2:df:3c:59:7d:ba:11:
        c2:27:1c:a7:0c:ff:ba:98:44:03:d4:7f:d8:bf:ef:c9:
        50:14:25:22:67:c9:46:8e:0d:71:f3:9c:a5:a2:c3:8b:
        3f:82:1b:8b:1d:e5:a0:5a:21:e8:d8:8b:73:a8:4d:d0
    Fingerprint (SHA-256):
        F9:2C:22:43:5A:36:A2:F8:59:60:9D:D4:09:65:F4:49:F3:93:29:9D:1D:BB:9D:E3:4A:2A:B9:9C:EC:29:F0:3D
    Fingerprint (SHA1):
        36:37:8C:E7:FD:4B:2B:A0:38:71:D3:50:EC:92:26:BD:55:A6:E0:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5971: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153759 (0x1dee421f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:38:15 2017
            Not After : Mon May 02 15:38:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:93:22:77:1b:ca:8f:3b:cb:ca:88:2a:d5:7c:a0:36:
                    4e:fa:03:4a:27:43:0b:d4:c6:19:47:6e:36:32:b9:f6:
                    00:3c:68:87:15:2c:b5:3e:a2:d5:fa:b8:0a:80:cb:4f:
                    36:0a:c8:d6:a6:b4:b0:ff:97:bf:a8:ff:f6:c4:c7:bc:
                    1e:3b:22:4b:08:2e:df:a4:0b:66:e9:4d:1c:b8:72:b9:
                    53:3a:af:73:66:5c:e3:26:fe:5b:c9:d5:9f:a9:3a:2f:
                    f9:56:b9:a0:f4:c5:86:55:5a:23:62:45:85:92:cb:97:
                    cc:1a:d1:ca:1b:08:0e:89:52:5b:07:74:98:a9:0d:22:
                    ee:55:90:f4:75:04:d4:dd:08:61:14:11:55:6c:9e:db:
                    a0:76:fe:27:c5:17:28:71:e4:72:ae:d2:d5:30:de:7a:
                    c9:b6:81:2d:a0:5e:ce:5f:f3:d9:47:d4:ed:b7:05:c6:
                    ac:95:f7:93:27:f6:30:94:3b:64:75:57:f9:bd:4c:e8:
                    f8:6b:06:c8:c8:a9:a3:1b:07:91:0f:00:b1:03:63:b2:
                    60:1f:db:53:2c:62:a8:82:6a:75:c8:ae:08:fc:58:c5:
                    6c:70:27:e0:99:c0:d5:4c:6b:52:39:dd:e3:9c:5e:a2:
                    6a:64:47:f6:2c:cb:49:e7:66:3e:5e:7c:20:1e:20:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:3b:25:ff:1f:59:ea:47:3c:d2:15:cf:06:9a:a0:f4:
        1f:13:e1:9d:fd:8f:c9:31:2c:50:e5:d8:39:ec:42:c1:
        28:90:71:85:d7:81:cd:a4:48:06:88:c3:ad:55:97:91:
        60:d4:d9:13:4d:5a:53:be:86:e1:99:cc:a6:a4:44:cb:
        4f:df:8c:4e:81:c7:42:9a:a2:51:1f:2c:7c:3c:ce:6b:
        25:ae:32:2d:9a:0d:bf:ab:65:b5:1d:dc:48:53:a6:67:
        2a:c7:03:d8:cf:1d:f9:6d:7d:19:7b:47:f1:5b:a0:36:
        ac:20:5c:85:5a:a8:01:8b:38:29:b3:48:08:b1:4d:d8:
        43:68:da:fa:20:e0:3e:22:be:c8:c6:73:b8:c0:d0:b1:
        11:fa:47:7d:48:f7:76:4f:9f:66:7a:6e:51:26:23:73:
        50:87:30:0a:91:bf:29:67:51:c2:54:39:27:a5:37:e8:
        b3:ef:16:42:7d:7d:18:41:e1:9c:3b:5c:7b:67:51:a3:
        fe:b9:19:eb:b8:48:50:8a:88:c2:df:3c:59:7d:ba:11:
        c2:27:1c:a7:0c:ff:ba:98:44:03:d4:7f:d8:bf:ef:c9:
        50:14:25:22:67:c9:46:8e:0d:71:f3:9c:a5:a2:c3:8b:
        3f:82:1b:8b:1d:e5:a0:5a:21:e8:d8:8b:73:a8:4d:d0
    Fingerprint (SHA-256):
        F9:2C:22:43:5A:36:A2:F8:59:60:9D:D4:09:65:F4:49:F3:93:29:9D:1D:BB:9D:E3:4A:2A:B9:9C:EC:29:F0:3D
    Fingerprint (SHA1):
        36:37:8C:E7:FD:4B:2B:A0:38:71:D3:50:EC:92:26:BD:55:A6:E0:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5972: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #5973: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #5974: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5975: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5976: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5977: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153758 (0x1dee421e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:38:14 2017
            Not After : Mon May 02 15:38:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:44:10:00:24:c3:38:1e:e7:b3:9c:c8:a2:8f:a6:44:
                    fe:b4:7d:92:83:67:61:a8:1e:e3:83:61:06:58:c2:28:
                    74:c6:89:e2:51:ce:2b:af:eb:fc:bc:e2:9f:cd:85:a2:
                    c3:ab:01:2b:bf:a4:20:74:44:b2:d4:e9:93:da:3a:02:
                    ac:7c:24:10:b1:a8:4e:a8:6d:e2:07:48:29:7f:2b:8d:
                    b3:de:a3:11:88:f0:2c:39:07:f1:b8:1e:ff:72:ff:11:
                    2e:55:a3:45:8a:01:5f:13:8e:77:fc:1d:45:ed:f1:9c:
                    a8:6d:18:e0:4d:9a:48:86:27:bb:2b:d4:f4:ab:ae:73:
                    ef:77:35:0f:27:84:98:85:e9:5c:13:43:58:8b:29:a3:
                    35:c1:3c:43:3b:34:15:74:fa:61:33:aa:9f:f0:62:f0:
                    8f:e7:2f:15:5f:0b:d2:5f:ef:f5:d9:69:71:6e:83:d6:
                    ed:0d:06:da:b9:cb:64:d5:25:13:a6:7b:12:22:ea:8b:
                    d7:33:cb:66:c1:56:40:ef:8c:22:32:e2:9d:b2:36:6c:
                    73:67:45:68:b1:1d:46:37:cd:9a:f1:ba:e4:3f:72:81:
                    18:55:32:e6:5b:5b:62:c8:1f:df:95:83:29:1d:38:5c:
                    86:fe:76:c2:90:ad:94:c1:dc:4c:03:22:03:74:27:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:ee:b9:04:16:7d:a0:d5:9b:04:7a:0a:dc:2f:59:a5:
        b3:77:ba:76:17:51:2e:ff:3e:94:a6:67:5c:7f:2a:0a:
        23:b5:4a:e7:c9:58:1a:02:4b:9d:a4:ac:ad:2d:94:4f:
        a8:29:0a:ae:cb:98:88:88:e8:6e:66:38:f6:7a:a3:bb:
        5c:2c:96:8c:12:ac:a7:a9:a7:67:22:99:89:cb:78:61:
        92:86:13:f8:79:51:43:ff:08:63:ea:63:c5:76:cb:45:
        8a:f3:b5:fe:16:64:d5:98:74:ff:28:d7:a3:7e:bf:1d:
        ce:bc:05:97:f3:d9:7e:e7:f8:73:b6:49:3e:c9:3c:23:
        91:dd:c6:b9:f0:8a:38:67:4a:e0:1e:81:d2:ff:a2:52:
        1a:d1:11:21:58:cf:7d:89:12:75:3a:34:3f:1c:e5:13:
        05:cd:f9:db:be:27:2e:65:4b:b1:5a:e3:a2:08:1d:60:
        68:a7:1f:77:20:d8:6b:a7:54:b7:ea:d9:44:1c:0a:c9:
        af:ff:22:ff:b1:53:64:65:ff:1e:57:53:88:1e:ec:24:
        6e:ff:ba:bf:a0:8d:dc:61:99:dd:36:05:f9:d2:c8:8e:
        0a:2e:ab:eb:1e:8b:12:20:aa:b2:00:a1:27:81:04:c8:
        fb:b4:af:ee:de:50:0d:5f:3e:ec:fc:80:ef:83:48:64
    Fingerprint (SHA-256):
        53:A0:D6:E7:D1:D8:F6:0D:80:2E:84:CA:D8:4E:B1:85:62:07:91:6B:19:49:A4:4F:A6:CF:03:BD:06:55:BD:C1
    Fingerprint (SHA1):
        B1:35:1F:92:5E:D3:91:B1:3A:D1:8F:60:16:66:90:D6:74:E0:7B:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5978: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153758 (0x1dee421e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:38:14 2017
            Not After : Mon May 02 15:38:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:44:10:00:24:c3:38:1e:e7:b3:9c:c8:a2:8f:a6:44:
                    fe:b4:7d:92:83:67:61:a8:1e:e3:83:61:06:58:c2:28:
                    74:c6:89:e2:51:ce:2b:af:eb:fc:bc:e2:9f:cd:85:a2:
                    c3:ab:01:2b:bf:a4:20:74:44:b2:d4:e9:93:da:3a:02:
                    ac:7c:24:10:b1:a8:4e:a8:6d:e2:07:48:29:7f:2b:8d:
                    b3:de:a3:11:88:f0:2c:39:07:f1:b8:1e:ff:72:ff:11:
                    2e:55:a3:45:8a:01:5f:13:8e:77:fc:1d:45:ed:f1:9c:
                    a8:6d:18:e0:4d:9a:48:86:27:bb:2b:d4:f4:ab:ae:73:
                    ef:77:35:0f:27:84:98:85:e9:5c:13:43:58:8b:29:a3:
                    35:c1:3c:43:3b:34:15:74:fa:61:33:aa:9f:f0:62:f0:
                    8f:e7:2f:15:5f:0b:d2:5f:ef:f5:d9:69:71:6e:83:d6:
                    ed:0d:06:da:b9:cb:64:d5:25:13:a6:7b:12:22:ea:8b:
                    d7:33:cb:66:c1:56:40:ef:8c:22:32:e2:9d:b2:36:6c:
                    73:67:45:68:b1:1d:46:37:cd:9a:f1:ba:e4:3f:72:81:
                    18:55:32:e6:5b:5b:62:c8:1f:df:95:83:29:1d:38:5c:
                    86:fe:76:c2:90:ad:94:c1:dc:4c:03:22:03:74:27:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:ee:b9:04:16:7d:a0:d5:9b:04:7a:0a:dc:2f:59:a5:
        b3:77:ba:76:17:51:2e:ff:3e:94:a6:67:5c:7f:2a:0a:
        23:b5:4a:e7:c9:58:1a:02:4b:9d:a4:ac:ad:2d:94:4f:
        a8:29:0a:ae:cb:98:88:88:e8:6e:66:38:f6:7a:a3:bb:
        5c:2c:96:8c:12:ac:a7:a9:a7:67:22:99:89:cb:78:61:
        92:86:13:f8:79:51:43:ff:08:63:ea:63:c5:76:cb:45:
        8a:f3:b5:fe:16:64:d5:98:74:ff:28:d7:a3:7e:bf:1d:
        ce:bc:05:97:f3:d9:7e:e7:f8:73:b6:49:3e:c9:3c:23:
        91:dd:c6:b9:f0:8a:38:67:4a:e0:1e:81:d2:ff:a2:52:
        1a:d1:11:21:58:cf:7d:89:12:75:3a:34:3f:1c:e5:13:
        05:cd:f9:db:be:27:2e:65:4b:b1:5a:e3:a2:08:1d:60:
        68:a7:1f:77:20:d8:6b:a7:54:b7:ea:d9:44:1c:0a:c9:
        af:ff:22:ff:b1:53:64:65:ff:1e:57:53:88:1e:ec:24:
        6e:ff:ba:bf:a0:8d:dc:61:99:dd:36:05:f9:d2:c8:8e:
        0a:2e:ab:eb:1e:8b:12:20:aa:b2:00:a1:27:81:04:c8:
        fb:b4:af:ee:de:50:0d:5f:3e:ec:fc:80:ef:83:48:64
    Fingerprint (SHA-256):
        53:A0:D6:E7:D1:D8:F6:0D:80:2E:84:CA:D8:4E:B1:85:62:07:91:6B:19:49:A4:4F:A6:CF:03:BD:06:55:BD:C1
    Fingerprint (SHA1):
        B1:35:1F:92:5E:D3:91:B1:3A:D1:8F:60:16:66:90:D6:74:E0:7B:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5979: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #5980: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153763 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5981: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #5982: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #5983: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153764 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5984: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #5985: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #5986: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153765 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5987: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #5988: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #5989: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153766 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5990: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #5991: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #5992: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153767 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5993: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #5994: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #5995: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153768 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5996: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #5997: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #5998: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153769 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5999: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6000: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6001: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153770 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6002: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6003: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6004: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153771 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6005: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6006: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6007: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6008: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153772 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6009: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6010: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153773 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6011: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6012: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153774 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6013: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6014: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6015: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6016: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6017: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153775 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6018: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6019: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153776 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6020: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6021: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153777 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6022: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6023: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6024: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6025: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6026: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153778 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6027: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6028: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153779 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6029: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6030: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153780 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6031: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6032: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6033: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6034: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6035: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153781 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6036: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6037: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153782 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6038: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6039: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153783 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6040: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6041: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6042: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6043: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6044: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153784   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6045: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6046: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6047: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6048: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153785   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6049: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6050: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153763 (0x1dee4223)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:18 2017
            Not After : Mon May 02 15:38:18 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:be:e1:eb:0c:59:e2:cb:97:d4:41:e2:ee:87:ab:2b:
                    1e:f3:b7:3e:ae:e9:05:98:3e:a1:45:aa:cf:34:4c:16:
                    5a:d0:81:12:15:b9:85:ac:cb:5a:39:c3:9a:e3:eb:4f:
                    ab:13:6c:c3:f0:c7:3f:4a:37:e0:fa:0b:f8:2f:08:07:
                    c3:2c:33:89:10:d0:6c:e7:16:51:b0:aa:3c:a9:b0:01:
                    73:4e:8f:16:3f:aa:cb:db:59:e7:80:2d:7b:38:03:fe:
                    0e:12:6b:7a:d4:dd:9a:10:08:92:a2:0c:9b:2f:34:2b:
                    96:6c:33:ac:7d:5f:78:5b:30:14:c3:65:21:ea:5e:a1:
                    5f:b2:d6:9b:01:2f:be:fd:bd:14:43:ba:18:c3:43:6c:
                    06:3e:b3:61:8d:e9:07:23:b3:e3:69:28:6b:a5:fb:9d:
                    84:10:c9:d8:1c:c8:79:5e:63:79:7e:fa:2a:c4:18:1f:
                    6d:65:fb:48:7f:a6:09:92:88:af:31:dc:3e:b1:34:f7:
                    5a:eb:6d:c3:96:9e:c8:39:8f:26:47:a7:78:e1:58:77:
                    29:9c:17:6f:ea:f0:3d:3a:dd:94:8a:20:ea:44:37:e9:
                    d7:9b:95:74:81:64:03:e9:d1:f4:40:8f:5c:e6:28:9b:
                    42:0c:ce:11:f5:fc:cd:19:4d:74:c7:0c:43:3e:3b:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:91:d0:36:77:d5:ee:e4:45:25:93:a0:f0:c9:50:b5:
        bd:6f:ee:d8:87:a0:96:12:aa:7a:47:49:d7:31:2c:de:
        ba:90:68:0b:e2:c4:08:8a:fc:7e:d1:0d:70:fe:96:29:
        34:01:39:72:ac:74:5c:2a:52:3f:c6:23:bc:d3:cc:ee:
        f6:90:ce:4e:67:74:89:2d:ed:f2:36:f8:26:31:a5:7f:
        99:59:8e:1b:48:59:c1:40:05:3f:cf:e3:dd:cb:71:2f:
        d9:53:cb:1e:81:cc:6c:26:10:7d:4a:ae:43:cb:03:99:
        eb:85:4c:7f:9b:3e:bf:4c:60:55:51:ba:92:33:5c:d3:
        2f:46:22:5f:3d:d8:d4:e0:f2:0f:ad:ef:34:ed:37:4b:
        e7:5b:dc:51:2c:2f:9d:5b:8f:34:8c:e1:af:94:c8:e3:
        88:2f:75:cb:5b:b1:2d:e2:f2:52:24:ef:b3:f4:48:8b:
        34:fe:00:c9:e6:b2:c9:c4:bb:3b:6d:69:25:85:77:73:
        f2:06:a8:e4:a6:93:b4:93:12:c1:6f:9f:b5:f1:79:28:
        3b:e6:d6:5c:69:35:67:52:e9:7b:e4:47:eb:d6:4d:b5:
        df:52:bb:36:42:0a:56:50:50:fb:7e:36:f5:1a:89:58:
        de:4b:12:d3:65:99:b8:48:8a:72:28:ec:f4:48:66:7f
    Fingerprint (SHA-256):
        D5:65:76:9E:69:53:A1:46:23:D7:C6:55:CB:8A:BD:A5:E6:44:03:EB:50:A3:CC:AC:9B:0A:F9:A3:A4:29:77:CA
    Fingerprint (SHA1):
        CB:B9:ED:86:B6:8F:28:D2:DB:F8:F8:EE:23:B0:7C:43:D0:12:26:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6051: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153764 (0x1dee4224)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:38:18 2017
            Not After : Mon May 02 15:38:18 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:6a:6f:4d:8c:58:ef:a8:d4:78:95:04:47:11:ae:b0:
                    89:be:8e:6a:96:40:b3:23:12:02:01:07:61:8d:3d:97:
                    ab:80:78:c1:e0:dc:1e:18:db:63:4b:cc:86:f8:5f:7d:
                    4e:22:79:ad:42:5a:38:85:ac:63:48:2e:a2:37:c9:b2:
                    46:49:22:3b:f1:fc:ac:9f:ba:a6:85:51:a1:b2:cf:93:
                    89:52:cd:4f:00:e1:e7:ea:f8:62:13:de:33:f3:a0:c9:
                    19:2f:e2:08:c1:2c:99:4f:8b:98:78:17:1b:52:2a:78:
                    96:10:bb:99:25:c4:79:02:00:75:13:eb:0c:42:2a:d1:
                    c4:b7:22:ef:cc:ee:ed:05:fd:09:7f:f8:7c:76:e5:9a:
                    2b:9e:0d:a7:12:14:c6:c2:a0:ce:e1:2f:18:ff:71:f1:
                    d6:c4:f1:49:3b:b8:56:a6:39:39:c7:9d:f8:72:99:91:
                    8e:00:10:3f:72:19:48:63:ab:97:a3:2f:f2:1a:07:dd:
                    24:f9:e2:22:46:6e:df:85:56:87:8d:80:79:40:b7:00:
                    a4:63:cb:3c:fa:e9:a0:01:2f:70:39:6e:9f:fb:92:ec:
                    39:79:86:9c:76:f9:66:8a:68:e0:9d:04:48:3a:5a:62:
                    c3:b2:39:a0:c5:b1:2f:05:f9:9f:ad:c6:45:3f:20:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d7:5f:e6:09:4b:4a:84:da:df:da:df:c0:d7:06:3d:9a:
        23:21:79:25:4d:9c:ae:27:37:b3:d7:83:71:09:34:ad:
        1b:c0:1f:31:ca:3e:69:ad:28:ec:e0:2f:1c:de:d2:82:
        70:bc:62:e0:0b:ec:2a:a2:98:41:ec:63:46:55:36:77:
        24:b1:97:1c:4a:ad:07:be:b6:98:48:62:92:5b:ae:b8:
        08:18:33:6f:13:8a:46:b6:03:03:41:5e:03:f5:04:5c:
        2b:fe:0f:bf:5e:c1:d1:13:0d:16:ec:c8:2c:af:b9:73:
        3a:42:6d:83:01:64:f5:b2:4f:c3:90:80:6c:3b:b4:fc:
        b3:a3:20:0a:29:4c:4c:d2:88:f2:d4:fc:fa:7a:0c:90:
        96:85:22:0d:1d:ee:2c:5c:a9:98:4e:3b:8e:07:5b:13:
        0f:6c:72:3d:55:88:d6:f7:4e:f6:be:01:f5:22:6a:ee:
        47:fd:50:55:7e:a3:fb:49:ae:64:65:d6:6f:bd:ea:16:
        29:51:a0:ed:3e:6e:6b:ca:1b:43:1f:d3:1f:9f:dc:99:
        7b:ae:f0:84:35:0b:66:7c:cd:31:94:3e:4e:cd:d7:61:
        6d:92:de:bb:09:2c:1a:eb:94:9f:27:db:06:e7:7b:69:
        be:b8:0e:8b:c3:72:26:01:4e:01:d5:cf:f3:5c:9b:60
    Fingerprint (SHA-256):
        50:1B:1D:9E:1C:A1:CA:C8:18:6B:57:BA:A2:33:0C:99:20:28:F7:17:FE:5D:04:09:B4:8A:64:5D:9C:82:EC:43
    Fingerprint (SHA1):
        5A:F6:B6:D0:69:48:CA:01:17:3A:06:64:78:FE:4E:10:19:AB:3C:43
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6052: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153765 (0x1dee4225)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:38:19 2017
            Not After : Mon May 02 15:38:19 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:40:7b:88:c4:ee:57:3b:f8:bf:1a:70:61:ca:bc:d0:
                    3c:4a:cd:b5:e8:90:e9:93:2c:05:c1:28:81:4e:55:9b:
                    b0:e3:8a:fc:94:23:f5:69:7f:1a:33:32:b7:6c:03:59:
                    a7:41:c2:55:51:26:2c:14:07:dc:4f:3d:aa:2c:f8:b2:
                    ef:ab:ce:f4:23:a9:f1:12:1f:15:6c:30:4c:79:98:c8:
                    d4:09:f3:19:13:93:aa:2f:1a:c4:ef:65:6e:67:ab:82:
                    06:e8:f6:d0:70:70:e2:fc:d9:71:f2:61:53:5c:62:1c:
                    64:66:96:64:9c:0e:86:90:1b:9e:d4:b9:4f:57:49:9f:
                    ef:d4:e6:fa:2f:15:c7:1d:e6:f3:80:de:e5:b5:74:13:
                    07:fc:ff:b8:f0:86:9a:e8:88:e0:a4:4c:0c:de:79:a3:
                    e4:cf:ea:06:62:ae:ed:f9:6c:d4:8b:d5:92:4b:6b:03:
                    a6:57:6b:9f:19:49:db:d6:18:46:fa:a2:d5:86:90:41:
                    94:40:b4:23:f2:6a:0b:45:96:7d:8f:fb:e7:55:d6:3a:
                    1a:51:69:98:bb:24:0d:4a:55:b5:16:9d:e5:6e:36:41:
                    dc:35:82:31:f4:c4:d7:b1:4d:35:28:d7:de:31:40:88:
                    e1:b2:9f:bb:2e:3c:ad:f2:54:e0:74:f2:22:0c:8e:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:b7:15:93:0b:54:47:d3:3e:a0:c1:37:62:47:a8:cc:
        e5:92:03:88:1b:cb:b8:f6:5e:32:de:ad:d4:7a:07:96:
        cf:3b:7e:f5:eb:d9:33:76:87:35:7e:dc:51:c4:6e:fc:
        b1:71:f5:00:52:11:7b:ee:47:87:31:f4:5b:85:ff:c3:
        bb:15:ca:88:13:1d:6a:f7:3d:86:05:f9:4b:b7:74:82:
        76:2e:b3:16:4c:21:10:7b:43:6b:f1:df:3d:f4:fa:0c:
        72:36:94:f9:1a:58:ea:e0:f7:41:86:a1:87:21:9e:89:
        a1:bb:58:69:0e:c5:ef:6c:0f:97:1e:24:4b:81:25:2d:
        c9:7f:c9:ad:b8:c8:97:d7:30:de:ed:9b:3d:b1:75:01:
        13:94:6d:89:bf:63:02:cd:f4:c5:35:02:bd:aa:8a:0d:
        48:ec:88:37:d9:5b:86:a5:0e:4d:15:74:eb:cb:a4:7d:
        07:db:8b:4b:9a:f1:2c:19:a7:69:e5:0c:51:a6:3f:64:
        db:54:65:8a:14:5a:c5:1a:80:61:01:0f:2a:81:e4:3c:
        a6:a1:7c:cd:9e:fd:bd:02:6a:80:cd:f4:d2:a6:36:e2:
        09:fd:0c:3c:c7:c4:ee:26:8a:a6:30:f7:67:4a:7e:05:
        e4:5a:cb:1a:ef:74:d3:13:be:53:14:e1:5c:24:70:1f
    Fingerprint (SHA-256):
        DF:FF:AE:25:41:95:A9:BD:02:A3:68:BB:ED:72:B0:B2:EC:8A:F9:77:36:44:01:66:6D:06:92:1A:19:82:8F:71
    Fingerprint (SHA1):
        51:B6:F3:24:7F:9D:57:A2:CC:A6:23:36:F1:F2:0E:A6:3C:0C:8D:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6053: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153766 (0x1dee4226)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:38:20 2017
            Not After : Mon May 02 15:38:20 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:f1:32:d0:b9:8c:57:cc:d7:fe:53:6d:40:9e:4e:d9:
                    79:e0:93:88:92:c1:ba:9e:e3:c4:a9:a0:70:1c:ca:f2:
                    a5:67:f5:27:55:b8:81:d4:37:f2:b2:81:ca:d8:4a:f9:
                    eb:ef:e6:70:e2:f7:e6:15:0a:bb:bf:40:ff:d1:ef:29:
                    ef:2a:57:3a:f6:54:3b:53:a6:09:5a:22:36:b5:c2:af:
                    f9:df:24:aa:11:2d:13:f2:58:ea:6a:0f:e4:c9:65:af:
                    69:cf:5d:5e:e6:a0:1c:1e:cd:86:e5:83:51:5d:80:3f:
                    47:3e:f8:a1:d0:60:d9:23:e0:08:87:d2:c8:8f:8d:59:
                    69:32:6d:c1:05:9f:46:11:5c:bd:5e:11:78:8e:45:3c:
                    a8:4d:be:04:8a:b4:ca:7a:ca:20:72:39:94:b5:f6:6e:
                    a3:64:23:96:67:16:8d:30:ae:87:f2:5c:8d:ac:ec:4c:
                    47:fd:a8:eb:70:a0:87:5e:16:54:fa:1f:60:7d:14:36:
                    7f:fb:ff:cb:79:8b:7e:52:1c:47:91:23:52:e1:db:8b:
                    a7:d1:d5:85:bf:4f:0d:29:c2:b8:5f:d2:fb:ad:ff:13:
                    4a:ac:0c:17:9c:4e:94:3e:f8:dd:c1:a1:cf:7d:3a:ea:
                    08:90:43:70:fe:31:2e:85:74:94:8b:59:4c:22:bd:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:55:64:1c:86:22:c2:a3:c8:8c:e2:04:c0:3e:05:0a:
        b7:61:29:bb:9d:12:59:35:3f:0d:4e:73:fb:b8:9d:3a:
        db:48:10:f5:22:58:0f:a1:9f:5d:24:0a:df:99:bd:aa:
        34:f2:c3:89:10:d9:d6:69:30:e1:d3:d9:dd:7c:89:20:
        7f:ca:51:8e:42:9c:d3:f5:dd:59:65:19:e1:8e:4a:d6:
        8d:11:bf:aa:e3:4e:62:a6:84:77:a5:f9:11:84:65:24:
        7f:f7:b7:2f:61:dd:e0:c9:a2:da:29:c0:b7:5c:8b:32:
        3b:0d:a8:1c:e4:eb:99:78:a9:c8:0d:c9:1f:71:2f:2e:
        2c:e9:df:b1:a9:8a:42:54:da:83:4b:6b:b9:b7:a8:d3:
        52:5f:35:74:e0:70:bf:23:e9:b8:bb:2b:e5:71:47:d4:
        88:78:81:cf:e6:2a:b8:9f:3f:50:1e:0a:ea:83:bd:bf:
        92:18:d4:fe:51:d3:4f:e9:64:16:00:5b:04:43:57:b7:
        58:c7:35:ba:45:31:4f:77:6b:60:32:a8:24:b4:c4:46:
        3b:eb:c2:bd:d6:01:28:73:87:be:60:27:ff:d4:e2:5e:
        21:b7:48:9d:02:38:1e:d3:28:2a:7c:d6:9c:34:06:c1:
        b3:b6:d3:d2:58:48:da:6f:6c:15:3a:ba:96:43:3d:58
    Fingerprint (SHA-256):
        56:22:25:7F:F4:C4:22:AA:AA:22:41:41:29:85:65:AB:78:DB:41:13:CB:8F:E5:C6:3B:D8:FC:E2:FD:A9:A9:B9
    Fingerprint (SHA1):
        EB:34:06:20:DD:76:F1:F0:BE:3D:1E:97:54:A8:BD:B8:A9:9A:08:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6054: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153767 (0x1dee4227)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:38:21 2017
            Not After : Mon May 02 15:38:21 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:b2:03:a8:d9:a9:b7:a3:f6:d8:33:44:ce:9f:35:42:
                    1b:89:b9:c0:47:1f:21:ba:a7:ac:83:1b:ac:1b:a7:b3:
                    0e:a1:2f:71:11:bf:ce:81:c5:83:37:2d:17:4f:35:fc:
                    f5:14:40:9a:99:4b:c0:96:e5:32:74:f7:dc:75:d6:42:
                    d5:d4:b9:01:fc:68:07:b3:61:bd:87:c1:a1:a8:14:1f:
                    c0:80:60:a0:61:3d:aa:35:02:7b:a3:38:28:d6:96:c8:
                    81:92:5e:62:39:7c:5c:e1:0e:9e:37:f2:59:dc:d0:b3:
                    c9:22:cc:21:55:5b:58:90:5c:a3:8a:59:07:dd:c4:84:
                    1b:31:5b:61:1c:e8:0b:b5:64:f1:6d:f5:d4:dc:c9:38:
                    e8:1e:66:d7:f0:23:73:6f:96:57:1b:21:57:61:90:23:
                    4b:02:b2:46:6a:97:0e:a0:d6:fc:01:b0:eb:31:1a:a7:
                    ea:af:18:1a:a1:57:9a:31:61:f5:a5:c4:9b:1a:b4:fa:
                    d7:c5:3f:e5:59:c6:fa:25:b1:a8:6d:f6:71:d5:09:ce:
                    71:72:f6:91:6e:aa:a9:6a:21:b4:fd:ee:41:6b:b5:71:
                    b1:c3:40:ca:1d:fb:19:1d:5d:9a:c9:04:41:fa:7c:ee:
                    38:57:54:0c:b9:70:e5:28:08:8b:43:bf:25:ef:34:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:99:f8:bf:2f:58:6f:ad:fb:4d:47:92:16:f2:35:40:
        8a:c2:b4:03:8e:98:02:29:2e:f5:18:56:28:4d:90:96:
        71:51:a3:87:53:13:9f:6f:10:ef:91:8b:d2:51:88:ca:
        cc:fe:fa:e9:31:4c:1f:1c:4d:b2:c0:64:1a:51:87:cb:
        2d:10:e8:d9:27:77:1e:8b:3e:2b:fe:31:d4:02:fc:ae:
        0e:95:37:90:a5:19:2a:74:e7:bd:6b:3c:d5:ba:f6:b1:
        63:da:ee:45:b4:f5:66:36:b8:86:7e:28:a4:e7:f4:b3:
        09:4e:64:66:d6:22:a6:6b:eb:cf:13:21:3b:06:a5:ad:
        7f:12:69:b5:2a:07:87:98:c7:3c:6f:bc:c6:c7:3f:76:
        5e:4a:dc:dc:04:3d:70:de:0f:de:7c:0b:53:92:01:ae:
        b4:01:08:76:63:de:78:d4:7a:92:27:6f:58:64:c0:24:
        fc:1c:65:ae:00:2f:5b:8f:c0:02:6b:0b:ee:c0:64:fb:
        56:07:f1:c9:d2:21:92:ff:3f:01:5a:e9:b3:29:73:3d:
        91:8c:92:91:b5:87:74:56:7b:ec:ed:0b:bd:15:29:8e:
        2d:05:d7:f5:83:e6:80:bd:d7:ba:3a:9d:22:79:fc:be:
        fa:c7:e5:de:46:84:72:07:a1:2e:12:f6:90:0d:49:75
    Fingerprint (SHA-256):
        D4:F0:0D:F4:F8:8A:F7:7C:ED:07:4D:CA:A6:DA:D3:3F:24:54:B9:50:5D:C3:16:03:01:BA:74:1D:2F:F2:8E:8F
    Fingerprint (SHA1):
        E9:23:2D:A5:D4:15:18:EC:C5:9E:5E:1F:C9:8A:AF:BE:F9:03:C2:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6055: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153768 (0x1dee4228)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:38:21 2017
            Not After : Mon May 02 15:38:21 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:74:ef:17:fe:6b:fa:a7:cf:d1:25:21:d0:9f:4f:e9:
                    c7:d8:e0:f8:bf:05:f7:0f:42:2e:e8:d9:e4:de:ca:f3:
                    55:56:64:54:14:d1:11:56:2b:39:37:23:c7:d5:05:1e:
                    53:58:a5:2b:b6:94:ae:ae:b9:d6:56:0d:d9:4e:2a:7d:
                    53:11:cb:6d:f0:98:68:90:66:96:a7:be:11:9c:d2:0a:
                    9f:80:b0:b1:0b:bb:b6:ba:06:09:97:a6:77:b1:8b:c7:
                    f3:8a:90:3d:1a:67:a0:4d:d4:e2:00:4b:48:10:eb:ed:
                    03:57:4d:5a:58:73:2f:07:01:78:95:92:ba:c6:99:42:
                    29:2a:c0:0e:dd:89:b0:06:62:a4:e3:b0:bc:86:6a:93:
                    33:1a:1f:09:31:b8:59:f2:a1:9a:e0:cb:6b:3f:da:f3:
                    b6:f4:1e:98:63:d1:ce:c0:ab:70:61:8c:61:81:36:a1:
                    af:cc:dc:9a:ad:29:c2:30:85:3b:a9:3f:0a:80:a9:d2:
                    17:cc:9a:58:8e:c0:06:43:dc:a3:7d:74:20:01:d1:27:
                    11:6d:a6:5a:12:10:17:fe:2d:74:97:d1:00:5d:59:e8:
                    41:af:11:f7:4e:56:ce:d7:10:c0:aa:ab:64:1b:91:66:
                    e4:42:d8:43:8b:55:e1:cf:5f:40:41:ff:27:fb:2c:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:cd:7b:1b:a2:c6:6a:e2:9a:1a:bd:56:b9:6a:83:13:
        9b:9e:d5:ec:c7:c3:b3:fd:4c:b9:cd:0a:49:bd:f7:b2:
        b4:2f:e3:00:d0:1b:46:4c:07:a4:76:5b:95:c1:6e:86:
        40:d2:d8:31:cd:5a:04:a3:4f:36:47:74:59:e4:76:3c:
        da:34:b8:d0:ba:6d:23:41:1d:01:9f:f2:d0:0c:39:3c:
        0a:a8:e9:7e:c8:28:6a:cf:07:0c:95:14:3f:41:83:db:
        6f:09:5c:ee:81:23:b1:d7:17:c3:ef:9a:65:4e:29:6c:
        64:97:9c:04:df:fc:b1:16:11:74:93:69:4d:f7:ba:f8:
        c3:36:32:ff:67:fc:db:da:b9:0a:c6:49:1b:95:2e:35:
        b7:50:66:2f:1c:88:b3:45:fc:ec:38:0c:a1:9c:d8:04:
        e3:3c:8c:c8:7a:90:b3:a8:e9:3d:ee:5b:b9:3b:b2:1d:
        82:bd:3b:8c:18:c2:eb:af:f3:98:ce:50:67:a1:55:08:
        de:06:d1:4f:30:a7:1d:d0:79:15:c0:ee:06:4c:f3:d7:
        52:e1:c9:53:63:d6:84:65:e1:76:bd:59:c4:df:1e:ec:
        af:f2:29:29:54:96:e0:94:2b:7c:b4:f1:77:87:99:7b:
        97:ec:9c:fd:f3:5e:fb:fb:72:20:2e:5e:2e:f8:f3:cf
    Fingerprint (SHA-256):
        1D:D5:F9:0E:F3:D0:71:D8:45:DE:EA:70:A2:D0:DB:05:E1:08:AD:1E:4D:B8:76:B5:CB:C5:20:41:3F:1C:07:C4
    Fingerprint (SHA1):
        C9:F7:26:63:A4:B3:74:6D:33:F9:B7:22:04:B2:8B:C1:BB:0E:03:32
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6056: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153769 (0x1dee4229)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:38:22 2017
            Not After : Mon May 02 15:38:22 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:30:f3:de:f9:73:7c:34:8f:05:12:6d:81:97:d8:42:
                    32:8c:9f:66:f3:71:4e:1b:19:e9:ee:3f:36:b6:de:f9:
                    4d:b9:fa:f1:bf:d9:bc:c9:ce:cc:39:cc:7b:29:b9:20:
                    ed:b0:df:e1:3c:06:aa:09:22:8d:e0:0c:b3:73:a0:a0:
                    3d:32:86:d4:2f:36:93:a5:88:cb:10:f0:3a:2f:fc:63:
                    c8:e2:08:79:02:b4:d4:b3:d8:1b:b0:98:97:2e:94:6f:
                    e8:eb:f0:2f:b2:65:5d:a9:89:1e:e1:4f:e3:c1:ef:99:
                    00:2e:bb:83:1a:f6:e7:16:ea:ea:2d:3e:ad:e4:24:7f:
                    3e:47:6b:8b:1f:3a:8c:45:ec:41:50:79:4a:52:6c:54:
                    fe:d7:e7:b8:df:b6:28:c6:4c:4e:3b:ea:60:65:64:34:
                    51:b8:df:61:71:ab:9e:18:5b:d5:f6:78:ed:eb:f8:c7:
                    01:19:79:26:b1:71:9f:46:64:43:06:14:78:eb:23:a5:
                    31:b3:b7:81:e1:72:ec:69:5d:94:b4:6b:f9:1e:80:e6:
                    2e:1f:d4:11:87:70:df:87:93:f8:21:e8:8e:a9:85:fa:
                    a5:0a:99:12:23:96:61:49:24:3b:f3:7a:a6:ca:ce:89:
                    c4:38:bc:a3:d7:a3:ae:62:10:8a:0d:4c:51:f2:f7:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:a0:a0:33:e3:97:9d:7b:65:3a:a7:5a:ad:fd:04:6f:
        89:82:eb:01:9f:38:8b:6c:2f:be:6a:7e:12:51:b8:64:
        fa:31:02:b8:e6:b6:c2:91:d8:a4:42:f1:d1:a6:27:ce:
        4b:96:d7:e7:0e:93:6c:28:77:71:c3:6b:8d:55:93:fb:
        f6:41:ea:9a:5e:ff:99:ba:58:b9:d5:e8:02:d1:ef:c5:
        f8:8d:51:98:24:95:ae:e7:ad:51:e9:90:c2:9b:3c:33:
        de:f7:c1:a2:be:ff:96:14:03:3b:dc:80:25:ac:eb:6b:
        75:06:61:9f:2e:16:28:9c:01:0e:b3:52:95:7d:75:f8:
        6c:60:2b:1c:6d:50:49:63:4f:a8:56:e9:fe:c8:74:82:
        83:be:39:6b:31:fd:fe:f9:ca:ac:83:40:d0:0f:24:22:
        79:53:be:6b:96:b6:2a:86:da:98:78:41:30:02:41:a8:
        d0:99:12:13:20:e1:38:64:19:e8:ea:b6:c8:64:6a:7c:
        92:95:63:dc:69:60:9d:59:f6:0f:d1:81:fa:6f:6e:e0:
        ff:c1:82:bf:f4:b2:d1:52:84:ba:52:28:a0:41:3f:00:
        df:17:8d:10:17:05:ad:f8:61:7c:78:95:35:7d:56:a2:
        73:71:fd:df:d3:09:fe:45:d4:a1:81:9c:0a:77:dd:1a
    Fingerprint (SHA-256):
        2A:BF:06:EE:CE:93:BF:19:28:2A:93:98:CB:7C:86:69:9B:A4:B3:1E:42:7B:00:51:EC:DD:E5:BD:A1:17:71:8C
    Fingerprint (SHA1):
        20:BD:C9:BC:65:FF:E3:40:30:42:14:6B:77:29:D5:3E:2C:3B:BA:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6057: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153770 (0x1dee422a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:38:23 2017
            Not After : Mon May 02 15:38:23 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:11:28:9b:83:9b:ed:60:df:18:e7:b4:ac:b5:83:fe:
                    e5:2a:d2:d2:d0:c8:7b:e2:68:78:70:27:06:0e:c9:44:
                    03:85:90:75:28:3d:1d:e4:63:10:89:68:8e:e4:f1:27:
                    19:b6:bc:d2:7e:fb:1c:af:ab:b4:f3:1e:3d:85:06:3f:
                    88:26:e4:26:78:68:ff:19:04:a8:69:0f:53:4c:6c:b8:
                    47:9b:03:2a:ee:98:20:99:dc:b0:29:12:9e:b0:98:43:
                    38:20:72:99:4a:f9:a3:a4:a0:0c:52:0d:bc:d6:de:0a:
                    2b:32:0b:fd:5b:0b:38:b2:ce:cc:9c:ef:03:9f:6d:28:
                    19:22:1a:a2:a9:0c:b7:57:ee:72:06:0f:b6:f0:3c:f4:
                    c3:05:5d:e8:69:e8:08:17:4a:0d:55:3a:af:d7:4a:48:
                    87:b4:0d:31:92:93:f3:b7:75:ba:ad:70:09:d5:f3:50:
                    41:dc:35:5b:f1:cc:5f:7f:9f:3e:cb:90:fd:5d:85:80:
                    6d:fb:49:89:a5:5a:2a:59:2a:23:28:d4:78:8a:5c:d9:
                    fe:e7:77:46:d8:98:8e:f6:5e:5f:d0:d1:af:22:12:51:
                    bd:b7:81:71:fb:84:af:d4:4c:97:4b:f3:b3:58:f7:27:
                    15:49:d1:ef:8d:c9:e8:9f:3c:bd:72:b9:9b:7a:4a:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:85:27:7d:6f:d7:52:15:3c:59:90:57:0d:3b:22:47:
        16:31:0e:c5:55:b0:1f:22:1e:55:e1:7f:9c:fc:e2:7b:
        39:32:15:c6:3e:c9:26:8d:5b:76:8d:e8:0c:4a:3c:7e:
        15:63:bb:96:9f:c4:2b:6b:46:9f:d7:a8:72:39:59:7a:
        8a:56:53:fa:f1:7d:5c:94:a7:2b:84:f2:f3:27:fe:04:
        86:c2:51:09:c1:4f:9e:fe:29:0a:6a:a8:56:62:a6:c8:
        4c:6e:99:5f:b1:9d:43:b9:4c:6f:07:34:5d:95:4a:d2:
        14:bd:b3:11:07:82:f2:ec:78:88:45:0b:2a:3e:38:51:
        38:a7:26:cd:c7:b8:43:9f:2d:a6:8c:48:2e:d0:de:50:
        6f:31:42:9a:49:c6:02:91:0a:0a:5f:ca:d2:5d:0b:f4:
        e9:2b:91:fa:ef:e6:95:b7:5d:f8:78:0e:bf:e7:b7:89:
        a8:45:2b:b1:68:49:a5:f0:17:a7:eb:94:3d:88:b9:bd:
        1b:19:e7:5e:eb:3f:b7:1c:07:38:85:08:05:cd:5e:a0:
        3a:c7:a5:90:8d:44:93:03:83:49:37:14:4b:e0:98:80:
        d0:c0:67:d9:d2:01:b2:8d:4c:aa:f9:cb:90:ad:a0:9e:
        e6:46:d3:9f:f6:86:96:01:99:61:12:f8:d2:6c:84:2a
    Fingerprint (SHA-256):
        A5:80:9E:1E:A1:01:F6:96:B1:1C:71:AE:D6:61:30:56:91:D1:9E:B7:87:BD:C8:35:49:2F:2D:2B:18:CE:C9:FA
    Fingerprint (SHA1):
        73:98:8F:CA:36:BF:C1:27:23:F1:F1:5B:C6:7A:A0:AC:5E:C5:D2:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6058: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153771 (0x1dee422b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:38:23 2017
            Not After : Mon May 02 15:38:23 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:99:ee:95:ed:87:9c:d9:87:8e:93:fb:95:94:52:96:
                    4b:f5:45:9f:a1:fe:11:cd:c8:22:1b:97:6a:20:da:d9:
                    3f:a3:cd:68:31:7a:76:f9:37:8f:9a:ab:83:68:70:09:
                    76:52:7b:31:28:3f:79:b6:8e:dd:d2:f7:3a:66:fe:8c:
                    7d:9c:88:54:5c:9f:a5:02:ef:64:f1:54:9f:2a:bf:2a:
                    a2:49:e1:3d:55:ae:f1:72:90:76:8f:07:91:f3:52:77:
                    6f:55:56:03:be:90:05:ef:e4:f1:4e:8f:18:16:58:66:
                    cf:0d:0d:68:ed:44:18:c6:31:10:9e:ae:e5:39:9d:99:
                    33:cb:d6:3e:2b:4a:78:07:ba:f3:8d:54:bc:a2:56:8a:
                    ad:cf:7a:26:21:0e:ca:95:5a:93:75:d8:71:f1:79:6c:
                    42:ca:4c:38:08:b9:d0:c2:86:61:a9:28:19:7b:72:f3:
                    c5:75:17:12:02:18:df:0e:7b:32:ae:c5:6b:89:21:f2:
                    53:30:68:52:fb:f4:f1:99:3c:74:18:10:f6:11:b0:fb:
                    84:3b:08:68:49:39:c2:0d:d6:f3:a1:c4:9e:a7:ff:da:
                    6a:cc:38:88:a2:35:a1:04:f8:f4:83:15:c5:a9:13:9d:
                    30:8d:5b:04:0d:ae:ee:f6:de:61:5e:f0:14:33:75:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:3d:2b:4b:57:22:b7:25:29:a7:3f:32:ea:00:ca:16:
        1b:11:96:29:ec:b2:f2:78:1a:3a:24:ef:4c:2e:6f:6d:
        e7:ee:ce:bf:cb:bf:55:8d:6a:c9:c0:f8:f5:65:11:a3:
        02:10:d0:24:29:c0:8b:ba:6c:7f:97:d7:e0:1f:c8:68:
        4b:4d:64:79:ec:d8:cf:d1:80:e9:ae:27:37:e1:88:76:
        60:3f:af:e2:dc:b4:19:3b:45:13:b4:84:21:b9:6d:a1:
        57:3b:f8:83:a7:41:7a:13:99:ec:ca:ee:dc:2e:cb:ad:
        69:ba:40:03:59:b7:cf:a8:a2:f8:89:c7:24:a2:31:a5:
        17:d3:3b:9e:d6:48:95:01:d3:43:35:31:25:8b:1e:31:
        49:9c:b9:9a:da:84:00:f8:c4:e1:47:23:1e:65:2d:f0:
        95:4a:e6:d4:fd:08:e7:ba:6d:f2:92:0d:e4:ca:e0:f2:
        6d:3b:3d:e7:55:9f:1e:09:db:d8:9b:b3:ec:93:30:96:
        1e:e4:ad:7f:7d:56:f9:ce:48:ef:40:4b:e0:a8:4f:95:
        67:60:d1:66:10:fe:1b:4d:32:62:74:19:5c:da:b5:14:
        8f:50:82:cc:12:22:d3:5d:bb:2f:1e:e7:b9:a8:24:cd:
        a2:bc:97:fe:d6:a8:3b:be:70:09:74:8e:e7:f4:b4:20
    Fingerprint (SHA-256):
        94:04:83:BE:B5:B2:2E:02:CB:ED:AC:24:E3:03:2D:7B:E4:35:4B:C4:9C:DB:52:4E:99:1B:5D:40:CE:CC:22:F8
    Fingerprint (SHA1):
        A8:8C:AA:A8:E1:A9:F1:1A:35:05:B0:73:A2:DE:FD:35:5A:19:73:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6059: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6060: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153786 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6061: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6062: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6063: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6064: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153787   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6065: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6066: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6067: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6068: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153788   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6069: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6070: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6071: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6072: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153789   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6073: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6074: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6075: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153786 (0x1dee423a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:27 2017
            Not After : Mon May 02 15:38:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f7:7a:cf:f3:d2:1d:a3:b8:76:92:21:6a:2f:d2:19:9a:
                    8d:c1:3f:20:cd:3d:8f:bb:01:e1:d3:25:6d:c2:52:5d:
                    a5:8c:25:52:88:04:90:5a:a8:ba:48:db:9b:92:6d:a7:
                    a3:d2:2b:61:9e:5e:b6:14:b9:23:66:39:6d:49:59:ad:
                    0f:94:23:b8:8c:b6:e8:46:e9:04:eb:29:2f:f8:9e:eb:
                    91:a8:78:4a:b2:79:0c:a5:77:68:3a:4b:d6:1c:ff:88:
                    33:c4:f0:17:28:5c:70:a4:5f:a7:d6:94:91:ea:b0:8b:
                    bb:e6:20:77:fd:96:8f:69:b5:89:fc:b3:9f:cc:d0:81:
                    41:52:a2:e2:dc:3e:f5:67:b5:9d:b9:01:8a:47:43:02:
                    7e:42:b9:a6:61:8d:18:be:9c:02:7a:3a:18:01:cf:f3:
                    a3:61:8e:0f:b2:b8:41:d3:b4:d7:b3:84:5f:a8:64:ff:
                    9b:ac:ef:c9:29:c9:60:f2:09:d6:86:11:f1:0a:ef:2d:
                    92:c0:9f:d9:b2:06:c5:c6:36:65:a2:e0:91:b2:5f:23:
                    b7:ea:f5:e0:8e:35:77:69:ee:63:81:ee:81:29:03:06:
                    25:7d:15:ad:d0:13:9b:52:cd:35:8c:10:a0:4b:01:4d:
                    ea:af:61:18:e6:ef:46:09:6c:0b:a1:00:15:73:a8:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:1f:df:89:48:2d:fc:d1:9b:87:a9:08:c0:41:b5:cf:
        7f:73:c5:0f:c2:2b:e3:2a:2c:fb:b5:ed:a6:40:47:7a:
        cd:24:4f:2c:05:56:2d:a4:e0:9f:0f:44:13:9e:bd:52:
        00:42:02:a5:f0:4f:32:31:0d:34:1d:17:21:29:c3:57:
        a9:ac:c9:48:55:86:1b:ce:e2:d2:40:6f:d0:54:13:78:
        04:c7:99:2e:41:f4:c7:03:1c:96:ee:47:21:97:98:0f:
        8d:23:3e:36:6f:fb:fd:bc:3a:83:9a:0c:3c:b0:d2:85:
        6b:55:ec:97:b6:6b:e6:67:f0:d0:38:69:9c:23:05:56:
        87:f6:2a:17:3d:26:36:4b:0d:d4:1e:38:7b:9d:8e:fd:
        2a:a6:4b:26:6b:06:f8:9b:55:57:ed:86:f4:0a:0b:2e:
        a7:92:1c:51:65:1d:2b:29:4b:45:10:c1:e7:56:99:20:
        7b:23:42:f4:21:74:8f:1b:79:34:1c:d8:fc:2a:72:39:
        1d:c0:7c:a7:7b:0c:19:77:89:a5:80:17:98:35:a5:12:
        cc:eb:23:8b:95:b5:73:40:5a:20:69:02:87:6f:26:de:
        69:d3:a7:2f:e2:40:4a:a6:df:2f:65:55:54:62:52:0c:
        90:ac:67:b9:0f:13:24:0d:b3:af:ff:72:3d:f6:49:5f
    Fingerprint (SHA-256):
        0C:6B:3E:EF:E8:3F:72:14:FB:AE:DB:71:5A:E5:7D:EE:66:A2:FD:7E:E0:E3:E3:65:10:77:9D:11:EA:EB:7A:BE
    Fingerprint (SHA1):
        E2:A4:A0:BC:10:B6:1A:DF:88:F4:35:7B:92:16:7E:ED:B0:35:98:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6076: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6077: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153787 (0x1dee423b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:28 2017
            Not After : Mon May 02 15:38:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:61:a5:1e:e4:47:73:c6:50:b6:3b:23:a8:21:a0:28:
                    01:ae:56:ad:46:d3:49:c1:12:61:97:29:b9:2d:1c:94:
                    e3:f2:d1:6a:42:0a:8d:26:94:9b:de:65:f1:e0:88:b5:
                    41:85:d8:d7:21:ab:51:39:61:c5:0d:21:45:84:32:84:
                    72:24:e4:0b:55:6b:c9:46:38:5e:3d:49:7a:71:18:21:
                    5b:75:cc:14:76:fb:0a:68:ac:51:09:3a:6a:d8:54:40:
                    51:a8:fa:10:1f:0d:04:59:1a:78:b7:68:3b:d7:df:85:
                    cd:62:c2:51:d9:36:0c:7f:87:84:be:e9:d1:33:43:32:
                    fd:ca:7b:cc:c4:21:37:99:4e:a4:4e:dc:29:be:c0:b6:
                    5d:16:56:09:77:95:58:3b:be:d6:ff:1a:a8:8b:4d:00:
                    72:13:fb:43:8c:0a:24:79:be:a0:e9:5e:67:12:72:ed:
                    85:b6:7e:1a:c1:18:74:5b:69:45:6c:0c:28:cc:8e:88:
                    0d:a3:b6:3b:1f:7d:10:f7:a8:70:2e:0a:d0:1c:5a:25:
                    e5:be:50:67:8f:f5:0d:5d:ce:a5:24:3d:55:ec:13:43:
                    66:a2:b8:07:53:7a:1c:67:10:9f:b1:ed:c2:18:e9:51:
                    3b:8a:7b:6c:04:28:d9:3d:4b:79:40:db:0d:66:bf:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d6:c1:4c:33:aa:2e:8a:77:ad:02:e1:85:d5:ee:80:
        ab:e1:5d:e7:2f:36:ff:d8:1d:eb:1e:d6:63:c2:ae:92:
        d5:f4:d9:b5:00:37:c7:13:0c:24:ed:b9:e4:a5:92:5b:
        26:2b:73:57:5d:67:3d:4d:f2:b2:4d:dc:07:83:3c:ed:
        ff:db:69:92:15:62:80:b4:b4:38:45:a6:93:e5:eb:c8:
        90:1e:e0:e7:b7:8f:60:75:a1:e3:34:0a:86:1b:fa:02:
        13:07:c7:5d:0e:b7:d2:15:f0:9b:44:78:a2:b0:83:67:
        03:83:9e:4f:6c:c2:62:3c:52:50:18:9d:cc:c7:99:c8:
        a2:fb:0a:2c:5a:39:0e:6a:eb:40:56:d8:37:a7:b1:96:
        87:04:14:f4:2f:36:3a:8d:f8:80:ad:44:f6:7e:4a:20:
        d2:19:49:70:29:93:b1:65:c9:d7:4b:8e:43:e4:57:89:
        26:5b:58:a9:59:48:ef:72:65:24:cd:2e:b3:83:0a:d6:
        f8:6b:86:91:3c:2b:f4:21:56:68:02:46:72:e4:11:78:
        a0:30:b4:cd:3f:91:cd:50:36:08:a8:51:26:c9:c9:11:
        df:b1:bd:f4:53:ff:4d:7c:e2:4b:89:4a:7f:fc:d6:51:
        b7:dd:13:cc:5b:42:79:95:62:60:38:b3:9a:ef:48:ab
    Fingerprint (SHA-256):
        38:A6:5F:94:42:C7:AE:6E:82:23:2C:87:E3:14:8A:05:69:7E:48:4B:CE:E2:72:2E:33:47:D0:85:F5:40:D3:76
    Fingerprint (SHA1):
        E7:D7:30:A5:3E:A8:BD:9C:43:DC:88:5B:27:46:C4:8A:8E:4F:A6:16
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6078: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6079: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153788 (0x1dee423c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:29 2017
            Not After : Mon May 02 15:38:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:df:b7:25:3d:da:3a:04:49:8a:22:71:9a:f6:0c:6a:
                    51:9c:57:40:a3:c7:54:6f:57:61:70:d0:1d:5a:7b:b5:
                    69:44:e0:0d:03:40:d1:14:85:80:3b:bb:0c:e4:3b:8b:
                    cc:83:8a:7e:03:38:ac:a4:e1:ae:94:54:ed:35:49:f3:
                    3a:e2:bc:c8:6c:ec:fd:ab:40:72:18:62:87:b2:e0:eb:
                    e1:2e:01:36:62:78:43:c4:23:e9:e5:dc:05:49:74:aa:
                    46:48:26:73:b9:8a:68:08:d0:24:61:ea:0c:2c:93:13:
                    b5:90:74:ce:d5:bc:fb:3a:0b:9d:75:61:c0:63:d1:51:
                    41:20:90:9d:02:91:1d:13:fe:04:6a:d7:e3:69:1b:d3:
                    09:66:68:ad:38:db:e1:82:94:81:54:d9:23:ca:e0:b0:
                    02:b3:78:7e:f1:75:48:1e:6b:b5:c6:71:b7:ae:d8:81:
                    d0:7d:75:0e:44:45:30:a8:eb:80:fb:be:1c:2e:28:44:
                    4f:42:fc:21:ce:fb:2e:67:de:e2:f6:06:f0:92:5c:98:
                    6b:68:83:7d:27:18:38:74:55:01:a0:40:49:1f:65:ca:
                    00:35:a3:db:53:6f:c2:f0:c3:c4:c9:30:96:88:1f:2e:
                    1f:75:54:40:05:3d:3a:91:17:86:31:32:10:7a:cd:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:b9:58:45:37:40:9c:19:97:2f:f9:e7:ca:7b:80:25:
        f9:c2:90:3e:54:f0:5f:a9:8a:c1:cc:17:3d:38:a7:bf:
        0c:3b:00:3c:d8:ef:78:5e:b1:3c:f8:61:5b:ce:c1:b0:
        da:58:81:0b:27:2b:95:47:ea:2a:e9:96:33:74:c2:a2:
        72:83:08:bf:8b:7b:a2:5a:9a:ec:f6:7c:f0:2e:9c:4d:
        ce:e7:76:1d:4a:db:bc:4b:a8:fb:b4:3c:0c:76:d5:1d:
        43:94:17:c6:19:ba:18:a8:4e:76:ab:72:8f:06:29:f1:
        84:a9:9f:da:fb:fc:1c:3c:98:19:e1:ee:9d:ca:1f:87:
        55:90:ec:04:f0:4c:cf:5b:36:b6:7b:bd:b1:35:7e:e5:
        4d:d2:92:90:49:27:2b:a3:eb:8e:c8:34:24:4c:a7:2c:
        42:35:19:c1:80:cf:2f:4c:c4:dc:97:9f:66:f7:a3:44:
        27:4c:f2:eb:63:30:4c:31:9d:df:76:48:6d:cc:96:2a:
        e6:3b:1d:c9:1e:2d:31:d9:47:80:c3:88:9c:03:9f:32:
        27:cb:8b:cb:ad:1f:dc:15:ff:89:9a:02:ef:8e:4d:ec:
        09:06:bd:14:8b:dc:aa:95:19:5c:ad:15:34:fc:2e:e8:
        68:20:44:c2:ed:eb:09:5f:0d:39:69:e8:0a:6f:96:44
    Fingerprint (SHA-256):
        88:59:74:6A:2B:D4:B5:16:A2:DD:E7:79:0D:91:20:90:60:64:37:A1:A5:D5:41:45:1C:FD:F1:39:44:40:55:DA
    Fingerprint (SHA1):
        46:CA:8D:27:01:39:24:73:A6:CF:89:8B:9D:66:7C:4A:48:F1:44:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6080: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6081: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6082: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6083: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6084: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153786 (0x1dee423a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:27 2017
            Not After : Mon May 02 15:38:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f7:7a:cf:f3:d2:1d:a3:b8:76:92:21:6a:2f:d2:19:9a:
                    8d:c1:3f:20:cd:3d:8f:bb:01:e1:d3:25:6d:c2:52:5d:
                    a5:8c:25:52:88:04:90:5a:a8:ba:48:db:9b:92:6d:a7:
                    a3:d2:2b:61:9e:5e:b6:14:b9:23:66:39:6d:49:59:ad:
                    0f:94:23:b8:8c:b6:e8:46:e9:04:eb:29:2f:f8:9e:eb:
                    91:a8:78:4a:b2:79:0c:a5:77:68:3a:4b:d6:1c:ff:88:
                    33:c4:f0:17:28:5c:70:a4:5f:a7:d6:94:91:ea:b0:8b:
                    bb:e6:20:77:fd:96:8f:69:b5:89:fc:b3:9f:cc:d0:81:
                    41:52:a2:e2:dc:3e:f5:67:b5:9d:b9:01:8a:47:43:02:
                    7e:42:b9:a6:61:8d:18:be:9c:02:7a:3a:18:01:cf:f3:
                    a3:61:8e:0f:b2:b8:41:d3:b4:d7:b3:84:5f:a8:64:ff:
                    9b:ac:ef:c9:29:c9:60:f2:09:d6:86:11:f1:0a:ef:2d:
                    92:c0:9f:d9:b2:06:c5:c6:36:65:a2:e0:91:b2:5f:23:
                    b7:ea:f5:e0:8e:35:77:69:ee:63:81:ee:81:29:03:06:
                    25:7d:15:ad:d0:13:9b:52:cd:35:8c:10:a0:4b:01:4d:
                    ea:af:61:18:e6:ef:46:09:6c:0b:a1:00:15:73:a8:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:1f:df:89:48:2d:fc:d1:9b:87:a9:08:c0:41:b5:cf:
        7f:73:c5:0f:c2:2b:e3:2a:2c:fb:b5:ed:a6:40:47:7a:
        cd:24:4f:2c:05:56:2d:a4:e0:9f:0f:44:13:9e:bd:52:
        00:42:02:a5:f0:4f:32:31:0d:34:1d:17:21:29:c3:57:
        a9:ac:c9:48:55:86:1b:ce:e2:d2:40:6f:d0:54:13:78:
        04:c7:99:2e:41:f4:c7:03:1c:96:ee:47:21:97:98:0f:
        8d:23:3e:36:6f:fb:fd:bc:3a:83:9a:0c:3c:b0:d2:85:
        6b:55:ec:97:b6:6b:e6:67:f0:d0:38:69:9c:23:05:56:
        87:f6:2a:17:3d:26:36:4b:0d:d4:1e:38:7b:9d:8e:fd:
        2a:a6:4b:26:6b:06:f8:9b:55:57:ed:86:f4:0a:0b:2e:
        a7:92:1c:51:65:1d:2b:29:4b:45:10:c1:e7:56:99:20:
        7b:23:42:f4:21:74:8f:1b:79:34:1c:d8:fc:2a:72:39:
        1d:c0:7c:a7:7b:0c:19:77:89:a5:80:17:98:35:a5:12:
        cc:eb:23:8b:95:b5:73:40:5a:20:69:02:87:6f:26:de:
        69:d3:a7:2f:e2:40:4a:a6:df:2f:65:55:54:62:52:0c:
        90:ac:67:b9:0f:13:24:0d:b3:af:ff:72:3d:f6:49:5f
    Fingerprint (SHA-256):
        0C:6B:3E:EF:E8:3F:72:14:FB:AE:DB:71:5A:E5:7D:EE:66:A2:FD:7E:E0:E3:E3:65:10:77:9D:11:EA:EB:7A:BE
    Fingerprint (SHA1):
        E2:A4:A0:BC:10:B6:1A:DF:88:F4:35:7B:92:16:7E:ED:B0:35:98:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6085: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6086: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153787 (0x1dee423b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:28 2017
            Not After : Mon May 02 15:38:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:61:a5:1e:e4:47:73:c6:50:b6:3b:23:a8:21:a0:28:
                    01:ae:56:ad:46:d3:49:c1:12:61:97:29:b9:2d:1c:94:
                    e3:f2:d1:6a:42:0a:8d:26:94:9b:de:65:f1:e0:88:b5:
                    41:85:d8:d7:21:ab:51:39:61:c5:0d:21:45:84:32:84:
                    72:24:e4:0b:55:6b:c9:46:38:5e:3d:49:7a:71:18:21:
                    5b:75:cc:14:76:fb:0a:68:ac:51:09:3a:6a:d8:54:40:
                    51:a8:fa:10:1f:0d:04:59:1a:78:b7:68:3b:d7:df:85:
                    cd:62:c2:51:d9:36:0c:7f:87:84:be:e9:d1:33:43:32:
                    fd:ca:7b:cc:c4:21:37:99:4e:a4:4e:dc:29:be:c0:b6:
                    5d:16:56:09:77:95:58:3b:be:d6:ff:1a:a8:8b:4d:00:
                    72:13:fb:43:8c:0a:24:79:be:a0:e9:5e:67:12:72:ed:
                    85:b6:7e:1a:c1:18:74:5b:69:45:6c:0c:28:cc:8e:88:
                    0d:a3:b6:3b:1f:7d:10:f7:a8:70:2e:0a:d0:1c:5a:25:
                    e5:be:50:67:8f:f5:0d:5d:ce:a5:24:3d:55:ec:13:43:
                    66:a2:b8:07:53:7a:1c:67:10:9f:b1:ed:c2:18:e9:51:
                    3b:8a:7b:6c:04:28:d9:3d:4b:79:40:db:0d:66:bf:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d6:c1:4c:33:aa:2e:8a:77:ad:02:e1:85:d5:ee:80:
        ab:e1:5d:e7:2f:36:ff:d8:1d:eb:1e:d6:63:c2:ae:92:
        d5:f4:d9:b5:00:37:c7:13:0c:24:ed:b9:e4:a5:92:5b:
        26:2b:73:57:5d:67:3d:4d:f2:b2:4d:dc:07:83:3c:ed:
        ff:db:69:92:15:62:80:b4:b4:38:45:a6:93:e5:eb:c8:
        90:1e:e0:e7:b7:8f:60:75:a1:e3:34:0a:86:1b:fa:02:
        13:07:c7:5d:0e:b7:d2:15:f0:9b:44:78:a2:b0:83:67:
        03:83:9e:4f:6c:c2:62:3c:52:50:18:9d:cc:c7:99:c8:
        a2:fb:0a:2c:5a:39:0e:6a:eb:40:56:d8:37:a7:b1:96:
        87:04:14:f4:2f:36:3a:8d:f8:80:ad:44:f6:7e:4a:20:
        d2:19:49:70:29:93:b1:65:c9:d7:4b:8e:43:e4:57:89:
        26:5b:58:a9:59:48:ef:72:65:24:cd:2e:b3:83:0a:d6:
        f8:6b:86:91:3c:2b:f4:21:56:68:02:46:72:e4:11:78:
        a0:30:b4:cd:3f:91:cd:50:36:08:a8:51:26:c9:c9:11:
        df:b1:bd:f4:53:ff:4d:7c:e2:4b:89:4a:7f:fc:d6:51:
        b7:dd:13:cc:5b:42:79:95:62:60:38:b3:9a:ef:48:ab
    Fingerprint (SHA-256):
        38:A6:5F:94:42:C7:AE:6E:82:23:2C:87:E3:14:8A:05:69:7E:48:4B:CE:E2:72:2E:33:47:D0:85:F5:40:D3:76
    Fingerprint (SHA1):
        E7:D7:30:A5:3E:A8:BD:9C:43:DC:88:5B:27:46:C4:8A:8E:4F:A6:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6087: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6088: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153788 (0x1dee423c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:29 2017
            Not After : Mon May 02 15:38:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:df:b7:25:3d:da:3a:04:49:8a:22:71:9a:f6:0c:6a:
                    51:9c:57:40:a3:c7:54:6f:57:61:70:d0:1d:5a:7b:b5:
                    69:44:e0:0d:03:40:d1:14:85:80:3b:bb:0c:e4:3b:8b:
                    cc:83:8a:7e:03:38:ac:a4:e1:ae:94:54:ed:35:49:f3:
                    3a:e2:bc:c8:6c:ec:fd:ab:40:72:18:62:87:b2:e0:eb:
                    e1:2e:01:36:62:78:43:c4:23:e9:e5:dc:05:49:74:aa:
                    46:48:26:73:b9:8a:68:08:d0:24:61:ea:0c:2c:93:13:
                    b5:90:74:ce:d5:bc:fb:3a:0b:9d:75:61:c0:63:d1:51:
                    41:20:90:9d:02:91:1d:13:fe:04:6a:d7:e3:69:1b:d3:
                    09:66:68:ad:38:db:e1:82:94:81:54:d9:23:ca:e0:b0:
                    02:b3:78:7e:f1:75:48:1e:6b:b5:c6:71:b7:ae:d8:81:
                    d0:7d:75:0e:44:45:30:a8:eb:80:fb:be:1c:2e:28:44:
                    4f:42:fc:21:ce:fb:2e:67:de:e2:f6:06:f0:92:5c:98:
                    6b:68:83:7d:27:18:38:74:55:01:a0:40:49:1f:65:ca:
                    00:35:a3:db:53:6f:c2:f0:c3:c4:c9:30:96:88:1f:2e:
                    1f:75:54:40:05:3d:3a:91:17:86:31:32:10:7a:cd:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:b9:58:45:37:40:9c:19:97:2f:f9:e7:ca:7b:80:25:
        f9:c2:90:3e:54:f0:5f:a9:8a:c1:cc:17:3d:38:a7:bf:
        0c:3b:00:3c:d8:ef:78:5e:b1:3c:f8:61:5b:ce:c1:b0:
        da:58:81:0b:27:2b:95:47:ea:2a:e9:96:33:74:c2:a2:
        72:83:08:bf:8b:7b:a2:5a:9a:ec:f6:7c:f0:2e:9c:4d:
        ce:e7:76:1d:4a:db:bc:4b:a8:fb:b4:3c:0c:76:d5:1d:
        43:94:17:c6:19:ba:18:a8:4e:76:ab:72:8f:06:29:f1:
        84:a9:9f:da:fb:fc:1c:3c:98:19:e1:ee:9d:ca:1f:87:
        55:90:ec:04:f0:4c:cf:5b:36:b6:7b:bd:b1:35:7e:e5:
        4d:d2:92:90:49:27:2b:a3:eb:8e:c8:34:24:4c:a7:2c:
        42:35:19:c1:80:cf:2f:4c:c4:dc:97:9f:66:f7:a3:44:
        27:4c:f2:eb:63:30:4c:31:9d:df:76:48:6d:cc:96:2a:
        e6:3b:1d:c9:1e:2d:31:d9:47:80:c3:88:9c:03:9f:32:
        27:cb:8b:cb:ad:1f:dc:15:ff:89:9a:02:ef:8e:4d:ec:
        09:06:bd:14:8b:dc:aa:95:19:5c:ad:15:34:fc:2e:e8:
        68:20:44:c2:ed:eb:09:5f:0d:39:69:e8:0a:6f:96:44
    Fingerprint (SHA-256):
        88:59:74:6A:2B:D4:B5:16:A2:DD:E7:79:0D:91:20:90:60:64:37:A1:A5:D5:41:45:1C:FD:F1:39:44:40:55:DA
    Fingerprint (SHA1):
        46:CA:8D:27:01:39:24:73:A6:CF:89:8B:9D:66:7C:4A:48:F1:44:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6089: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6090: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6091: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153790 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6092: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6093: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6094: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6095: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153791   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6096: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6097: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6098: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6099: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153792   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6100: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6101: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6102: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6103: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153793   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6104: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6105: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6106: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6107: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153794   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6108: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6109: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6110: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153790 (0x1dee423e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:30 2017
            Not After : Mon May 02 15:38:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ee:be:b2:71:10:75:b1:66:1a:db:c6:47:a0:47:02:
                    e9:24:d2:d9:ba:d6:8e:2a:ec:e2:f4:4d:6b:fe:10:83:
                    37:77:fa:dc:5b:1a:da:8a:39:da:68:3b:8b:0c:43:83:
                    5f:ad:3b:0c:29:4c:5b:9a:fc:3c:47:d3:3d:2f:84:00:
                    c5:c0:cf:79:8b:f2:93:4a:95:db:4b:71:4a:5e:ba:3a:
                    36:aa:57:d9:e7:0d:fd:8a:fb:cc:54:22:25:4b:a2:9d:
                    48:d3:0c:45:52:dd:1b:f4:ba:18:86:97:e5:d0:b8:3b:
                    36:91:d6:c6:e6:85:13:ad:7e:3e:81:8a:12:9f:42:dc:
                    0e:5d:ea:0c:71:97:b9:de:d6:2b:99:0e:bc:b1:1d:78:
                    8b:96:14:46:d3:a9:67:df:78:3e:85:39:80:25:a5:a9:
                    9c:57:ec:bf:f1:ca:3f:95:30:a6:e2:13:41:fd:65:17:
                    dd:5a:9d:3f:19:cc:70:88:9a:3d:49:d5:b8:b4:91:92:
                    8c:5d:6e:85:88:96:15:34:f8:72:7b:36:2d:dd:f9:59:
                    10:05:c4:59:70:ba:d9:73:4f:06:b3:60:dd:7e:20:ef:
                    f9:dd:08:a0:47:76:52:29:c5:2c:63:d8:b7:fa:26:f1:
                    67:ea:20:e9:4c:18:06:6f:16:62:64:a4:9a:82:4a:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:9b:2a:da:ba:18:e7:92:1d:9c:46:f0:13:4f:ae:aa:
        33:36:76:02:05:83:0f:4e:a9:19:48:7d:58:39:4c:b6:
        31:69:a3:88:bd:57:72:4a:aa:67:a6:7a:9d:bb:31:07:
        46:37:01:cf:4d:04:0c:23:4b:1a:b9:bf:70:73:9f:40:
        94:f3:bc:cc:26:92:02:f7:77:fe:8e:8a:2f:f8:2d:90:
        5a:5b:36:f7:a9:9e:ef:5c:4e:6a:74:53:69:c4:e2:c1:
        44:23:1a:27:4b:17:7f:9f:a8:a0:df:56:d3:41:c1:0a:
        82:7e:ce:66:a3:66:39:22:97:ef:03:83:e4:9f:ff:e2:
        f4:02:5c:d6:f3:4d:fe:f6:77:fc:22:38:fb:49:54:fa:
        ed:d5:eb:c3:fc:ad:a6:12:83:02:9f:af:37:7b:fa:e1:
        94:5e:22:a9:e4:99:aa:9f:5e:6d:1d:a2:f0:8e:5c:d9:
        1e:f3:08:9f:e9:c2:29:b1:de:78:12:23:c5:61:7a:94:
        bf:4e:e9:af:1c:71:61:b8:26:8d:e9:6b:71:08:99:42:
        5c:69:c3:ea:2e:b1:83:fa:4b:e6:68:f6:d0:1a:ab:7a:
        9a:29:ae:a0:cb:cd:97:0d:ee:c4:23:e1:65:3a:5d:e9:
        80:2e:c4:3b:b3:66:ab:5b:f9:76:55:d8:25:5c:d0:4f
    Fingerprint (SHA-256):
        FD:EB:FE:47:43:8C:CB:8C:47:26:7E:34:24:5F:95:A9:51:41:8A:BF:DE:1C:B7:D7:A3:C6:73:A5:9D:F2:B5:8F
    Fingerprint (SHA1):
        80:FF:F7:6B:DD:36:D8:7F:09:99:A9:1B:ED:4A:F2:6A:F6:6D:2C:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6111: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6112: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153791 (0x1dee423f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ac:93:e1:42:d4:f8:f5:fc:a5:96:e2:e7:40:cc:1e:
                    d7:07:48:f8:78:5c:47:27:9a:7e:64:aa:30:83:9e:d3:
                    8c:56:12:a4:39:2b:68:db:cf:53:bb:15:36:63:d7:a6:
                    6a:59:61:37:7a:51:d6:70:f4:e9:57:c1:f2:6d:fe:0d:
                    c5:a5:d1:71:a6:d2:59:33:df:b5:54:2a:a2:f5:35:0b:
                    36:35:c2:9d:94:a0:a9:34:a1:6e:c2:c1:4b:90:cf:2f:
                    77:84:53:1a:0b:86:43:dd:79:36:76:13:68:1d:16:19:
                    06:62:8a:75:12:22:80:b9:b4:8b:72:42:09:83:5a:be:
                    6c:54:2f:93:de:01:d2:69:ab:48:d6:2d:ee:2a:74:b8:
                    62:d2:13:e9:f9:3e:bb:85:23:04:a7:05:a7:90:c6:c7:
                    41:1a:5c:54:e5:ce:43:91:09:4c:4f:28:2f:b5:fd:3a:
                    94:31:d2:34:0e:29:ea:8a:79:bb:fb:1e:29:52:b4:d3:
                    08:44:81:5c:32:d9:8d:1f:25:3e:29:25:d5:46:36:c6:
                    8a:cf:4e:d1:90:79:d8:6d:3d:a6:12:51:d2:c5:89:b1:
                    3e:dd:89:b1:75:19:99:e1:00:15:53:b8:89:99:71:87:
                    4e:77:02:39:5f:d3:71:35:45:e6:09:b6:c4:1e:38:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:09:b3:f9:cf:e4:39:89:54:c8:dd:2e:6a:f3:9f:ed:
        bb:b8:64:04:78:38:5a:e0:14:ee:cb:7f:3a:44:15:60:
        9b:0a:8f:24:b9:a5:41:37:f8:3a:06:fb:95:b6:f8:9f:
        9f:84:20:65:d3:7a:42:a2:b2:cd:e5:43:d3:0f:5f:7b:
        d7:99:ad:31:e6:f5:ac:9b:24:c4:de:5e:c8:70:01:c6:
        41:20:8c:29:ae:7a:de:c4:86:9d:70:b5:58:af:cb:a8:
        f5:89:c4:e4:ce:14:c0:8f:d7:42:b9:f9:4d:db:38:a5:
        8b:e4:cc:70:2f:19:0e:be:2e:7e:d8:6b:f3:c5:73:34:
        fb:ed:cc:e2:4e:bd:95:87:9b:6e:7f:59:18:7e:7c:95:
        20:f3:d0:fd:34:13:04:38:2e:8b:9d:da:4f:ab:9d:55:
        fa:f5:2f:42:4a:59:04:16:34:dd:dd:de:8a:87:63:52:
        e2:ae:8f:b9:59:1d:a3:25:50:92:6a:0c:9c:70:de:9e:
        f7:59:b7:7b:0f:7b:25:64:f1:5e:be:25:c4:85:39:c4:
        15:a6:3e:41:64:fa:9f:a9:ce:12:c9:a7:24:1a:0c:9d:
        a1:b9:30:9e:1d:d0:91:4a:fb:e6:a2:86:d8:b8:9c:96:
        e1:76:ac:13:33:04:9a:78:79:46:a2:5b:50:05:38:f0
    Fingerprint (SHA-256):
        A4:06:5D:51:B1:2E:34:5A:A6:44:F6:D9:5B:13:7D:7E:8E:4C:23:87:C3:9C:2D:A7:43:98:2A:AE:09:98:19:FE
    Fingerprint (SHA1):
        D1:E6:9D:76:0F:B1:F1:CA:6A:AC:AA:09:E2:9F:72:72:59:41:2A:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6113: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6114: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153792 (0x1dee4240)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:57:1c:64:3c:cb:b2:12:ac:f8:70:cb:a6:7d:33:92:
                    e8:3c:5e:c7:02:d8:dc:27:92:52:99:d7:0b:6c:eb:a5:
                    33:ac:47:e8:e9:c5:7f:a7:9b:17:e6:ca:f1:90:de:5d:
                    90:cf:c2:c9:90:7a:78:f4:87:a4:32:ed:a9:72:ef:20:
                    e4:11:ab:97:65:fc:b4:fc:52:89:93:61:d6:95:70:c3:
                    05:5f:04:42:b6:f3:95:7b:05:d7:9b:30:3c:22:fb:45:
                    7e:13:62:89:87:18:ea:6a:50:9f:6d:26:5f:2a:0d:44:
                    99:ba:12:9e:2b:48:4e:b4:4d:aa:ed:3f:22:e5:12:5d:
                    18:b9:7e:19:70:4a:d9:48:10:28:46:2d:f5:1a:ae:9e:
                    33:81:cd:49:42:3c:37:48:5c:e1:a0:be:c9:0b:61:a2:
                    5a:1b:f8:92:35:ea:5a:40:d0:d3:f6:42:f2:70:f6:21:
                    65:a1:08:98:a7:d4:a3:f5:ac:6c:21:c2:a5:4a:5b:a5:
                    b7:3c:77:8c:ee:ae:d1:b7:7a:08:fd:a2:88:bd:65:bc:
                    e5:a1:8b:49:c4:07:5b:d0:e8:f0:cd:c8:a3:3a:75:3d:
                    b5:0f:d8:3d:3d:f0:6a:4c:af:f9:9c:37:e3:de:8b:02:
                    5d:8e:fe:17:d4:35:ca:84:39:66:9a:c4:8a:39:03:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:8a:91:f1:07:a5:37:e8:64:a7:d0:5f:72:88:21:29:
        77:1e:73:e2:16:c4:4a:71:e9:b6:69:02:d0:e8:7d:07:
        71:54:d6:da:00:f0:93:a1:b2:74:db:3c:d9:62:11:3f:
        7b:a7:f8:8e:7e:b3:08:34:c2:a5:55:4d:0e:96:1c:fc:
        23:10:07:88:f8:39:c8:0e:fc:d9:bd:68:ea:9b:01:e9:
        d2:72:da:f1:7f:0e:86:75:ef:ee:bc:78:1f:3f:2d:c4:
        31:2c:6e:80:43:3d:d2:bc:73:58:5a:89:ee:25:5c:7c:
        1f:8e:8f:c0:c2:ff:58:50:a7:8b:53:85:cd:b4:63:6f:
        43:7c:ac:7e:84:32:e5:1c:cc:01:7d:ab:51:5c:ec:89:
        c1:ab:7f:e5:1b:59:68:65:4e:f4:58:eb:ec:d5:80:19:
        60:cc:4a:33:b8:a7:7c:52:7b:82:8a:8a:f9:77:7b:4e:
        b9:0c:ff:76:bb:f6:07:f5:ff:4c:83:36:8f:43:0d:01:
        4b:36:a7:fc:2c:80:13:77:99:90:0c:76:84:11:dc:5b:
        d0:6c:f3:e1:8d:53:66:2e:3d:be:1d:3f:96:d2:8e:ba:
        e2:46:86:3a:56:1e:05:44:0a:14:00:76:9e:f8:ef:cd:
        2c:eb:c4:81:aa:4a:42:1b:14:f7:38:8c:5c:72:81:89
    Fingerprint (SHA-256):
        44:D8:7B:C9:C7:09:73:7B:5F:3C:71:4D:55:D5:38:40:D4:FC:3C:93:A8:63:25:06:CC:8F:17:A4:62:F5:20:33
    Fingerprint (SHA1):
        3E:94:01:6E:88:10:FA:FB:C8:46:4D:C1:BD:7A:C2:45:0C:F3:07:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6115: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6116: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6117: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6118: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6119: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153790 (0x1dee423e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:30 2017
            Not After : Mon May 02 15:38:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ee:be:b2:71:10:75:b1:66:1a:db:c6:47:a0:47:02:
                    e9:24:d2:d9:ba:d6:8e:2a:ec:e2:f4:4d:6b:fe:10:83:
                    37:77:fa:dc:5b:1a:da:8a:39:da:68:3b:8b:0c:43:83:
                    5f:ad:3b:0c:29:4c:5b:9a:fc:3c:47:d3:3d:2f:84:00:
                    c5:c0:cf:79:8b:f2:93:4a:95:db:4b:71:4a:5e:ba:3a:
                    36:aa:57:d9:e7:0d:fd:8a:fb:cc:54:22:25:4b:a2:9d:
                    48:d3:0c:45:52:dd:1b:f4:ba:18:86:97:e5:d0:b8:3b:
                    36:91:d6:c6:e6:85:13:ad:7e:3e:81:8a:12:9f:42:dc:
                    0e:5d:ea:0c:71:97:b9:de:d6:2b:99:0e:bc:b1:1d:78:
                    8b:96:14:46:d3:a9:67:df:78:3e:85:39:80:25:a5:a9:
                    9c:57:ec:bf:f1:ca:3f:95:30:a6:e2:13:41:fd:65:17:
                    dd:5a:9d:3f:19:cc:70:88:9a:3d:49:d5:b8:b4:91:92:
                    8c:5d:6e:85:88:96:15:34:f8:72:7b:36:2d:dd:f9:59:
                    10:05:c4:59:70:ba:d9:73:4f:06:b3:60:dd:7e:20:ef:
                    f9:dd:08:a0:47:76:52:29:c5:2c:63:d8:b7:fa:26:f1:
                    67:ea:20:e9:4c:18:06:6f:16:62:64:a4:9a:82:4a:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:9b:2a:da:ba:18:e7:92:1d:9c:46:f0:13:4f:ae:aa:
        33:36:76:02:05:83:0f:4e:a9:19:48:7d:58:39:4c:b6:
        31:69:a3:88:bd:57:72:4a:aa:67:a6:7a:9d:bb:31:07:
        46:37:01:cf:4d:04:0c:23:4b:1a:b9:bf:70:73:9f:40:
        94:f3:bc:cc:26:92:02:f7:77:fe:8e:8a:2f:f8:2d:90:
        5a:5b:36:f7:a9:9e:ef:5c:4e:6a:74:53:69:c4:e2:c1:
        44:23:1a:27:4b:17:7f:9f:a8:a0:df:56:d3:41:c1:0a:
        82:7e:ce:66:a3:66:39:22:97:ef:03:83:e4:9f:ff:e2:
        f4:02:5c:d6:f3:4d:fe:f6:77:fc:22:38:fb:49:54:fa:
        ed:d5:eb:c3:fc:ad:a6:12:83:02:9f:af:37:7b:fa:e1:
        94:5e:22:a9:e4:99:aa:9f:5e:6d:1d:a2:f0:8e:5c:d9:
        1e:f3:08:9f:e9:c2:29:b1:de:78:12:23:c5:61:7a:94:
        bf:4e:e9:af:1c:71:61:b8:26:8d:e9:6b:71:08:99:42:
        5c:69:c3:ea:2e:b1:83:fa:4b:e6:68:f6:d0:1a:ab:7a:
        9a:29:ae:a0:cb:cd:97:0d:ee:c4:23:e1:65:3a:5d:e9:
        80:2e:c4:3b:b3:66:ab:5b:f9:76:55:d8:25:5c:d0:4f
    Fingerprint (SHA-256):
        FD:EB:FE:47:43:8C:CB:8C:47:26:7E:34:24:5F:95:A9:51:41:8A:BF:DE:1C:B7:D7:A3:C6:73:A5:9D:F2:B5:8F
    Fingerprint (SHA1):
        80:FF:F7:6B:DD:36:D8:7F:09:99:A9:1B:ED:4A:F2:6A:F6:6D:2C:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6120: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6121: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153791 (0x1dee423f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ac:93:e1:42:d4:f8:f5:fc:a5:96:e2:e7:40:cc:1e:
                    d7:07:48:f8:78:5c:47:27:9a:7e:64:aa:30:83:9e:d3:
                    8c:56:12:a4:39:2b:68:db:cf:53:bb:15:36:63:d7:a6:
                    6a:59:61:37:7a:51:d6:70:f4:e9:57:c1:f2:6d:fe:0d:
                    c5:a5:d1:71:a6:d2:59:33:df:b5:54:2a:a2:f5:35:0b:
                    36:35:c2:9d:94:a0:a9:34:a1:6e:c2:c1:4b:90:cf:2f:
                    77:84:53:1a:0b:86:43:dd:79:36:76:13:68:1d:16:19:
                    06:62:8a:75:12:22:80:b9:b4:8b:72:42:09:83:5a:be:
                    6c:54:2f:93:de:01:d2:69:ab:48:d6:2d:ee:2a:74:b8:
                    62:d2:13:e9:f9:3e:bb:85:23:04:a7:05:a7:90:c6:c7:
                    41:1a:5c:54:e5:ce:43:91:09:4c:4f:28:2f:b5:fd:3a:
                    94:31:d2:34:0e:29:ea:8a:79:bb:fb:1e:29:52:b4:d3:
                    08:44:81:5c:32:d9:8d:1f:25:3e:29:25:d5:46:36:c6:
                    8a:cf:4e:d1:90:79:d8:6d:3d:a6:12:51:d2:c5:89:b1:
                    3e:dd:89:b1:75:19:99:e1:00:15:53:b8:89:99:71:87:
                    4e:77:02:39:5f:d3:71:35:45:e6:09:b6:c4:1e:38:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:09:b3:f9:cf:e4:39:89:54:c8:dd:2e:6a:f3:9f:ed:
        bb:b8:64:04:78:38:5a:e0:14:ee:cb:7f:3a:44:15:60:
        9b:0a:8f:24:b9:a5:41:37:f8:3a:06:fb:95:b6:f8:9f:
        9f:84:20:65:d3:7a:42:a2:b2:cd:e5:43:d3:0f:5f:7b:
        d7:99:ad:31:e6:f5:ac:9b:24:c4:de:5e:c8:70:01:c6:
        41:20:8c:29:ae:7a:de:c4:86:9d:70:b5:58:af:cb:a8:
        f5:89:c4:e4:ce:14:c0:8f:d7:42:b9:f9:4d:db:38:a5:
        8b:e4:cc:70:2f:19:0e:be:2e:7e:d8:6b:f3:c5:73:34:
        fb:ed:cc:e2:4e:bd:95:87:9b:6e:7f:59:18:7e:7c:95:
        20:f3:d0:fd:34:13:04:38:2e:8b:9d:da:4f:ab:9d:55:
        fa:f5:2f:42:4a:59:04:16:34:dd:dd:de:8a:87:63:52:
        e2:ae:8f:b9:59:1d:a3:25:50:92:6a:0c:9c:70:de:9e:
        f7:59:b7:7b:0f:7b:25:64:f1:5e:be:25:c4:85:39:c4:
        15:a6:3e:41:64:fa:9f:a9:ce:12:c9:a7:24:1a:0c:9d:
        a1:b9:30:9e:1d:d0:91:4a:fb:e6:a2:86:d8:b8:9c:96:
        e1:76:ac:13:33:04:9a:78:79:46:a2:5b:50:05:38:f0
    Fingerprint (SHA-256):
        A4:06:5D:51:B1:2E:34:5A:A6:44:F6:D9:5B:13:7D:7E:8E:4C:23:87:C3:9C:2D:A7:43:98:2A:AE:09:98:19:FE
    Fingerprint (SHA1):
        D1:E6:9D:76:0F:B1:F1:CA:6A:AC:AA:09:E2:9F:72:72:59:41:2A:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6122: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6123: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153792 (0x1dee4240)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:57:1c:64:3c:cb:b2:12:ac:f8:70:cb:a6:7d:33:92:
                    e8:3c:5e:c7:02:d8:dc:27:92:52:99:d7:0b:6c:eb:a5:
                    33:ac:47:e8:e9:c5:7f:a7:9b:17:e6:ca:f1:90:de:5d:
                    90:cf:c2:c9:90:7a:78:f4:87:a4:32:ed:a9:72:ef:20:
                    e4:11:ab:97:65:fc:b4:fc:52:89:93:61:d6:95:70:c3:
                    05:5f:04:42:b6:f3:95:7b:05:d7:9b:30:3c:22:fb:45:
                    7e:13:62:89:87:18:ea:6a:50:9f:6d:26:5f:2a:0d:44:
                    99:ba:12:9e:2b:48:4e:b4:4d:aa:ed:3f:22:e5:12:5d:
                    18:b9:7e:19:70:4a:d9:48:10:28:46:2d:f5:1a:ae:9e:
                    33:81:cd:49:42:3c:37:48:5c:e1:a0:be:c9:0b:61:a2:
                    5a:1b:f8:92:35:ea:5a:40:d0:d3:f6:42:f2:70:f6:21:
                    65:a1:08:98:a7:d4:a3:f5:ac:6c:21:c2:a5:4a:5b:a5:
                    b7:3c:77:8c:ee:ae:d1:b7:7a:08:fd:a2:88:bd:65:bc:
                    e5:a1:8b:49:c4:07:5b:d0:e8:f0:cd:c8:a3:3a:75:3d:
                    b5:0f:d8:3d:3d:f0:6a:4c:af:f9:9c:37:e3:de:8b:02:
                    5d:8e:fe:17:d4:35:ca:84:39:66:9a:c4:8a:39:03:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:8a:91:f1:07:a5:37:e8:64:a7:d0:5f:72:88:21:29:
        77:1e:73:e2:16:c4:4a:71:e9:b6:69:02:d0:e8:7d:07:
        71:54:d6:da:00:f0:93:a1:b2:74:db:3c:d9:62:11:3f:
        7b:a7:f8:8e:7e:b3:08:34:c2:a5:55:4d:0e:96:1c:fc:
        23:10:07:88:f8:39:c8:0e:fc:d9:bd:68:ea:9b:01:e9:
        d2:72:da:f1:7f:0e:86:75:ef:ee:bc:78:1f:3f:2d:c4:
        31:2c:6e:80:43:3d:d2:bc:73:58:5a:89:ee:25:5c:7c:
        1f:8e:8f:c0:c2:ff:58:50:a7:8b:53:85:cd:b4:63:6f:
        43:7c:ac:7e:84:32:e5:1c:cc:01:7d:ab:51:5c:ec:89:
        c1:ab:7f:e5:1b:59:68:65:4e:f4:58:eb:ec:d5:80:19:
        60:cc:4a:33:b8:a7:7c:52:7b:82:8a:8a:f9:77:7b:4e:
        b9:0c:ff:76:bb:f6:07:f5:ff:4c:83:36:8f:43:0d:01:
        4b:36:a7:fc:2c:80:13:77:99:90:0c:76:84:11:dc:5b:
        d0:6c:f3:e1:8d:53:66:2e:3d:be:1d:3f:96:d2:8e:ba:
        e2:46:86:3a:56:1e:05:44:0a:14:00:76:9e:f8:ef:cd:
        2c:eb:c4:81:aa:4a:42:1b:14:f7:38:8c:5c:72:81:89
    Fingerprint (SHA-256):
        44:D8:7B:C9:C7:09:73:7B:5F:3C:71:4D:55:D5:38:40:D4:FC:3C:93:A8:63:25:06:CC:8F:17:A4:62:F5:20:33
    Fingerprint (SHA1):
        3E:94:01:6E:88:10:FA:FB:C8:46:4D:C1:BD:7A:C2:45:0C:F3:07:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6124: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6125: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153790 (0x1dee423e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:30 2017
            Not After : Mon May 02 15:38:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ee:be:b2:71:10:75:b1:66:1a:db:c6:47:a0:47:02:
                    e9:24:d2:d9:ba:d6:8e:2a:ec:e2:f4:4d:6b:fe:10:83:
                    37:77:fa:dc:5b:1a:da:8a:39:da:68:3b:8b:0c:43:83:
                    5f:ad:3b:0c:29:4c:5b:9a:fc:3c:47:d3:3d:2f:84:00:
                    c5:c0:cf:79:8b:f2:93:4a:95:db:4b:71:4a:5e:ba:3a:
                    36:aa:57:d9:e7:0d:fd:8a:fb:cc:54:22:25:4b:a2:9d:
                    48:d3:0c:45:52:dd:1b:f4:ba:18:86:97:e5:d0:b8:3b:
                    36:91:d6:c6:e6:85:13:ad:7e:3e:81:8a:12:9f:42:dc:
                    0e:5d:ea:0c:71:97:b9:de:d6:2b:99:0e:bc:b1:1d:78:
                    8b:96:14:46:d3:a9:67:df:78:3e:85:39:80:25:a5:a9:
                    9c:57:ec:bf:f1:ca:3f:95:30:a6:e2:13:41:fd:65:17:
                    dd:5a:9d:3f:19:cc:70:88:9a:3d:49:d5:b8:b4:91:92:
                    8c:5d:6e:85:88:96:15:34:f8:72:7b:36:2d:dd:f9:59:
                    10:05:c4:59:70:ba:d9:73:4f:06:b3:60:dd:7e:20:ef:
                    f9:dd:08:a0:47:76:52:29:c5:2c:63:d8:b7:fa:26:f1:
                    67:ea:20:e9:4c:18:06:6f:16:62:64:a4:9a:82:4a:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:9b:2a:da:ba:18:e7:92:1d:9c:46:f0:13:4f:ae:aa:
        33:36:76:02:05:83:0f:4e:a9:19:48:7d:58:39:4c:b6:
        31:69:a3:88:bd:57:72:4a:aa:67:a6:7a:9d:bb:31:07:
        46:37:01:cf:4d:04:0c:23:4b:1a:b9:bf:70:73:9f:40:
        94:f3:bc:cc:26:92:02:f7:77:fe:8e:8a:2f:f8:2d:90:
        5a:5b:36:f7:a9:9e:ef:5c:4e:6a:74:53:69:c4:e2:c1:
        44:23:1a:27:4b:17:7f:9f:a8:a0:df:56:d3:41:c1:0a:
        82:7e:ce:66:a3:66:39:22:97:ef:03:83:e4:9f:ff:e2:
        f4:02:5c:d6:f3:4d:fe:f6:77:fc:22:38:fb:49:54:fa:
        ed:d5:eb:c3:fc:ad:a6:12:83:02:9f:af:37:7b:fa:e1:
        94:5e:22:a9:e4:99:aa:9f:5e:6d:1d:a2:f0:8e:5c:d9:
        1e:f3:08:9f:e9:c2:29:b1:de:78:12:23:c5:61:7a:94:
        bf:4e:e9:af:1c:71:61:b8:26:8d:e9:6b:71:08:99:42:
        5c:69:c3:ea:2e:b1:83:fa:4b:e6:68:f6:d0:1a:ab:7a:
        9a:29:ae:a0:cb:cd:97:0d:ee:c4:23:e1:65:3a:5d:e9:
        80:2e:c4:3b:b3:66:ab:5b:f9:76:55:d8:25:5c:d0:4f
    Fingerprint (SHA-256):
        FD:EB:FE:47:43:8C:CB:8C:47:26:7E:34:24:5F:95:A9:51:41:8A:BF:DE:1C:B7:D7:A3:C6:73:A5:9D:F2:B5:8F
    Fingerprint (SHA1):
        80:FF:F7:6B:DD:36:D8:7F:09:99:A9:1B:ED:4A:F2:6A:F6:6D:2C:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6126: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153790 (0x1dee423e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:30 2017
            Not After : Mon May 02 15:38:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ee:be:b2:71:10:75:b1:66:1a:db:c6:47:a0:47:02:
                    e9:24:d2:d9:ba:d6:8e:2a:ec:e2:f4:4d:6b:fe:10:83:
                    37:77:fa:dc:5b:1a:da:8a:39:da:68:3b:8b:0c:43:83:
                    5f:ad:3b:0c:29:4c:5b:9a:fc:3c:47:d3:3d:2f:84:00:
                    c5:c0:cf:79:8b:f2:93:4a:95:db:4b:71:4a:5e:ba:3a:
                    36:aa:57:d9:e7:0d:fd:8a:fb:cc:54:22:25:4b:a2:9d:
                    48:d3:0c:45:52:dd:1b:f4:ba:18:86:97:e5:d0:b8:3b:
                    36:91:d6:c6:e6:85:13:ad:7e:3e:81:8a:12:9f:42:dc:
                    0e:5d:ea:0c:71:97:b9:de:d6:2b:99:0e:bc:b1:1d:78:
                    8b:96:14:46:d3:a9:67:df:78:3e:85:39:80:25:a5:a9:
                    9c:57:ec:bf:f1:ca:3f:95:30:a6:e2:13:41:fd:65:17:
                    dd:5a:9d:3f:19:cc:70:88:9a:3d:49:d5:b8:b4:91:92:
                    8c:5d:6e:85:88:96:15:34:f8:72:7b:36:2d:dd:f9:59:
                    10:05:c4:59:70:ba:d9:73:4f:06:b3:60:dd:7e:20:ef:
                    f9:dd:08:a0:47:76:52:29:c5:2c:63:d8:b7:fa:26:f1:
                    67:ea:20:e9:4c:18:06:6f:16:62:64:a4:9a:82:4a:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:9b:2a:da:ba:18:e7:92:1d:9c:46:f0:13:4f:ae:aa:
        33:36:76:02:05:83:0f:4e:a9:19:48:7d:58:39:4c:b6:
        31:69:a3:88:bd:57:72:4a:aa:67:a6:7a:9d:bb:31:07:
        46:37:01:cf:4d:04:0c:23:4b:1a:b9:bf:70:73:9f:40:
        94:f3:bc:cc:26:92:02:f7:77:fe:8e:8a:2f:f8:2d:90:
        5a:5b:36:f7:a9:9e:ef:5c:4e:6a:74:53:69:c4:e2:c1:
        44:23:1a:27:4b:17:7f:9f:a8:a0:df:56:d3:41:c1:0a:
        82:7e:ce:66:a3:66:39:22:97:ef:03:83:e4:9f:ff:e2:
        f4:02:5c:d6:f3:4d:fe:f6:77:fc:22:38:fb:49:54:fa:
        ed:d5:eb:c3:fc:ad:a6:12:83:02:9f:af:37:7b:fa:e1:
        94:5e:22:a9:e4:99:aa:9f:5e:6d:1d:a2:f0:8e:5c:d9:
        1e:f3:08:9f:e9:c2:29:b1:de:78:12:23:c5:61:7a:94:
        bf:4e:e9:af:1c:71:61:b8:26:8d:e9:6b:71:08:99:42:
        5c:69:c3:ea:2e:b1:83:fa:4b:e6:68:f6:d0:1a:ab:7a:
        9a:29:ae:a0:cb:cd:97:0d:ee:c4:23:e1:65:3a:5d:e9:
        80:2e:c4:3b:b3:66:ab:5b:f9:76:55:d8:25:5c:d0:4f
    Fingerprint (SHA-256):
        FD:EB:FE:47:43:8C:CB:8C:47:26:7E:34:24:5F:95:A9:51:41:8A:BF:DE:1C:B7:D7:A3:C6:73:A5:9D:F2:B5:8F
    Fingerprint (SHA1):
        80:FF:F7:6B:DD:36:D8:7F:09:99:A9:1B:ED:4A:F2:6A:F6:6D:2C:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6127: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153791 (0x1dee423f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ac:93:e1:42:d4:f8:f5:fc:a5:96:e2:e7:40:cc:1e:
                    d7:07:48:f8:78:5c:47:27:9a:7e:64:aa:30:83:9e:d3:
                    8c:56:12:a4:39:2b:68:db:cf:53:bb:15:36:63:d7:a6:
                    6a:59:61:37:7a:51:d6:70:f4:e9:57:c1:f2:6d:fe:0d:
                    c5:a5:d1:71:a6:d2:59:33:df:b5:54:2a:a2:f5:35:0b:
                    36:35:c2:9d:94:a0:a9:34:a1:6e:c2:c1:4b:90:cf:2f:
                    77:84:53:1a:0b:86:43:dd:79:36:76:13:68:1d:16:19:
                    06:62:8a:75:12:22:80:b9:b4:8b:72:42:09:83:5a:be:
                    6c:54:2f:93:de:01:d2:69:ab:48:d6:2d:ee:2a:74:b8:
                    62:d2:13:e9:f9:3e:bb:85:23:04:a7:05:a7:90:c6:c7:
                    41:1a:5c:54:e5:ce:43:91:09:4c:4f:28:2f:b5:fd:3a:
                    94:31:d2:34:0e:29:ea:8a:79:bb:fb:1e:29:52:b4:d3:
                    08:44:81:5c:32:d9:8d:1f:25:3e:29:25:d5:46:36:c6:
                    8a:cf:4e:d1:90:79:d8:6d:3d:a6:12:51:d2:c5:89:b1:
                    3e:dd:89:b1:75:19:99:e1:00:15:53:b8:89:99:71:87:
                    4e:77:02:39:5f:d3:71:35:45:e6:09:b6:c4:1e:38:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:09:b3:f9:cf:e4:39:89:54:c8:dd:2e:6a:f3:9f:ed:
        bb:b8:64:04:78:38:5a:e0:14:ee:cb:7f:3a:44:15:60:
        9b:0a:8f:24:b9:a5:41:37:f8:3a:06:fb:95:b6:f8:9f:
        9f:84:20:65:d3:7a:42:a2:b2:cd:e5:43:d3:0f:5f:7b:
        d7:99:ad:31:e6:f5:ac:9b:24:c4:de:5e:c8:70:01:c6:
        41:20:8c:29:ae:7a:de:c4:86:9d:70:b5:58:af:cb:a8:
        f5:89:c4:e4:ce:14:c0:8f:d7:42:b9:f9:4d:db:38:a5:
        8b:e4:cc:70:2f:19:0e:be:2e:7e:d8:6b:f3:c5:73:34:
        fb:ed:cc:e2:4e:bd:95:87:9b:6e:7f:59:18:7e:7c:95:
        20:f3:d0:fd:34:13:04:38:2e:8b:9d:da:4f:ab:9d:55:
        fa:f5:2f:42:4a:59:04:16:34:dd:dd:de:8a:87:63:52:
        e2:ae:8f:b9:59:1d:a3:25:50:92:6a:0c:9c:70:de:9e:
        f7:59:b7:7b:0f:7b:25:64:f1:5e:be:25:c4:85:39:c4:
        15:a6:3e:41:64:fa:9f:a9:ce:12:c9:a7:24:1a:0c:9d:
        a1:b9:30:9e:1d:d0:91:4a:fb:e6:a2:86:d8:b8:9c:96:
        e1:76:ac:13:33:04:9a:78:79:46:a2:5b:50:05:38:f0
    Fingerprint (SHA-256):
        A4:06:5D:51:B1:2E:34:5A:A6:44:F6:D9:5B:13:7D:7E:8E:4C:23:87:C3:9C:2D:A7:43:98:2A:AE:09:98:19:FE
    Fingerprint (SHA1):
        D1:E6:9D:76:0F:B1:F1:CA:6A:AC:AA:09:E2:9F:72:72:59:41:2A:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6128: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153791 (0x1dee423f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ac:93:e1:42:d4:f8:f5:fc:a5:96:e2:e7:40:cc:1e:
                    d7:07:48:f8:78:5c:47:27:9a:7e:64:aa:30:83:9e:d3:
                    8c:56:12:a4:39:2b:68:db:cf:53:bb:15:36:63:d7:a6:
                    6a:59:61:37:7a:51:d6:70:f4:e9:57:c1:f2:6d:fe:0d:
                    c5:a5:d1:71:a6:d2:59:33:df:b5:54:2a:a2:f5:35:0b:
                    36:35:c2:9d:94:a0:a9:34:a1:6e:c2:c1:4b:90:cf:2f:
                    77:84:53:1a:0b:86:43:dd:79:36:76:13:68:1d:16:19:
                    06:62:8a:75:12:22:80:b9:b4:8b:72:42:09:83:5a:be:
                    6c:54:2f:93:de:01:d2:69:ab:48:d6:2d:ee:2a:74:b8:
                    62:d2:13:e9:f9:3e:bb:85:23:04:a7:05:a7:90:c6:c7:
                    41:1a:5c:54:e5:ce:43:91:09:4c:4f:28:2f:b5:fd:3a:
                    94:31:d2:34:0e:29:ea:8a:79:bb:fb:1e:29:52:b4:d3:
                    08:44:81:5c:32:d9:8d:1f:25:3e:29:25:d5:46:36:c6:
                    8a:cf:4e:d1:90:79:d8:6d:3d:a6:12:51:d2:c5:89:b1:
                    3e:dd:89:b1:75:19:99:e1:00:15:53:b8:89:99:71:87:
                    4e:77:02:39:5f:d3:71:35:45:e6:09:b6:c4:1e:38:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:09:b3:f9:cf:e4:39:89:54:c8:dd:2e:6a:f3:9f:ed:
        bb:b8:64:04:78:38:5a:e0:14:ee:cb:7f:3a:44:15:60:
        9b:0a:8f:24:b9:a5:41:37:f8:3a:06:fb:95:b6:f8:9f:
        9f:84:20:65:d3:7a:42:a2:b2:cd:e5:43:d3:0f:5f:7b:
        d7:99:ad:31:e6:f5:ac:9b:24:c4:de:5e:c8:70:01:c6:
        41:20:8c:29:ae:7a:de:c4:86:9d:70:b5:58:af:cb:a8:
        f5:89:c4:e4:ce:14:c0:8f:d7:42:b9:f9:4d:db:38:a5:
        8b:e4:cc:70:2f:19:0e:be:2e:7e:d8:6b:f3:c5:73:34:
        fb:ed:cc:e2:4e:bd:95:87:9b:6e:7f:59:18:7e:7c:95:
        20:f3:d0:fd:34:13:04:38:2e:8b:9d:da:4f:ab:9d:55:
        fa:f5:2f:42:4a:59:04:16:34:dd:dd:de:8a:87:63:52:
        e2:ae:8f:b9:59:1d:a3:25:50:92:6a:0c:9c:70:de:9e:
        f7:59:b7:7b:0f:7b:25:64:f1:5e:be:25:c4:85:39:c4:
        15:a6:3e:41:64:fa:9f:a9:ce:12:c9:a7:24:1a:0c:9d:
        a1:b9:30:9e:1d:d0:91:4a:fb:e6:a2:86:d8:b8:9c:96:
        e1:76:ac:13:33:04:9a:78:79:46:a2:5b:50:05:38:f0
    Fingerprint (SHA-256):
        A4:06:5D:51:B1:2E:34:5A:A6:44:F6:D9:5B:13:7D:7E:8E:4C:23:87:C3:9C:2D:A7:43:98:2A:AE:09:98:19:FE
    Fingerprint (SHA1):
        D1:E6:9D:76:0F:B1:F1:CA:6A:AC:AA:09:E2:9F:72:72:59:41:2A:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6129: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153792 (0x1dee4240)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:57:1c:64:3c:cb:b2:12:ac:f8:70:cb:a6:7d:33:92:
                    e8:3c:5e:c7:02:d8:dc:27:92:52:99:d7:0b:6c:eb:a5:
                    33:ac:47:e8:e9:c5:7f:a7:9b:17:e6:ca:f1:90:de:5d:
                    90:cf:c2:c9:90:7a:78:f4:87:a4:32:ed:a9:72:ef:20:
                    e4:11:ab:97:65:fc:b4:fc:52:89:93:61:d6:95:70:c3:
                    05:5f:04:42:b6:f3:95:7b:05:d7:9b:30:3c:22:fb:45:
                    7e:13:62:89:87:18:ea:6a:50:9f:6d:26:5f:2a:0d:44:
                    99:ba:12:9e:2b:48:4e:b4:4d:aa:ed:3f:22:e5:12:5d:
                    18:b9:7e:19:70:4a:d9:48:10:28:46:2d:f5:1a:ae:9e:
                    33:81:cd:49:42:3c:37:48:5c:e1:a0:be:c9:0b:61:a2:
                    5a:1b:f8:92:35:ea:5a:40:d0:d3:f6:42:f2:70:f6:21:
                    65:a1:08:98:a7:d4:a3:f5:ac:6c:21:c2:a5:4a:5b:a5:
                    b7:3c:77:8c:ee:ae:d1:b7:7a:08:fd:a2:88:bd:65:bc:
                    e5:a1:8b:49:c4:07:5b:d0:e8:f0:cd:c8:a3:3a:75:3d:
                    b5:0f:d8:3d:3d:f0:6a:4c:af:f9:9c:37:e3:de:8b:02:
                    5d:8e:fe:17:d4:35:ca:84:39:66:9a:c4:8a:39:03:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:8a:91:f1:07:a5:37:e8:64:a7:d0:5f:72:88:21:29:
        77:1e:73:e2:16:c4:4a:71:e9:b6:69:02:d0:e8:7d:07:
        71:54:d6:da:00:f0:93:a1:b2:74:db:3c:d9:62:11:3f:
        7b:a7:f8:8e:7e:b3:08:34:c2:a5:55:4d:0e:96:1c:fc:
        23:10:07:88:f8:39:c8:0e:fc:d9:bd:68:ea:9b:01:e9:
        d2:72:da:f1:7f:0e:86:75:ef:ee:bc:78:1f:3f:2d:c4:
        31:2c:6e:80:43:3d:d2:bc:73:58:5a:89:ee:25:5c:7c:
        1f:8e:8f:c0:c2:ff:58:50:a7:8b:53:85:cd:b4:63:6f:
        43:7c:ac:7e:84:32:e5:1c:cc:01:7d:ab:51:5c:ec:89:
        c1:ab:7f:e5:1b:59:68:65:4e:f4:58:eb:ec:d5:80:19:
        60:cc:4a:33:b8:a7:7c:52:7b:82:8a:8a:f9:77:7b:4e:
        b9:0c:ff:76:bb:f6:07:f5:ff:4c:83:36:8f:43:0d:01:
        4b:36:a7:fc:2c:80:13:77:99:90:0c:76:84:11:dc:5b:
        d0:6c:f3:e1:8d:53:66:2e:3d:be:1d:3f:96:d2:8e:ba:
        e2:46:86:3a:56:1e:05:44:0a:14:00:76:9e:f8:ef:cd:
        2c:eb:c4:81:aa:4a:42:1b:14:f7:38:8c:5c:72:81:89
    Fingerprint (SHA-256):
        44:D8:7B:C9:C7:09:73:7B:5F:3C:71:4D:55:D5:38:40:D4:FC:3C:93:A8:63:25:06:CC:8F:17:A4:62:F5:20:33
    Fingerprint (SHA1):
        3E:94:01:6E:88:10:FA:FB:C8:46:4D:C1:BD:7A:C2:45:0C:F3:07:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6130: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153792 (0x1dee4240)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:38:31 2017
            Not After : Mon May 02 15:38:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:57:1c:64:3c:cb:b2:12:ac:f8:70:cb:a6:7d:33:92:
                    e8:3c:5e:c7:02:d8:dc:27:92:52:99:d7:0b:6c:eb:a5:
                    33:ac:47:e8:e9:c5:7f:a7:9b:17:e6:ca:f1:90:de:5d:
                    90:cf:c2:c9:90:7a:78:f4:87:a4:32:ed:a9:72:ef:20:
                    e4:11:ab:97:65:fc:b4:fc:52:89:93:61:d6:95:70:c3:
                    05:5f:04:42:b6:f3:95:7b:05:d7:9b:30:3c:22:fb:45:
                    7e:13:62:89:87:18:ea:6a:50:9f:6d:26:5f:2a:0d:44:
                    99:ba:12:9e:2b:48:4e:b4:4d:aa:ed:3f:22:e5:12:5d:
                    18:b9:7e:19:70:4a:d9:48:10:28:46:2d:f5:1a:ae:9e:
                    33:81:cd:49:42:3c:37:48:5c:e1:a0:be:c9:0b:61:a2:
                    5a:1b:f8:92:35:ea:5a:40:d0:d3:f6:42:f2:70:f6:21:
                    65:a1:08:98:a7:d4:a3:f5:ac:6c:21:c2:a5:4a:5b:a5:
                    b7:3c:77:8c:ee:ae:d1:b7:7a:08:fd:a2:88:bd:65:bc:
                    e5:a1:8b:49:c4:07:5b:d0:e8:f0:cd:c8:a3:3a:75:3d:
                    b5:0f:d8:3d:3d:f0:6a:4c:af:f9:9c:37:e3:de:8b:02:
                    5d:8e:fe:17:d4:35:ca:84:39:66:9a:c4:8a:39:03:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:8a:91:f1:07:a5:37:e8:64:a7:d0:5f:72:88:21:29:
        77:1e:73:e2:16:c4:4a:71:e9:b6:69:02:d0:e8:7d:07:
        71:54:d6:da:00:f0:93:a1:b2:74:db:3c:d9:62:11:3f:
        7b:a7:f8:8e:7e:b3:08:34:c2:a5:55:4d:0e:96:1c:fc:
        23:10:07:88:f8:39:c8:0e:fc:d9:bd:68:ea:9b:01:e9:
        d2:72:da:f1:7f:0e:86:75:ef:ee:bc:78:1f:3f:2d:c4:
        31:2c:6e:80:43:3d:d2:bc:73:58:5a:89:ee:25:5c:7c:
        1f:8e:8f:c0:c2:ff:58:50:a7:8b:53:85:cd:b4:63:6f:
        43:7c:ac:7e:84:32:e5:1c:cc:01:7d:ab:51:5c:ec:89:
        c1:ab:7f:e5:1b:59:68:65:4e:f4:58:eb:ec:d5:80:19:
        60:cc:4a:33:b8:a7:7c:52:7b:82:8a:8a:f9:77:7b:4e:
        b9:0c:ff:76:bb:f6:07:f5:ff:4c:83:36:8f:43:0d:01:
        4b:36:a7:fc:2c:80:13:77:99:90:0c:76:84:11:dc:5b:
        d0:6c:f3:e1:8d:53:66:2e:3d:be:1d:3f:96:d2:8e:ba:
        e2:46:86:3a:56:1e:05:44:0a:14:00:76:9e:f8:ef:cd:
        2c:eb:c4:81:aa:4a:42:1b:14:f7:38:8c:5c:72:81:89
    Fingerprint (SHA-256):
        44:D8:7B:C9:C7:09:73:7B:5F:3C:71:4D:55:D5:38:40:D4:FC:3C:93:A8:63:25:06:CC:8F:17:A4:62:F5:20:33
    Fingerprint (SHA1):
        3E:94:01:6E:88:10:FA:FB:C8:46:4D:C1:BD:7A:C2:45:0C:F3:07:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6131: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6132: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153795 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6133: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6134: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6135: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6136: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153796   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6137: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6138: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6139: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6140: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153797   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6141: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6142: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6143: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6144: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153798   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6145: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6146: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6147: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6148: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153799   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6149: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6150: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6151: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6152: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153800   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6153: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6154: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6155: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6156: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153801   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6157: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6158: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6159: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6160: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6161: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6162: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6163: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153795 (0x1dee4243)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:33 2017
            Not After : Mon May 02 15:38:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:9f:25:62:19:43:95:85:1b:1a:80:08:b6:9d:54:b1:
                    33:3c:d4:32:f5:68:4b:12:57:49:fe:ff:d5:4a:61:55:
                    91:36:b6:10:d2:4e:4f:b7:ed:d6:7f:93:50:02:b9:e9:
                    f6:cd:69:b3:42:2c:f3:ff:f9:86:16:c0:46:0a:a0:c9:
                    b0:50:84:7d:20:d6:70:16:40:41:b5:59:1e:10:82:f4:
                    4d:f4:92:ee:5d:17:b1:f6:f3:6f:41:58:f7:f5:a3:58:
                    33:a5:92:80:f8:48:0a:f6:55:f3:b0:7b:fd:f0:39:75:
                    65:c0:84:5a:84:52:93:74:59:0d:b3:1d:9a:7b:ef:2c:
                    f8:8d:c4:46:37:8f:b1:37:62:49:be:32:15:fa:2e:44:
                    9e:57:6c:ce:9a:ff:b0:95:14:7a:f3:0b:0f:07:ba:5a:
                    e4:ac:5a:80:54:b5:c3:ea:7e:0b:4f:c0:e5:2e:7b:f0:
                    dc:17:90:e2:01:23:92:e5:e9:d8:81:12:c2:98:d9:4d:
                    9c:04:40:ed:4a:0d:5a:c5:68:9f:08:0f:2e:b0:ec:c5:
                    93:f3:2e:94:31:ef:cc:79:63:4c:cf:9d:dd:32:ab:65:
                    3a:b6:4d:54:67:1d:3a:8c:51:9d:b5:e6:fb:9b:1d:6d:
                    92:44:d5:18:c2:02:17:ee:84:99:1a:99:63:bb:e0:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:65:17:fb:a5:48:d5:3d:6f:ce:c3:c5:33:da:f5:46:
        80:e6:a7:bf:c6:03:84:53:52:bb:f1:08:5a:69:38:56:
        05:99:4a:dc:5a:79:7d:53:07:e5:1d:27:75:e3:ec:8d:
        30:48:89:b8:ce:00:a6:0d:d2:46:48:5d:3b:f2:6a:4d:
        59:bd:17:34:ec:64:98:ba:f9:69:7e:df:f6:ec:44:8d:
        37:88:a2:df:fb:55:ba:3b:d5:ce:92:63:d0:d5:8d:43:
        5c:29:ef:4d:f5:97:99:07:f8:32:b2:cf:a0:2a:ad:23:
        c4:62:da:26:95:9d:97:1c:46:9e:88:7d:88:a2:99:3f:
        0f:d6:4d:08:6a:ec:af:f0:a5:22:fb:79:04:0a:1c:13:
        7e:18:20:6b:d7:39:47:00:79:c9:34:08:b6:25:31:e8:
        87:cf:bb:75:92:ce:47:4b:9c:d6:b9:d8:fa:4a:8a:e6:
        a5:bb:5a:48:b5:f5:1b:2b:77:88:21:80:ca:b4:6f:25:
        97:11:07:e6:60:21:d9:c8:8e:43:eb:f7:92:ec:38:c2:
        71:3f:97:fc:ff:38:47:2f:01:21:e9:b7:da:18:b7:03:
        97:f2:3a:33:47:a1:7d:35:fd:63:b3:a9:15:f8:ec:3f:
        f6:d7:07:ed:ce:d1:b3:63:38:87:00:18:30:96:98:95
    Fingerprint (SHA-256):
        E0:04:1E:DD:09:A7:CD:BE:95:34:CB:7A:9F:D6:E3:47:49:7D:16:96:92:AD:D3:1E:05:29:21:1B:15:45:31:B7
    Fingerprint (SHA1):
        FA:99:2D:88:08:C1:53:B9:7A:44:5E:EB:C9:F7:19:66:96:CA:8F:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6164: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6165: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6166: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6167: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153795 (0x1dee4243)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:33 2017
            Not After : Mon May 02 15:38:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:9f:25:62:19:43:95:85:1b:1a:80:08:b6:9d:54:b1:
                    33:3c:d4:32:f5:68:4b:12:57:49:fe:ff:d5:4a:61:55:
                    91:36:b6:10:d2:4e:4f:b7:ed:d6:7f:93:50:02:b9:e9:
                    f6:cd:69:b3:42:2c:f3:ff:f9:86:16:c0:46:0a:a0:c9:
                    b0:50:84:7d:20:d6:70:16:40:41:b5:59:1e:10:82:f4:
                    4d:f4:92:ee:5d:17:b1:f6:f3:6f:41:58:f7:f5:a3:58:
                    33:a5:92:80:f8:48:0a:f6:55:f3:b0:7b:fd:f0:39:75:
                    65:c0:84:5a:84:52:93:74:59:0d:b3:1d:9a:7b:ef:2c:
                    f8:8d:c4:46:37:8f:b1:37:62:49:be:32:15:fa:2e:44:
                    9e:57:6c:ce:9a:ff:b0:95:14:7a:f3:0b:0f:07:ba:5a:
                    e4:ac:5a:80:54:b5:c3:ea:7e:0b:4f:c0:e5:2e:7b:f0:
                    dc:17:90:e2:01:23:92:e5:e9:d8:81:12:c2:98:d9:4d:
                    9c:04:40:ed:4a:0d:5a:c5:68:9f:08:0f:2e:b0:ec:c5:
                    93:f3:2e:94:31:ef:cc:79:63:4c:cf:9d:dd:32:ab:65:
                    3a:b6:4d:54:67:1d:3a:8c:51:9d:b5:e6:fb:9b:1d:6d:
                    92:44:d5:18:c2:02:17:ee:84:99:1a:99:63:bb:e0:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:65:17:fb:a5:48:d5:3d:6f:ce:c3:c5:33:da:f5:46:
        80:e6:a7:bf:c6:03:84:53:52:bb:f1:08:5a:69:38:56:
        05:99:4a:dc:5a:79:7d:53:07:e5:1d:27:75:e3:ec:8d:
        30:48:89:b8:ce:00:a6:0d:d2:46:48:5d:3b:f2:6a:4d:
        59:bd:17:34:ec:64:98:ba:f9:69:7e:df:f6:ec:44:8d:
        37:88:a2:df:fb:55:ba:3b:d5:ce:92:63:d0:d5:8d:43:
        5c:29:ef:4d:f5:97:99:07:f8:32:b2:cf:a0:2a:ad:23:
        c4:62:da:26:95:9d:97:1c:46:9e:88:7d:88:a2:99:3f:
        0f:d6:4d:08:6a:ec:af:f0:a5:22:fb:79:04:0a:1c:13:
        7e:18:20:6b:d7:39:47:00:79:c9:34:08:b6:25:31:e8:
        87:cf:bb:75:92:ce:47:4b:9c:d6:b9:d8:fa:4a:8a:e6:
        a5:bb:5a:48:b5:f5:1b:2b:77:88:21:80:ca:b4:6f:25:
        97:11:07:e6:60:21:d9:c8:8e:43:eb:f7:92:ec:38:c2:
        71:3f:97:fc:ff:38:47:2f:01:21:e9:b7:da:18:b7:03:
        97:f2:3a:33:47:a1:7d:35:fd:63:b3:a9:15:f8:ec:3f:
        f6:d7:07:ed:ce:d1:b3:63:38:87:00:18:30:96:98:95
    Fingerprint (SHA-256):
        E0:04:1E:DD:09:A7:CD:BE:95:34:CB:7A:9F:D6:E3:47:49:7D:16:96:92:AD:D3:1E:05:29:21:1B:15:45:31:B7
    Fingerprint (SHA1):
        FA:99:2D:88:08:C1:53:B9:7A:44:5E:EB:C9:F7:19:66:96:CA:8F:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6168: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6169: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6170: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153802 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6171: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6172: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6173: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153803   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6175: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6176: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6177: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6178: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153804   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6179: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6180: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6181: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153805   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6183: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6184: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6185: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6186: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153806   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6187: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6188: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6189: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6190: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153807   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6191: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6192: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #6193: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6194: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153808   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6195: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6196: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6197: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6198: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153809   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6199: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6200: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #6201: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6202: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153810   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6203: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6204: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #6205: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6206: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153811   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6207: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6208: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6209: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6210: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153812   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6211: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6212: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #6213: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6214: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153813   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6215: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6216: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #6217: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6218: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153814   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6219: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6220: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6221: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6222: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153815   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6223: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6224: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #6225: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6226: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153816   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6227: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6228: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #6229: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6230: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153817   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6231: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6232: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #6233: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6234: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153818   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6235: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6236: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #6237: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6238: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153819   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6239: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6240: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #6241: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6242: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153820   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6243: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6244: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #6245: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6246: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153821   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6247: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6248: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #6249: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6250: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153822   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6251: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6252: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #6253: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6254: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153823   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6255: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6256: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #6257: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6258: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153824   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6259: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6260: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #6261: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6262: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153825   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6263: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6264: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #6265: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6266: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153826   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6267: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6268: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #6269: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6270: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153827   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6271: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6272: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #6273: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6274: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153828   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6275: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6276: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #6277: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6278: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153829   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6279: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6280: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #6281: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6282: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153830   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6283: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6284: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #6285: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6286: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153831   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6287: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6288: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6289: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6290: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6291: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6292: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6293: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6294: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6295: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6296: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6297: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6298: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6299: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6300: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6301: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6302: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6303: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6304: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6305: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6306: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6307: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6308: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6309: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6310: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6311: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153802 (0x1dee424a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:38:36 2017
            Not After : Mon May 02 15:38:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:c2:18:0a:2f:31:f6:a0:af:e8:bb:df:77:f0:f6:b9:
                    7a:fe:6c:4d:b4:5c:ad:df:0e:4e:ff:93:95:7f:fe:52:
                    1b:e7:d4:29:70:42:cd:aa:80:45:d2:f7:75:72:d3:8b:
                    4c:82:a1:c1:31:ab:6d:ad:3e:b7:de:13:32:0c:2c:7a:
                    9b:f8:11:90:48:48:61:05:f8:b4:23:62:1d:44:09:ab:
                    8e:d9:87:47:0c:25:80:4e:2a:c7:7d:a4:7e:36:70:ad:
                    9b:32:de:6e:49:a9:39:b7:10:b8:e3:ac:74:a5:e8:47:
                    d0:28:51:4d:9e:46:8e:01:6e:61:a8:7d:7f:54:2c:94:
                    e8:b9:36:93:ce:7d:70:3c:96:b0:7d:c1:3d:cb:fc:c8:
                    02:67:13:39:4e:33:2b:a1:44:91:d4:17:24:05:5a:ab:
                    f5:b5:31:64:3c:26:d4:c5:5c:cd:bd:24:fa:ac:90:79:
                    01:ee:26:9e:c0:9a:d5:33:55:8c:9f:65:38:31:af:48:
                    b0:af:13:29:6c:15:22:6e:24:08:f6:cc:da:99:ac:d1:
                    6c:2c:58:24:c8:0b:6c:f1:06:de:58:8f:bb:b5:4f:a8:
                    ed:51:83:3d:48:71:a6:10:29:07:fa:b6:f8:63:96:c3:
                    6f:1e:12:29:b0:b2:fd:8f:d9:18:6c:a0:ae:11:30:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:d5:44:5e:08:22:8d:68:3e:c9:86:e3:fa:d0:e0:3f:
        06:1f:e3:8b:38:18:4c:3b:67:ee:7b:a9:3e:35:97:28:
        cb:80:87:94:3e:39:94:41:d4:2e:6e:28:12:07:c2:15:
        69:e4:fa:4f:ab:d2:97:b7:c9:cb:f4:2f:02:26:e3:92:
        c1:5d:0a:99:ad:8a:01:5c:a7:55:cd:53:ec:aa:f2:95:
        58:4d:4a:49:be:d4:bf:ba:37:71:0d:6c:ea:5e:5c:1e:
        f2:14:41:95:68:c1:12:7f:cf:22:90:d4:10:b7:bf:22:
        13:f3:99:93:eb:22:bd:d0:1b:09:a5:96:eb:90:cf:a5:
        da:d5:78:79:1b:a0:86:92:b6:34:c5:38:54:19:de:52:
        88:1f:86:ae:b4:43:e4:bb:60:23:9d:39:3d:d4:02:39:
        c7:fa:f7:4a:b6:1d:5e:60:97:f9:7c:e7:d1:e1:2b:06:
        b4:49:33:fc:b9:29:96:4e:9b:bc:42:ba:93:be:13:e5:
        7d:6e:74:9f:34:e8:b1:ab:fd:16:9f:2e:34:6e:77:7b:
        91:4d:1d:3d:93:8a:2e:dd:92:95:94:b6:fd:9b:95:70:
        02:e8:fe:49:fa:b5:5b:5e:63:5c:3e:0a:ac:05:7d:85:
        d8:af:57:1f:07:74:33:6f:d8:fc:b6:88:65:b6:f9:7b
    Fingerprint (SHA-256):
        06:48:F9:55:CF:21:38:AD:10:9B:D5:20:D2:DE:A6:E0:19:29:AE:60:7D:B1:CE:39:1B:9B:20:5F:6A:15:90:EC
    Fingerprint (SHA1):
        B4:24:63:85:3D:67:CE:AC:A9:3B:2E:12:0E:EC:38:07:17:B1:C4:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6312: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6313: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6314: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153832 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6315: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6316: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #6317: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6318: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153833   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6319: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6320: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #6321: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6322: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153834   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6323: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6324: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #6325: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6326: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153835   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6327: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6328: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #6329: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6330: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153836   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6331: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6332: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #6333: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6334: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153837   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6335: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6336: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #6337: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6338: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153838   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6339: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6340: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6341: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153832 (0x1dee4268)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:56 2017
            Not After : Mon May 02 15:38:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:9c:ec:74:3f:b5:6a:a4:65:5e:a3:65:ca:bf:cb:d0:
                    60:f6:f2:be:ad:36:43:37:d0:f0:c7:e3:0e:23:66:33:
                    80:e7:80:aa:53:6b:20:0b:c0:85:62:25:5a:45:b5:89:
                    9d:9d:19:95:32:5e:15:1f:db:01:12:a7:d0:6d:d1:3f:
                    b1:53:93:02:97:94:62:da:2f:08:5f:93:31:39:ba:14:
                    fd:dd:76:c3:40:0d:5b:74:55:89:82:70:00:92:f9:b4:
                    af:aa:5b:c3:64:23:09:2c:68:ea:73:5e:d1:c0:fa:0e:
                    11:f8:80:1f:ff:a9:09:c6:42:53:a6:44:6c:ad:0a:7f:
                    25:dd:7d:51:88:3a:2e:07:39:40:20:61:e2:59:35:44:
                    9c:36:a8:b9:28:8b:74:05:fe:a0:cd:ea:ce:4c:ca:54:
                    25:73:5c:76:51:83:19:c5:1c:a0:c3:d1:48:0b:09:02:
                    b2:29:7f:1f:b3:b9:1b:52:ef:d4:94:15:ed:b7:20:95:
                    6b:dd:b1:d9:83:da:60:6a:b7:bb:68:f9:be:f4:e6:d4:
                    3b:e6:e5:1a:e1:6c:9a:b5:6d:05:6c:a3:e0:53:9f:73:
                    d9:ff:8a:12:ee:8d:fd:e0:9c:04:1a:31:21:63:f2:fa:
                    f9:bd:a2:62:af:4f:e2:c5:44:89:ff:f7:b9:60:b0:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:d8:2a:b0:6b:06:28:f1:bf:60:e3:98:60:23:db:c8:
        08:70:5d:61:17:99:31:88:eb:ba:7d:6f:ba:e8:d9:ba:
        49:14:b7:f3:61:8a:cd:e4:e8:5e:93:d2:33:5c:0e:25:
        b6:0d:70:7e:8a:6a:07:78:d9:07:44:cd:41:0b:13:49:
        35:c7:79:26:37:61:0b:e3:e6:a3:7a:09:c3:de:0b:07:
        07:71:aa:86:8b:08:e3:bd:ac:dd:b2:4e:43:c3:7f:bc:
        44:df:da:b7:a3:27:32:f3:7b:dc:28:32:06:75:80:4e:
        28:d0:c4:ca:de:86:70:de:be:c2:6e:81:5a:6d:a7:27:
        45:67:58:00:f5:b9:42:40:90:a2:a8:d4:dd:9e:76:c3:
        8f:fc:b3:d3:95:32:dc:e4:68:37:89:04:6b:ee:a6:7d:
        a4:66:15:61:d5:4e:d6:27:61:ff:bd:d4:d7:81:22:9a:
        69:c1:b8:28:eb:6a:f2:2e:23:db:a4:16:4d:bd:5f:a8:
        08:c2:8c:7f:23:ae:2d:83:99:39:4e:af:b7:70:65:62:
        d2:75:29:80:f1:fe:10:d3:9a:f0:c1:bb:14:a8:74:6b:
        ea:03:88:11:c6:2f:fc:05:65:2b:db:40:a3:30:03:0a:
        d2:7b:4f:dd:b0:10:9e:38:c2:e2:e7:d8:ca:01:af:e7
    Fingerprint (SHA-256):
        61:CA:39:F3:17:44:9D:C0:7D:B2:22:96:50:38:F9:03:C8:E1:36:05:F3:FD:6F:13:2F:F9:D7:F6:5D:C6:7F:67
    Fingerprint (SHA1):
        F8:C8:54:3E:A9:C0:B2:98:D1:82:6D:EA:83:F6:86:96:36:7A:A1:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6342: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6343: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6344: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6345: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153832 (0x1dee4268)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:38:56 2017
            Not After : Mon May 02 15:38:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:9c:ec:74:3f:b5:6a:a4:65:5e:a3:65:ca:bf:cb:d0:
                    60:f6:f2:be:ad:36:43:37:d0:f0:c7:e3:0e:23:66:33:
                    80:e7:80:aa:53:6b:20:0b:c0:85:62:25:5a:45:b5:89:
                    9d:9d:19:95:32:5e:15:1f:db:01:12:a7:d0:6d:d1:3f:
                    b1:53:93:02:97:94:62:da:2f:08:5f:93:31:39:ba:14:
                    fd:dd:76:c3:40:0d:5b:74:55:89:82:70:00:92:f9:b4:
                    af:aa:5b:c3:64:23:09:2c:68:ea:73:5e:d1:c0:fa:0e:
                    11:f8:80:1f:ff:a9:09:c6:42:53:a6:44:6c:ad:0a:7f:
                    25:dd:7d:51:88:3a:2e:07:39:40:20:61:e2:59:35:44:
                    9c:36:a8:b9:28:8b:74:05:fe:a0:cd:ea:ce:4c:ca:54:
                    25:73:5c:76:51:83:19:c5:1c:a0:c3:d1:48:0b:09:02:
                    b2:29:7f:1f:b3:b9:1b:52:ef:d4:94:15:ed:b7:20:95:
                    6b:dd:b1:d9:83:da:60:6a:b7:bb:68:f9:be:f4:e6:d4:
                    3b:e6:e5:1a:e1:6c:9a:b5:6d:05:6c:a3:e0:53:9f:73:
                    d9:ff:8a:12:ee:8d:fd:e0:9c:04:1a:31:21:63:f2:fa:
                    f9:bd:a2:62:af:4f:e2:c5:44:89:ff:f7:b9:60:b0:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:d8:2a:b0:6b:06:28:f1:bf:60:e3:98:60:23:db:c8:
        08:70:5d:61:17:99:31:88:eb:ba:7d:6f:ba:e8:d9:ba:
        49:14:b7:f3:61:8a:cd:e4:e8:5e:93:d2:33:5c:0e:25:
        b6:0d:70:7e:8a:6a:07:78:d9:07:44:cd:41:0b:13:49:
        35:c7:79:26:37:61:0b:e3:e6:a3:7a:09:c3:de:0b:07:
        07:71:aa:86:8b:08:e3:bd:ac:dd:b2:4e:43:c3:7f:bc:
        44:df:da:b7:a3:27:32:f3:7b:dc:28:32:06:75:80:4e:
        28:d0:c4:ca:de:86:70:de:be:c2:6e:81:5a:6d:a7:27:
        45:67:58:00:f5:b9:42:40:90:a2:a8:d4:dd:9e:76:c3:
        8f:fc:b3:d3:95:32:dc:e4:68:37:89:04:6b:ee:a6:7d:
        a4:66:15:61:d5:4e:d6:27:61:ff:bd:d4:d7:81:22:9a:
        69:c1:b8:28:eb:6a:f2:2e:23:db:a4:16:4d:bd:5f:a8:
        08:c2:8c:7f:23:ae:2d:83:99:39:4e:af:b7:70:65:62:
        d2:75:29:80:f1:fe:10:d3:9a:f0:c1:bb:14:a8:74:6b:
        ea:03:88:11:c6:2f:fc:05:65:2b:db:40:a3:30:03:0a:
        d2:7b:4f:dd:b0:10:9e:38:c2:e2:e7:d8:ca:01:af:e7
    Fingerprint (SHA-256):
        61:CA:39:F3:17:44:9D:C0:7D:B2:22:96:50:38:F9:03:C8:E1:36:05:F3:FD:6F:13:2F:F9:D7:F6:5D:C6:7F:67
    Fingerprint (SHA1):
        F8:C8:54:3E:A9:C0:B2:98:D1:82:6D:EA:83:F6:86:96:36:7A:A1:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6346: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6347: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6348: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6349: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153839 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6350: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6351: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6352: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6353: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153840   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6354: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6355: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6356: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6357: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153841   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6358: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6359: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6360: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6361: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153842   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6362: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6363: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6364: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6365: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6366: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6367: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153839 (0x1dee426f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:00 2017
            Not After : Mon May 02 15:39:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:71:75:f0:41:74:9e:11:f9:14:cc:e8:a4:3f:3d:aa:
                    da:0f:94:8a:69:10:e7:8c:43:37:8c:ca:e2:be:40:39:
                    4c:01:6b:61:4d:6a:4b:b5:45:84:52:59:2e:4d:39:a5:
                    18:de:33:41:44:21:6a:6e:f2:54:ac:c6:e0:0b:54:49:
                    26:02:33:fd:12:5a:2f:13:44:32:f0:82:f0:84:0c:b9:
                    8b:d8:c5:29:2a:95:cd:29:5b:43:82:49:15:af:b1:a1:
                    d5:11:0e:4a:03:9a:bd:70:04:9a:f7:1e:df:db:f7:3b:
                    d1:f4:18:87:cd:51:7c:3a:3b:81:18:19:11:b2:0e:32:
                    a1:d7:89:c8:2e:78:68:d9:95:8d:bc:9b:a0:85:2e:9a:
                    76:3a:18:ae:93:d0:3e:db:d3:d2:b2:eb:0b:01:dd:b9:
                    94:19:d3:64:da:89:30:45:4c:bc:5a:ad:ab:4d:4a:be:
                    9b:8b:67:49:19:3d:b3:03:2d:c2:36:24:78:a4:61:59:
                    11:20:94:50:7f:dd:22:29:41:ee:c0:37:54:27:a4:54:
                    47:3c:ed:97:4e:53:03:40:f1:93:c6:e5:93:ed:77:ba:
                    39:32:c5:36:f5:bd:ec:c3:90:cf:bc:cb:2f:d1:58:3d:
                    ce:4e:49:c6:5f:cd:2f:a0:03:e8:18:f6:d0:5e:50:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:da:8d:6a:fc:19:9b:31:31:41:4f:a4:8a:86:d4:
        80:5b:d6:a5:6d:a0:17:6b:e9:cf:b2:b2:a1:09:a6:da:
        b5:e6:dc:6f:9a:07:58:0d:14:72:a7:13:ae:43:e3:af:
        b8:c0:60:a9:9e:5c:84:0e:53:1f:70:8f:4b:5e:16:f4:
        1f:46:a9:e8:19:26:aa:53:95:7f:41:15:c6:98:d0:8c:
        d3:f3:44:f1:a6:5b:a4:7f:55:ab:5b:72:b2:b9:1e:24:
        c2:fd:5f:cd:62:64:38:ab:47:59:67:64:9c:ab:99:f5:
        ad:7a:27:ac:3c:37:6b:c3:5f:cf:b5:da:68:b2:c4:87:
        c3:56:6e:fd:8a:ce:1f:1f:6b:c5:a3:d7:ac:fc:d1:14:
        63:3a:9f:cb:35:c1:e6:a2:41:e5:24:cf:a7:4a:c8:7b:
        c5:f7:da:90:25:96:a5:e7:06:a0:e1:38:77:56:c0:66:
        1a:3b:c3:ba:e7:47:a0:d2:db:f8:ae:fd:7a:17:fc:04:
        4d:92:59:e4:07:82:58:6d:38:c3:e5:8f:a5:53:3c:d0:
        2f:76:9d:4d:ef:7f:9b:cc:17:78:5f:88:46:b3:f4:91:
        2c:1e:52:88:ec:c2:69:76:54:b5:5c:4d:70:16:90:d5:
        7c:9c:89:d4:92:b7:11:5d:8b:3d:25:0e:c9:a9:d5:53
    Fingerprint (SHA-256):
        ED:07:59:AF:DC:70:75:77:E2:CF:34:D0:0C:DE:28:47:51:19:15:59:3F:E0:E8:17:30:10:BE:74:11:68:51:AB
    Fingerprint (SHA1):
        7B:CF:45:A1:AC:D7:82:6A:5B:87:39:0D:32:B4:DE:19:34:1E:DC:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6368: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6369: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6370: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153840 (0x1dee4270)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:00 2017
            Not After : Mon May 02 15:39:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:cc:a5:ac:17:70:eb:fc:7a:07:8e:fd:44:0f:b7:d5:
                    38:f5:b3:4d:60:ea:97:f8:4d:5e:69:cd:b9:61:c7:f4:
                    cb:68:4f:3a:e2:7f:5a:26:69:57:f6:3e:e9:d4:f6:0a:
                    bd:27:db:f9:5f:16:5e:28:61:09:e7:20:dc:6f:2e:d7:
                    a2:b3:09:f5:8f:81:9f:04:e0:6f:29:e5:13:69:95:84:
                    5c:09:5f:71:b7:dc:dc:89:5f:ec:ce:46:8b:5f:65:b0:
                    b3:da:fc:12:40:91:d5:65:14:e9:2e:12:ce:3f:71:a6:
                    bb:29:60:17:53:80:1a:88:da:05:5c:99:2f:d5:bb:f8:
                    57:55:68:db:de:bb:28:c8:43:db:36:4b:5c:47:9d:04:
                    77:73:c4:d0:f6:e0:ed:81:9a:fd:a4:d8:74:17:34:7d:
                    35:7d:a4:4c:d3:c2:25:8f:20:cb:e3:3d:4a:a2:20:ce:
                    d0:58:11:9f:a6:a9:57:5c:46:07:b8:64:56:d4:67:d2:
                    c9:3b:18:e4:2c:c3:4b:9f:08:d1:69:37:db:39:fb:e6:
                    80:12:a6:79:41:8a:9d:5b:7e:f4:a6:d2:14:ab:f7:98:
                    e2:3a:6c:8a:68:31:f1:0d:d3:f8:42:9e:fc:06:58:f3:
                    46:22:d8:47:2f:82:c9:e2:c6:3c:31:ae:e7:62:24:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:cc:ed:e5:aa:16:eb:a7:f9:c1:eb:e6:76:81:15:75:
        ae:5f:7e:7f:3f:9b:2e:61:08:5f:98:f6:f2:a8:fc:27:
        f3:20:34:3d:9e:be:6e:f8:24:9d:73:4e:50:de:3c:41:
        70:58:d8:c1:92:58:fb:3f:85:03:cf:e8:03:84:1a:72:
        bf:0e:c7:33:b2:ea:27:11:db:e9:6c:87:46:e0:3b:37:
        aa:36:f1:9f:d7:d6:f1:9b:50:c5:17:8d:d7:73:dc:e8:
        57:27:76:95:9a:9b:c0:b7:b5:f2:93:e9:08:31:41:46:
        fc:fa:85:72:a5:90:81:23:8d:c5:72:81:fe:d2:29:67:
        c2:d3:ed:12:9c:75:b1:49:a5:a7:5d:4a:3a:6f:97:2f:
        f6:36:75:91:c4:ff:99:ec:d6:99:49:ad:79:26:aa:3e:
        dd:5b:07:4c:07:68:0c:3e:81:66:8a:2b:ce:ca:98:ab:
        d7:ef:be:00:b0:01:eb:fd:7e:ab:d1:fd:a6:12:d5:ca:
        75:92:a4:e5:5d:80:ec:8c:c9:8d:24:75:35:e3:95:48:
        68:bb:ca:c6:77:ce:b1:07:26:5a:b7:2b:77:05:76:e7:
        bd:49:e9:60:b7:04:10:40:d0:a3:99:fb:df:bc:2e:5c:
        70:b4:17:1d:7d:ea:8c:ec:e2:ba:88:65:2f:49:e6:6d
    Fingerprint (SHA-256):
        FF:99:99:99:E9:CF:E7:AA:7B:10:96:A9:2F:EC:6B:A0:6B:EC:EC:45:A6:FE:23:03:A6:22:61:AD:F1:88:5A:B6
    Fingerprint (SHA1):
        63:EB:E0:BD:A2:7D:DE:C9:26:22:FD:28:D7:5F:C8:26:50:BC:D5:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6371: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6372: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153841 (0x1dee4271)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:01 2017
            Not After : Mon May 02 15:39:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:83:85:23:87:b2:b4:d7:ab:a5:b0:4f:4c:cc:f6:ea:
                    28:1c:d1:e2:2e:16:23:b0:d8:a3:94:e5:54:89:13:f8:
                    ae:43:ee:35:67:7e:7a:55:0d:65:4d:fd:83:04:0a:0a:
                    fe:8f:40:be:c5:bf:2f:a3:86:20:be:59:6c:b3:d3:16:
                    4f:ba:21:b1:b9:05:b2:b0:3d:6c:54:c5:7e:8f:a8:d0:
                    98:c6:9c:55:61:90:f2:56:ae:15:9e:02:7b:3e:05:4c:
                    0a:a1:48:bc:fd:24:e0:bd:c6:04:56:6f:d8:6a:92:1e:
                    ef:82:d0:7a:b7:33:64:29:b7:b2:2c:71:5f:50:8a:91:
                    c8:4b:9c:6a:b9:94:0e:d8:fc:9f:4e:1f:5b:6c:90:08:
                    6f:b4:17:1e:43:16:5c:46:b7:96:57:b2:fe:7a:1a:e3:
                    be:6f:06:b1:50:1e:7c:69:a3:22:fa:e4:12:0e:0a:84:
                    26:6d:ff:27:10:ac:54:69:14:cc:60:37:77:c0:85:c0:
                    90:95:84:2d:0d:78:40:5f:07:60:76:6a:d5:88:3c:99:
                    91:bb:6b:7c:a8:9c:49:a7:d7:68:36:a4:fc:5f:06:eb:
                    9e:c1:7e:d3:a1:12:dd:f9:ce:38:22:c5:0e:a8:56:78:
                    74:89:bb:c8:ba:6b:3b:82:75:f8:b2:40:ff:f2:60:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:c6:5e:3a:34:52:70:7e:80:6c:ca:2c:ba:61:9e:a3:
        61:0b:17:45:41:5d:5b:0c:33:79:07:f8:62:09:b3:a4:
        97:ff:28:58:d5:78:33:86:d2:5c:f3:15:e6:89:1a:55:
        1d:a2:3b:9f:28:d2:13:cf:c0:fc:1c:0f:4f:bc:86:14:
        5a:6e:05:ff:58:5a:c6:dd:43:4a:5b:50:ac:ed:2b:54:
        55:f3:c7:a2:1a:f2:c9:be:9c:8e:73:64:77:cb:dc:e6:
        e1:67:51:29:37:78:ff:e5:75:58:b1:e6:aa:1d:ac:49:
        43:01:ad:9a:6b:20:8d:ff:31:7a:ee:db:ea:4e:9c:45:
        df:5e:ca:ec:f9:c8:a7:ae:aa:8d:e1:eb:15:73:dd:33:
        b7:7e:06:2f:b3:c8:f4:fa:4b:49:ef:6b:a0:80:c6:06:
        a4:ba:46:5d:86:46:fe:76:a6:f0:5e:6a:33:4b:ae:23:
        6c:85:6a:d9:48:c7:c5:39:34:55:ea:91:37:b3:d7:fd:
        1c:98:29:ba:92:ff:e6:6e:1e:60:15:e6:de:3c:74:b1:
        95:c3:6d:b6:8b:a5:26:77:5b:0d:18:12:a9:4f:0c:09:
        1a:cb:5c:7b:9b:50:a3:c3:75:89:5a:db:7b:92:d3:e2:
        79:e9:f3:b5:10:30:39:2d:71:94:da:86:85:01:13:b7
    Fingerprint (SHA-256):
        A6:40:78:48:5D:67:CC:30:D6:4E:E2:E9:3A:FF:12:FD:5F:7A:C1:48:57:B4:10:B5:C3:10:89:34:F7:29:E8:18
    Fingerprint (SHA1):
        77:45:F7:1B:1C:00:64:E4:AA:F9:6D:D4:08:81:A7:A7:36:26:0B:33
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6373: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6374: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153843 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6375: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6376: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6377: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6378: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153844   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6379: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6380: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6381: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6382: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153845   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6383: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6384: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6385: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6386: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153846   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6387: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6388: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6389: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6390: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153847   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6391: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6392: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6393: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6394: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6395: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6396: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #6397: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153843 (0x1dee4273)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:02 2017
            Not After : Mon May 02 15:39:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1d:29:19:33:77:35:22:ac:13:f9:f1:f2:e2:ba:fc:
                    a1:5a:8d:21:5e:5a:4c:f2:70:71:d0:58:84:e3:ec:a8:
                    ac:28:2b:9d:7a:6d:b5:7e:f8:56:eb:d9:dd:f1:26:5c:
                    ba:dc:4d:32:bc:a9:14:d5:0f:04:54:79:62:32:af:9c:
                    0f:fd:46:21:f1:55:b5:c3:8c:af:92:5d:3c:6b:e8:84:
                    db:c1:d2:c4:28:bc:c7:5b:9c:c9:53:66:a1:5c:3d:42:
                    b8:43:7e:93:73:1b:17:f2:91:61:d8:87:d7:17:17:c9:
                    13:fd:0d:b5:d8:52:14:6b:63:a5:ee:c3:f9:39:89:ec:
                    4b:0a:7e:7c:94:f1:81:80:4a:9d:f6:9e:a7:e3:7c:14:
                    4f:f6:68:e7:47:e3:59:5f:7f:4c:2a:ec:77:22:0c:88:
                    c9:94:7c:74:6c:39:f1:7e:48:2e:da:9e:e1:3a:9d:14:
                    48:66:7b:8e:4d:2d:09:bc:ee:60:93:91:53:47:42:4e:
                    33:b4:fa:2a:ef:45:dd:eb:63:14:6a:07:ee:e4:18:23:
                    cc:15:35:90:52:bb:61:bc:60:8d:40:fc:cb:d4:69:06:
                    43:fb:40:42:1d:97:b1:c7:79:5f:38:68:50:5c:54:33:
                    6a:03:29:38:bf:04:ee:90:3a:cd:6b:48:a2:d0:82:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:06:a8:23:77:19:a8:7b:24:7d:3c:9c:13:8d:d0:7e:
        ad:09:55:78:bc:ec:67:ff:9a:3d:5c:ec:3e:d2:93:f4:
        e1:aa:34:54:fe:14:8e:33:05:12:91:6b:6f:f7:13:ec:
        f4:ad:af:38:d0:0b:61:8b:cc:02:06:e9:bb:53:bf:57:
        d1:6d:b8:a1:6b:96:d5:ca:39:91:98:b0:ed:b5:d1:c4:
        e0:61:3d:86:1d:b9:18:0b:4b:f6:68:15:09:7c:93:2d:
        a1:fc:0b:d6:51:bc:1c:3e:f1:43:db:8b:ed:7e:7e:bb:
        3d:57:b0:0f:02:59:5f:85:9f:40:8d:fa:00:97:a5:f5:
        5a:36:5b:d3:d4:2d:d1:0c:58:05:ac:d3:1a:c6:38:7e:
        66:7b:53:55:c0:aa:06:02:45:eb:93:da:62:05:41:f5:
        fa:09:87:0f:f1:cc:7e:a0:d7:52:81:92:4d:fa:b1:9d:
        d3:81:c6:ef:90:3c:46:7d:5d:f6:df:3f:f8:b8:95:bf:
        d9:67:36:93:52:82:9b:68:a1:ca:09:b4:7b:23:73:98:
        dd:c1:3a:7f:47:bc:16:57:0f:56:51:e6:66:74:4d:e3:
        a0:5f:5f:8a:f0:4b:13:db:aa:87:4f:25:43:bd:bb:69:
        df:32:b7:3e:94:be:e8:c4:3e:9e:ae:65:74:43:be:66
    Fingerprint (SHA-256):
        0A:08:B7:90:4D:81:59:15:D3:A2:92:1B:F9:32:BF:DA:C1:4F:51:16:87:3C:00:DB:16:B8:6A:1A:4C:88:0D:23
    Fingerprint (SHA1):
        6E:A1:19:E9:2B:AC:B1:BB:FB:63:4A:33:5B:1A:8A:10:C2:DD:F5:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6398: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6399: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153844 (0x1dee4274)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:03 2017
            Not After : Mon May 02 15:39:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:ce:fb:11:78:1b:fd:14:d3:24:04:d2:26:71:9e:ef:
                    de:d7:9b:55:f0:8b:59:ba:33:c9:b4:01:33:c2:6b:e8:
                    0e:fb:81:db:23:13:df:92:5a:b0:1a:e7:90:39:ac:71:
                    2d:f7:a0:cc:4c:55:2a:ef:31:b3:e3:74:ff:74:39:57:
                    aa:d6:61:3b:1f:56:22:84:83:75:00:c7:c9:b5:51:d2:
                    85:5f:bd:bf:c7:b9:3c:e5:df:2b:80:c9:72:42:af:25:
                    dd:85:ed:b4:dc:f7:fe:11:70:50:59:eb:79:5b:47:24:
                    26:3c:d2:1a:74:60:fd:43:b0:0a:d1:ad:87:ff:97:6e:
                    8d:be:8a:af:66:da:65:74:c1:5c:19:de:75:53:f1:09:
                    5e:d8:19:82:e7:79:87:c6:e8:29:80:1f:10:f1:3f:34:
                    fe:66:f0:02:c2:79:5d:26:8e:4d:e0:3d:57:1a:7a:2c:
                    37:33:3a:1c:7b:02:57:ef:de:97:88:f7:c5:57:78:2f:
                    ad:bd:6b:0d:db:0e:f1:23:c0:a6:f8:df:d6:78:48:33:
                    e8:6f:5f:ce:a3:c3:61:77:0b:f4:b0:fb:2a:88:8c:95:
                    72:59:99:96:35:fd:fa:65:5c:a8:6f:31:d3:35:03:f5:
                    fb:cc:c3:cd:8e:9e:5d:28:fd:8e:e5:f0:04:a7:30:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:89:67:03:09:fb:17:ae:f2:e9:41:3c:24:4a:5e:5d:
        c2:7f:98:99:59:25:da:d6:b2:e7:e9:52:fc:d9:05:93:
        ca:c1:11:d6:2e:fe:17:b8:0b:ba:90:62:f9:82:72:6f:
        73:e1:b6:b6:80:af:58:f1:14:be:30:33:5c:5b:f5:a9:
        e1:74:53:be:42:55:71:ee:07:92:aa:98:26:0e:55:62:
        1d:56:2f:0d:73:a9:f0:f1:7b:0b:f4:b8:03:00:87:40:
        04:de:31:b6:f0:05:8b:00:31:e3:be:63:46:cf:3c:58:
        3b:16:8c:e4:07:25:09:6a:d7:e1:1b:a0:1d:10:6a:b8:
        6b:a0:ab:88:c7:33:3c:b4:2c:39:06:c0:10:85:aa:a2:
        ef:58:67:60:b7:ca:5a:9f:2a:9b:01:7e:07:c8:83:4f:
        ab:ba:1e:49:9c:84:81:1f:2b:08:f8:a5:56:fc:c3:75:
        26:94:a7:96:e9:3b:f1:bb:b6:cc:88:2f:86:16:a2:93:
        c2:7a:4e:5b:40:c5:fd:9c:bf:f9:1a:a6:84:69:93:a9:
        5b:da:74:3b:19:65:7c:57:ea:e2:9d:a2:e2:1f:40:7b:
        1e:56:48:cb:bb:bc:25:4f:d5:b7:9d:45:91:2c:21:4d:
        0e:c7:dd:30:64:25:82:f8:22:e5:e3:eb:d7:76:3e:2b
    Fingerprint (SHA-256):
        E9:1E:6C:91:15:A6:2C:84:9B:8C:5F:9A:13:B1:96:3E:61:23:EE:AB:3A:66:91:AE:23:FA:6E:EE:18:6E:21:DB
    Fingerprint (SHA1):
        95:31:2D:5F:35:0B:1B:DD:DC:BE:1C:37:7B:B5:39:95:68:5F:7A:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6400: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6401: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6402: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153845 (0x1dee4275)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:03 2017
            Not After : Mon May 02 15:39:03 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:ba:60:7b:75:c0:bd:5b:ba:6b:69:1e:bc:51:ba:3b:
                    e6:da:6d:c9:a8:da:c9:ec:5e:f3:d2:51:4c:c5:d4:ff:
                    6a:16:47:cb:11:6e:79:53:b3:37:79:04:7a:1a:00:66:
                    01:d7:be:b7:7c:35:d8:a0:5d:8d:4d:b9:33:4a:c5:a7:
                    53:0a:95:41:d8:d2:6b:cf:0e:26:cd:78:4a:20:53:77:
                    4a:51:fd:7f:59:7a:58:4b:af:df:bb:9e:65:91:6e:c2:
                    9e:70:91:58:28:84:8e:3d:43:2f:e2:1e:a3:a8:28:1b:
                    1d:9a:62:70:57:59:8f:e9:00:e2:72:90:f3:81:85:cb:
                    5e:09:0a:3f:e9:59:d2:86:36:8d:37:3f:cf:64:76:19:
                    e9:1b:a5:ad:40:c9:e8:6f:e0:97:9c:ea:a0:2d:77:3e:
                    1f:67:61:bf:0b:f4:16:b5:9e:11:8e:26:bc:9a:99:4f:
                    f5:cf:21:ec:83:79:93:1d:11:24:49:40:02:7f:ab:ab:
                    e9:8a:8b:d8:33:65:9e:a8:a3:56:58:63:44:4b:7e:fc:
                    24:95:8e:56:77:ce:53:b6:c1:e2:75:6e:e3:5b:60:f3:
                    20:8a:6d:e8:f0:d9:36:37:83:99:7c:ec:0c:d8:79:9c:
                    35:7f:f5:2a:68:4f:4a:af:bc:60:00:60:b8:d9:e7:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:6e:44:0c:87:85:3d:a6:dd:37:62:ba:da:81:82:54:
        d6:ab:15:d3:67:3d:58:3b:00:37:c3:a0:e8:40:1b:de:
        b0:3d:10:a8:01:f1:ee:3f:80:8a:de:d9:fd:7c:ca:ef:
        43:17:63:3a:48:e3:ac:c5:71:c9:91:ac:af:0f:8d:11:
        39:24:af:90:bb:a7:95:bd:88:3b:b0:39:52:63:d7:90:
        0f:84:ee:6c:06:16:55:c5:bc:cd:61:98:c5:f2:4e:35:
        d2:85:20:93:d0:3a:6a:75:b5:0e:7e:0e:1d:6f:df:a2:
        93:66:8e:67:e2:e9:85:75:3c:25:b5:3b:74:a7:28:12:
        7e:ca:16:b2:cd:1c:61:4a:5c:98:65:67:96:0b:2f:89:
        7e:fa:0b:0f:84:a5:d8:c4:f5:08:2c:c6:90:5e:37:b2:
        1e:55:93:8c:0a:69:16:35:c1:fe:c9:3d:84:b2:ae:17:
        3b:4b:59:69:19:6a:c9:b7:6a:dc:ce:ea:a6:0f:18:eb:
        54:6c:10:f3:6b:f0:54:63:92:07:4b:14:bf:d9:81:0d:
        68:5a:ba:42:be:9d:f5:a4:d9:f8:09:e0:ec:b6:1b:5d:
        6c:7d:6e:5b:a3:15:8e:51:2c:95:c0:b1:8c:b2:71:49:
        cd:b4:e6:2a:b7:d5:e8:e6:97:ac:b0:ad:05:89:fa:53
    Fingerprint (SHA-256):
        53:04:B5:6A:30:72:80:19:21:23:B7:94:E7:43:13:20:F3:D3:2D:97:4B:34:A7:60:77:2E:18:CC:5B:F0:23:68
    Fingerprint (SHA1):
        0F:D7:63:53:BA:F6:DE:81:C7:C0:3C:1A:AC:34:92:C3:00:D2:84:7C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6403: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6404: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153848 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6405: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6406: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6407: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6408: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153849   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6409: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6410: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6411: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6412: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153850   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502153757.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6413: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6414: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6415: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6416: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153851   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6417: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6418: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #6419: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153848 (0x1dee4278)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:05 2017
            Not After : Mon May 02 15:39:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:df:a1:6c:8f:54:9a:58:68:66:f6:37:b0:d4:27:e6:
                    5d:b7:15:33:6c:11:48:d5:0d:1d:44:9c:e8:be:e6:60:
                    90:e3:d7:df:fa:df:41:62:73:ac:f2:1e:9d:cb:df:52:
                    4c:19:86:58:84:a0:6b:2a:27:a5:df:17:04:2f:7f:f5:
                    ad:e1:4a:69:95:51:02:0d:b4:85:7f:72:9e:98:05:c6:
                    16:6e:cb:9b:66:c6:f9:b3:39:c5:0b:41:1e:f3:b0:b9:
                    ec:61:50:ab:b2:22:13:45:23:62:e1:db:78:5b:bb:fa:
                    c5:d3:c2:7d:1d:c8:c3:75:1f:ac:71:3c:70:d1:3a:ff:
                    38:79:62:8f:c8:4c:79:8f:a5:07:28:aa:20:4f:aa:1c:
                    ef:7f:35:dc:54:bf:8e:ad:6a:3a:4c:ca:4d:1d:a9:06:
                    95:f0:49:46:7a:03:30:1e:d5:ab:33:ae:36:09:cd:17:
                    d6:b5:9d:6c:c8:cf:fb:a9:c7:06:c8:96:01:2b:e4:34:
                    7a:d3:38:cb:b5:bb:86:e0:ee:91:81:f3:2b:b3:4f:0a:
                    7e:d0:13:87:1f:79:aa:b7:95:ff:3f:cc:82:e2:91:f8:
                    00:0c:59:a4:6d:d2:78:52:5b:d7:7c:9f:18:bf:05:f4:
                    3b:87:49:9c:54:09:3b:e7:cc:4a:ef:f3:02:cd:ba:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:2e:dd:a9:df:53:a9:69:69:82:70:fd:29:74:f9:78:
        2e:59:99:2a:80:77:71:0d:70:44:64:31:62:c7:f0:ac:
        b5:92:a7:c1:42:7f:24:be:4e:cf:4b:32:a2:24:64:1f:
        29:fe:9a:c4:6e:95:4e:64:4c:3f:46:c4:77:03:b2:16:
        03:62:d2:d9:9f:4b:ff:ea:d5:58:7c:a6:91:58:34:1d:
        26:97:24:ae:1b:53:ee:4c:3b:e6:c2:3b:e0:e3:cc:12:
        80:0a:e8:4c:22:0b:d2:db:0b:a1:fb:30:0c:b7:21:71:
        3f:45:1f:70:e9:8d:73:8b:55:aa:86:4a:20:cf:75:0e:
        75:e9:07:e4:cd:86:dd:f0:c3:51:40:85:ec:b4:e9:a8:
        06:a1:b3:9c:9f:4e:74:1b:68:45:7c:7f:0f:07:95:d2:
        82:4e:1f:a7:6c:8f:fc:79:98:2b:c6:96:13:84:e3:4e:
        92:60:b6:82:5c:e5:26:9c:54:63:2d:15:76:94:a8:ef:
        02:ed:ae:02:ff:07:47:3b:e6:74:d3:9f:3c:7c:94:65:
        da:6f:63:b6:5c:dc:b4:64:50:64:e7:86:4a:59:3e:65:
        6b:fa:65:7e:a3:a7:23:2c:0f:6e:ef:47:5f:a6:82:fa:
        8c:5f:ad:9e:6e:9d:77:9b:c7:70:7f:b0:ff:04:18:d1
    Fingerprint (SHA-256):
        E0:4B:53:C7:A4:49:58:9E:39:EA:9B:EF:51:A9:09:E1:0C:DC:90:55:AB:5F:17:EA:FE:28:CD:58:76:2A:3F:A5
    Fingerprint (SHA1):
        0A:72:2F:C3:34:F2:CB:DB:DC:CC:E8:EF:73:31:D4:E1:83:66:A5:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6420: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6421: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153852 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6422: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6423: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6424: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153853 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6425: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6426: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6427: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6428: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153854 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6429: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6430: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153855 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6431: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6432: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6433: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6434: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6435: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153856   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153758.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6436: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6437: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6438: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6439: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153857   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6440: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6441: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6442: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6443: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153853 (0x1dee427d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:07 2017
            Not After : Mon May 02 15:39:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:59:ea:3d:bf:7c:f1:1b:76:9b:1d:62:d8:cc:90:e4:
                    61:ae:9c:dc:55:82:f2:66:ea:8e:c6:65:ff:57:44:d0:
                    1d:d3:8d:6a:a0:24:63:c0:13:ce:f8:ff:19:45:47:e2:
                    b4:17:56:47:99:b4:98:57:4e:8d:77:27:1b:ff:3a:b0:
                    47:d2:aa:15:96:e4:23:75:17:90:91:67:13:a8:ec:24:
                    cd:86:4c:db:7b:a2:53:e5:73:e8:e9:27:77:93:a2:49:
                    d2:65:6f:84:0a:70:82:ce:dd:4a:b3:96:66:01:c5:a9:
                    6c:82:67:1f:34:ab:33:56:52:69:3a:d3:a1:25:dd:f8:
                    39:d9:8f:48:8d:39:6b:14:20:d0:e2:be:6a:82:9c:b7:
                    df:90:0b:6c:7f:20:c3:5d:07:66:8d:ca:5f:5b:74:a1:
                    b9:11:8e:28:53:0b:c7:ca:17:bb:4c:68:3f:05:96:63:
                    50:8c:75:71:e0:3a:0e:e6:ab:d1:9c:0d:c4:29:60:45:
                    c6:4c:81:89:6c:b6:98:1e:29:df:b9:11:67:19:05:df:
                    d9:a8:e0:f6:02:b1:78:5e:c4:7b:83:6a:f8:00:d9:f8:
                    f8:ab:2a:3b:99:42:f7:4c:00:cf:3e:96:8c:ad:6f:bc:
                    dc:51:b7:ce:57:eb:69:e8:81:1a:71:7e:7a:b8:a4:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:9e:4b:30:8b:83:81:a7:4d:38:37:8e:ad:73:55:91:
        38:bb:a8:d0:9b:8a:95:42:f5:dc:95:52:3b:19:e4:f5:
        59:dd:86:de:89:33:9a:25:c9:dc:e6:08:e8:78:77:d9:
        4e:aa:79:0a:16:a4:32:5e:22:b6:24:5b:42:61:e6:43:
        40:da:68:a1:80:4e:11:f0:ee:9b:4d:38:05:ad:6d:b8:
        22:6c:e6:40:8e:06:a3:ea:14:ef:a5:40:87:09:0c:12:
        af:e4:f2:4b:a7:88:39:b1:43:5d:62:11:59:55:33:e0:
        9d:c8:82:82:b3:d2:d1:2e:3b:10:51:df:8c:bb:2d:e1:
        c2:5e:71:8a:fd:d9:42:14:45:a1:04:d9:0e:e2:3b:32:
        96:32:28:be:ee:75:ee:e0:88:58:19:11:28:79:4a:e1:
        2c:37:a1:2a:ed:5d:ab:bd:e5:02:2e:7f:41:5c:b1:21:
        68:33:cd:40:89:1c:26:ff:8a:01:e1:fb:de:8d:f1:78:
        63:b9:ba:08:80:08:d2:72:66:67:9f:88:10:d6:31:58:
        19:85:ed:76:4a:c4:ea:39:51:98:5a:88:16:7f:21:ac:
        56:c9:25:99:48:ca:ad:eb:6c:92:05:56:63:52:05:0b:
        92:fd:6c:80:56:05:22:b4:15:df:db:d0:73:50:4d:3e
    Fingerprint (SHA-256):
        57:B1:E8:05:E6:7B:26:36:5B:6C:A0:C2:E7:5F:BD:21:EE:C9:CB:AB:9B:0E:44:53:75:0B:8D:13:26:F8:F3:E1
    Fingerprint (SHA1):
        50:70:B5:20:D2:3A:8B:8E:16:B7:E5:AA:97:60:D2:07:D1:2A:34:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6444: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153853 (0x1dee427d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:07 2017
            Not After : Mon May 02 15:39:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:59:ea:3d:bf:7c:f1:1b:76:9b:1d:62:d8:cc:90:e4:
                    61:ae:9c:dc:55:82:f2:66:ea:8e:c6:65:ff:57:44:d0:
                    1d:d3:8d:6a:a0:24:63:c0:13:ce:f8:ff:19:45:47:e2:
                    b4:17:56:47:99:b4:98:57:4e:8d:77:27:1b:ff:3a:b0:
                    47:d2:aa:15:96:e4:23:75:17:90:91:67:13:a8:ec:24:
                    cd:86:4c:db:7b:a2:53:e5:73:e8:e9:27:77:93:a2:49:
                    d2:65:6f:84:0a:70:82:ce:dd:4a:b3:96:66:01:c5:a9:
                    6c:82:67:1f:34:ab:33:56:52:69:3a:d3:a1:25:dd:f8:
                    39:d9:8f:48:8d:39:6b:14:20:d0:e2:be:6a:82:9c:b7:
                    df:90:0b:6c:7f:20:c3:5d:07:66:8d:ca:5f:5b:74:a1:
                    b9:11:8e:28:53:0b:c7:ca:17:bb:4c:68:3f:05:96:63:
                    50:8c:75:71:e0:3a:0e:e6:ab:d1:9c:0d:c4:29:60:45:
                    c6:4c:81:89:6c:b6:98:1e:29:df:b9:11:67:19:05:df:
                    d9:a8:e0:f6:02:b1:78:5e:c4:7b:83:6a:f8:00:d9:f8:
                    f8:ab:2a:3b:99:42:f7:4c:00:cf:3e:96:8c:ad:6f:bc:
                    dc:51:b7:ce:57:eb:69:e8:81:1a:71:7e:7a:b8:a4:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:9e:4b:30:8b:83:81:a7:4d:38:37:8e:ad:73:55:91:
        38:bb:a8:d0:9b:8a:95:42:f5:dc:95:52:3b:19:e4:f5:
        59:dd:86:de:89:33:9a:25:c9:dc:e6:08:e8:78:77:d9:
        4e:aa:79:0a:16:a4:32:5e:22:b6:24:5b:42:61:e6:43:
        40:da:68:a1:80:4e:11:f0:ee:9b:4d:38:05:ad:6d:b8:
        22:6c:e6:40:8e:06:a3:ea:14:ef:a5:40:87:09:0c:12:
        af:e4:f2:4b:a7:88:39:b1:43:5d:62:11:59:55:33:e0:
        9d:c8:82:82:b3:d2:d1:2e:3b:10:51:df:8c:bb:2d:e1:
        c2:5e:71:8a:fd:d9:42:14:45:a1:04:d9:0e:e2:3b:32:
        96:32:28:be:ee:75:ee:e0:88:58:19:11:28:79:4a:e1:
        2c:37:a1:2a:ed:5d:ab:bd:e5:02:2e:7f:41:5c:b1:21:
        68:33:cd:40:89:1c:26:ff:8a:01:e1:fb:de:8d:f1:78:
        63:b9:ba:08:80:08:d2:72:66:67:9f:88:10:d6:31:58:
        19:85:ed:76:4a:c4:ea:39:51:98:5a:88:16:7f:21:ac:
        56:c9:25:99:48:ca:ad:eb:6c:92:05:56:63:52:05:0b:
        92:fd:6c:80:56:05:22:b4:15:df:db:d0:73:50:4d:3e
    Fingerprint (SHA-256):
        57:B1:E8:05:E6:7B:26:36:5B:6C:A0:C2:E7:5F:BD:21:EE:C9:CB:AB:9B:0E:44:53:75:0B:8D:13:26:F8:F3:E1
    Fingerprint (SHA1):
        50:70:B5:20:D2:3A:8B:8E:16:B7:E5:AA:97:60:D2:07:D1:2A:34:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6445: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6446: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153858 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6447: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6448: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6449: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153859 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6450: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6451: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6452: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6453: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153860 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6454: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6455: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153861 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6456: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6457: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6458: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6459: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6460: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153862   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153759.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6461: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6462: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6463: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6464: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153863   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6465: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6466: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6467: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6468: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153864   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502153760.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6469: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6470: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6471: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6472: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153865   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6473: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6474: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6475: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6476: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153859 (0x1dee4283)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:10 2017
            Not After : Mon May 02 15:39:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bf:eb:95:7e:a0:c4:27:ca:fc:c5:1d:c5:41:c9:37:
                    fd:9b:a1:30:25:9f:5a:14:e8:3c:bd:e6:d5:90:37:e2:
                    7d:92:3a:31:e5:79:47:b6:fd:44:8d:fd:c0:01:15:c8:
                    0e:05:96:17:01:16:f7:4e:5a:9a:c5:45:08:2d:3c:22:
                    5d:a9:a2:99:4b:be:06:1e:63:9d:8f:77:7c:0b:c9:77:
                    3f:a4:3a:0e:4d:a3:3c:1d:04:2a:65:6b:15:a3:f0:57:
                    08:40:4e:31:2b:cc:c8:87:46:14:7a:fa:12:d6:af:5f:
                    b1:5b:d6:c8:b2:cb:29:91:54:fa:7b:9b:32:09:d9:af:
                    05:e4:d3:c9:d1:69:8a:6f:d8:ec:f4:70:6e:79:4e:65:
                    94:70:66:b2:9f:2e:77:d2:27:4b:8a:35:02:ef:21:2d:
                    21:a9:88:de:eb:0a:29:e7:32:8f:3d:cf:7d:46:0c:d2:
                    6e:63:0d:ec:7b:7a:fa:ca:79:5d:c6:a2:c7:1e:ab:c3:
                    40:50:2f:1f:b2:78:c9:18:8f:41:15:21:4e:8e:15:d7:
                    82:ce:39:33:2f:fb:c3:5d:d4:66:95:7d:04:f1:bc:7f:
                    60:14:61:cb:d4:af:63:65:5c:3c:f9:6b:1d:8b:1d:47:
                    38:2c:1d:39:66:90:66:cb:cc:be:4b:c5:89:57:4e:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:97:f3:59:bb:c1:4c:6d:5c:0a:38:8a:f0:a4:7c:32:
        c0:87:55:25:58:57:f4:39:c0:cc:a5:3d:34:09:af:64:
        6e:db:96:d8:40:52:17:f9:56:7c:8d:e3:59:8e:79:67:
        77:8a:2b:07:10:7d:d8:d4:42:34:27:3f:7d:2a:44:9c:
        0e:6f:aa:f3:2c:ee:ec:36:1e:66:19:37:5e:cc:c9:37:
        3f:1f:fb:82:1a:71:05:f9:c5:a6:93:95:1c:1c:00:52:
        ff:f4:41:c1:0e:47:30:18:06:1c:05:93:64:ff:d3:cf:
        16:9f:1a:7a:86:ad:6f:84:6f:f4:09:9f:a8:a8:40:7f:
        50:96:d0:d1:02:10:71:df:e5:44:b1:c0:e3:fe:94:df:
        45:ad:ed:38:cd:0d:a7:e4:b8:90:48:4b:74:fd:8e:42:
        bb:48:7a:df:a7:8f:96:c6:34:7f:47:d0:c6:0b:b1:68:
        f4:30:e8:af:1b:db:83:ba:02:52:26:38:9c:31:8b:3e:
        e5:45:00:ed:e0:f5:bb:2a:24:15:44:0e:ac:a0:e9:a2:
        40:41:1e:d9:c8:22:28:bc:87:2e:af:52:45:3f:3c:5c:
        65:f0:3d:60:23:af:e9:d5:67:18:1d:d1:c1:73:3c:dd:
        89:2e:39:4b:a7:80:0b:e4:8a:fa:8f:e0:54:f1:e6:56
    Fingerprint (SHA-256):
        50:73:3A:22:1D:EB:04:67:32:A3:3F:5B:08:D2:DC:6F:4F:01:37:A0:8E:01:AE:6F:7E:F3:72:C2:B2:2C:5C:C0
    Fingerprint (SHA1):
        99:EB:C7:F9:8A:E3:AB:DF:89:65:39:EE:D6:3C:30:BC:75:32:1E:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6477: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153859 (0x1dee4283)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:10 2017
            Not After : Mon May 02 15:39:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bf:eb:95:7e:a0:c4:27:ca:fc:c5:1d:c5:41:c9:37:
                    fd:9b:a1:30:25:9f:5a:14:e8:3c:bd:e6:d5:90:37:e2:
                    7d:92:3a:31:e5:79:47:b6:fd:44:8d:fd:c0:01:15:c8:
                    0e:05:96:17:01:16:f7:4e:5a:9a:c5:45:08:2d:3c:22:
                    5d:a9:a2:99:4b:be:06:1e:63:9d:8f:77:7c:0b:c9:77:
                    3f:a4:3a:0e:4d:a3:3c:1d:04:2a:65:6b:15:a3:f0:57:
                    08:40:4e:31:2b:cc:c8:87:46:14:7a:fa:12:d6:af:5f:
                    b1:5b:d6:c8:b2:cb:29:91:54:fa:7b:9b:32:09:d9:af:
                    05:e4:d3:c9:d1:69:8a:6f:d8:ec:f4:70:6e:79:4e:65:
                    94:70:66:b2:9f:2e:77:d2:27:4b:8a:35:02:ef:21:2d:
                    21:a9:88:de:eb:0a:29:e7:32:8f:3d:cf:7d:46:0c:d2:
                    6e:63:0d:ec:7b:7a:fa:ca:79:5d:c6:a2:c7:1e:ab:c3:
                    40:50:2f:1f:b2:78:c9:18:8f:41:15:21:4e:8e:15:d7:
                    82:ce:39:33:2f:fb:c3:5d:d4:66:95:7d:04:f1:bc:7f:
                    60:14:61:cb:d4:af:63:65:5c:3c:f9:6b:1d:8b:1d:47:
                    38:2c:1d:39:66:90:66:cb:cc:be:4b:c5:89:57:4e:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:97:f3:59:bb:c1:4c:6d:5c:0a:38:8a:f0:a4:7c:32:
        c0:87:55:25:58:57:f4:39:c0:cc:a5:3d:34:09:af:64:
        6e:db:96:d8:40:52:17:f9:56:7c:8d:e3:59:8e:79:67:
        77:8a:2b:07:10:7d:d8:d4:42:34:27:3f:7d:2a:44:9c:
        0e:6f:aa:f3:2c:ee:ec:36:1e:66:19:37:5e:cc:c9:37:
        3f:1f:fb:82:1a:71:05:f9:c5:a6:93:95:1c:1c:00:52:
        ff:f4:41:c1:0e:47:30:18:06:1c:05:93:64:ff:d3:cf:
        16:9f:1a:7a:86:ad:6f:84:6f:f4:09:9f:a8:a8:40:7f:
        50:96:d0:d1:02:10:71:df:e5:44:b1:c0:e3:fe:94:df:
        45:ad:ed:38:cd:0d:a7:e4:b8:90:48:4b:74:fd:8e:42:
        bb:48:7a:df:a7:8f:96:c6:34:7f:47:d0:c6:0b:b1:68:
        f4:30:e8:af:1b:db:83:ba:02:52:26:38:9c:31:8b:3e:
        e5:45:00:ed:e0:f5:bb:2a:24:15:44:0e:ac:a0:e9:a2:
        40:41:1e:d9:c8:22:28:bc:87:2e:af:52:45:3f:3c:5c:
        65:f0:3d:60:23:af:e9:d5:67:18:1d:d1:c1:73:3c:dd:
        89:2e:39:4b:a7:80:0b:e4:8a:fa:8f:e0:54:f1:e6:56
    Fingerprint (SHA-256):
        50:73:3A:22:1D:EB:04:67:32:A3:3F:5B:08:D2:DC:6F:4F:01:37:A0:8E:01:AE:6F:7E:F3:72:C2:B2:2C:5C:C0
    Fingerprint (SHA1):
        99:EB:C7:F9:8A:E3:AB:DF:89:65:39:EE:D6:3C:30:BC:75:32:1E:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6478: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #6479: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153858 (0x1dee4282)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:10 2017
            Not After : Mon May 02 15:39:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:39:d7:83:4c:49:d1:40:2e:99:0e:be:6c:67:f7:35:
                    4a:12:a5:f8:9a:79:dd:3d:d4:1d:c2:99:32:16:2d:8f:
                    3a:2f:cf:e9:1a:22:96:3e:ea:90:d9:72:08:a9:e6:de:
                    07:1b:14:d7:c5:ba:c4:3d:3c:8a:89:eb:c4:f6:9c:26:
                    1d:52:ab:08:7d:b0:26:35:d1:c3:29:4a:07:0d:31:23:
                    b8:8c:0a:1a:a4:53:b7:cd:a2:67:3f:5d:d2:37:97:26:
                    96:5e:9b:44:d8:f0:e5:b4:6f:d1:6f:25:dc:5d:30:4c:
                    cb:7f:9f:0a:f8:ce:48:7f:2f:cf:e3:31:de:f5:00:37:
                    9a:c8:f0:09:ed:16:f1:f8:49:27:89:89:31:7c:92:7d:
                    6a:e3:08:15:42:43:0e:4f:8f:5e:ab:d2:ac:11:82:f3:
                    1a:27:3f:c2:b0:14:ab:dc:13:81:53:1a:9f:6f:9a:77:
                    ea:d6:70:4d:2a:53:8f:58:20:54:80:43:a4:cb:de:ae:
                    c3:71:87:58:db:74:c7:c5:3b:97:55:df:62:a1:93:fb:
                    8e:4b:64:46:11:11:6b:72:53:d5:9c:db:89:11:1a:69:
                    c2:61:7b:8e:3e:aa:be:41:90:8a:15:be:49:89:90:02:
                    f5:58:af:ca:42:46:24:b7:92:87:e7:95:36:f2:59:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:18:68:8a:97:53:aa:a2:70:b3:41:52:21:85:95:b7:
        71:a6:fd:ea:a7:da:53:bc:6b:8f:6c:e2:eb:2f:19:ac:
        0a:d5:2f:8b:63:da:ca:a7:0e:23:aa:2a:bb:b3:99:47:
        9e:c1:b6:1d:7f:9e:75:19:63:76:a8:b6:b9:62:b7:22:
        90:1f:11:7f:be:5e:a7:36:ac:6c:d4:de:db:42:b6:75:
        c0:aa:cd:b4:b1:db:f7:f5:b0:12:96:85:cc:4b:ef:20:
        75:af:cf:de:de:0c:21:5c:13:84:36:2b:f3:1d:d9:d1:
        fc:19:3f:ff:f9:86:ff:7a:40:dd:5d:93:77:ce:69:b3:
        30:60:5b:4a:30:ac:a7:7b:36:7f:ea:da:17:49:87:ad:
        98:3e:7d:96:5c:8f:0b:31:9f:4f:f2:21:9f:81:d5:d8:
        db:14:ff:80:2a:2b:87:91:9b:a6:13:de:9b:b3:1e:ff:
        f9:fd:27:25:a2:9b:c0:8d:1f:47:e0:93:72:0a:04:67:
        6a:36:bc:17:fd:cd:10:19:64:ea:a5:2e:2d:7f:67:1c:
        25:1d:95:d0:84:2f:e6:0e:5b:07:c6:8c:7a:fe:c5:3e:
        13:f0:d3:4d:0e:d5:c0:7f:6d:ef:20:9b:e1:05:0f:94:
        1a:e7:b2:0b:86:b2:75:6e:4e:42:6c:91:44:f1:a0:34
    Fingerprint (SHA-256):
        14:B2:0F:CB:A7:17:A9:8F:73:75:2C:68:9D:46:DD:35:08:40:6A:53:87:1E:63:C3:A6:4B:6D:2C:FC:8E:E2:70
    Fingerprint (SHA1):
        18:78:01:7D:DF:1B:97:20:2F:46:63:B8:67:7D:49:B2:65:BD:31:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6480: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153859 (0x1dee4283)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:10 2017
            Not After : Mon May 02 15:39:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bf:eb:95:7e:a0:c4:27:ca:fc:c5:1d:c5:41:c9:37:
                    fd:9b:a1:30:25:9f:5a:14:e8:3c:bd:e6:d5:90:37:e2:
                    7d:92:3a:31:e5:79:47:b6:fd:44:8d:fd:c0:01:15:c8:
                    0e:05:96:17:01:16:f7:4e:5a:9a:c5:45:08:2d:3c:22:
                    5d:a9:a2:99:4b:be:06:1e:63:9d:8f:77:7c:0b:c9:77:
                    3f:a4:3a:0e:4d:a3:3c:1d:04:2a:65:6b:15:a3:f0:57:
                    08:40:4e:31:2b:cc:c8:87:46:14:7a:fa:12:d6:af:5f:
                    b1:5b:d6:c8:b2:cb:29:91:54:fa:7b:9b:32:09:d9:af:
                    05:e4:d3:c9:d1:69:8a:6f:d8:ec:f4:70:6e:79:4e:65:
                    94:70:66:b2:9f:2e:77:d2:27:4b:8a:35:02:ef:21:2d:
                    21:a9:88:de:eb:0a:29:e7:32:8f:3d:cf:7d:46:0c:d2:
                    6e:63:0d:ec:7b:7a:fa:ca:79:5d:c6:a2:c7:1e:ab:c3:
                    40:50:2f:1f:b2:78:c9:18:8f:41:15:21:4e:8e:15:d7:
                    82:ce:39:33:2f:fb:c3:5d:d4:66:95:7d:04:f1:bc:7f:
                    60:14:61:cb:d4:af:63:65:5c:3c:f9:6b:1d:8b:1d:47:
                    38:2c:1d:39:66:90:66:cb:cc:be:4b:c5:89:57:4e:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:97:f3:59:bb:c1:4c:6d:5c:0a:38:8a:f0:a4:7c:32:
        c0:87:55:25:58:57:f4:39:c0:cc:a5:3d:34:09:af:64:
        6e:db:96:d8:40:52:17:f9:56:7c:8d:e3:59:8e:79:67:
        77:8a:2b:07:10:7d:d8:d4:42:34:27:3f:7d:2a:44:9c:
        0e:6f:aa:f3:2c:ee:ec:36:1e:66:19:37:5e:cc:c9:37:
        3f:1f:fb:82:1a:71:05:f9:c5:a6:93:95:1c:1c:00:52:
        ff:f4:41:c1:0e:47:30:18:06:1c:05:93:64:ff:d3:cf:
        16:9f:1a:7a:86:ad:6f:84:6f:f4:09:9f:a8:a8:40:7f:
        50:96:d0:d1:02:10:71:df:e5:44:b1:c0:e3:fe:94:df:
        45:ad:ed:38:cd:0d:a7:e4:b8:90:48:4b:74:fd:8e:42:
        bb:48:7a:df:a7:8f:96:c6:34:7f:47:d0:c6:0b:b1:68:
        f4:30:e8:af:1b:db:83:ba:02:52:26:38:9c:31:8b:3e:
        e5:45:00:ed:e0:f5:bb:2a:24:15:44:0e:ac:a0:e9:a2:
        40:41:1e:d9:c8:22:28:bc:87:2e:af:52:45:3f:3c:5c:
        65:f0:3d:60:23:af:e9:d5:67:18:1d:d1:c1:73:3c:dd:
        89:2e:39:4b:a7:80:0b:e4:8a:fa:8f:e0:54:f1:e6:56
    Fingerprint (SHA-256):
        50:73:3A:22:1D:EB:04:67:32:A3:3F:5B:08:D2:DC:6F:4F:01:37:A0:8E:01:AE:6F:7E:F3:72:C2:B2:2C:5C:C0
    Fingerprint (SHA1):
        99:EB:C7:F9:8A:E3:AB:DF:89:65:39:EE:D6:3C:30:BC:75:32:1E:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6481: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153859 (0x1dee4283)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:10 2017
            Not After : Mon May 02 15:39:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bf:eb:95:7e:a0:c4:27:ca:fc:c5:1d:c5:41:c9:37:
                    fd:9b:a1:30:25:9f:5a:14:e8:3c:bd:e6:d5:90:37:e2:
                    7d:92:3a:31:e5:79:47:b6:fd:44:8d:fd:c0:01:15:c8:
                    0e:05:96:17:01:16:f7:4e:5a:9a:c5:45:08:2d:3c:22:
                    5d:a9:a2:99:4b:be:06:1e:63:9d:8f:77:7c:0b:c9:77:
                    3f:a4:3a:0e:4d:a3:3c:1d:04:2a:65:6b:15:a3:f0:57:
                    08:40:4e:31:2b:cc:c8:87:46:14:7a:fa:12:d6:af:5f:
                    b1:5b:d6:c8:b2:cb:29:91:54:fa:7b:9b:32:09:d9:af:
                    05:e4:d3:c9:d1:69:8a:6f:d8:ec:f4:70:6e:79:4e:65:
                    94:70:66:b2:9f:2e:77:d2:27:4b:8a:35:02:ef:21:2d:
                    21:a9:88:de:eb:0a:29:e7:32:8f:3d:cf:7d:46:0c:d2:
                    6e:63:0d:ec:7b:7a:fa:ca:79:5d:c6:a2:c7:1e:ab:c3:
                    40:50:2f:1f:b2:78:c9:18:8f:41:15:21:4e:8e:15:d7:
                    82:ce:39:33:2f:fb:c3:5d:d4:66:95:7d:04:f1:bc:7f:
                    60:14:61:cb:d4:af:63:65:5c:3c:f9:6b:1d:8b:1d:47:
                    38:2c:1d:39:66:90:66:cb:cc:be:4b:c5:89:57:4e:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:97:f3:59:bb:c1:4c:6d:5c:0a:38:8a:f0:a4:7c:32:
        c0:87:55:25:58:57:f4:39:c0:cc:a5:3d:34:09:af:64:
        6e:db:96:d8:40:52:17:f9:56:7c:8d:e3:59:8e:79:67:
        77:8a:2b:07:10:7d:d8:d4:42:34:27:3f:7d:2a:44:9c:
        0e:6f:aa:f3:2c:ee:ec:36:1e:66:19:37:5e:cc:c9:37:
        3f:1f:fb:82:1a:71:05:f9:c5:a6:93:95:1c:1c:00:52:
        ff:f4:41:c1:0e:47:30:18:06:1c:05:93:64:ff:d3:cf:
        16:9f:1a:7a:86:ad:6f:84:6f:f4:09:9f:a8:a8:40:7f:
        50:96:d0:d1:02:10:71:df:e5:44:b1:c0:e3:fe:94:df:
        45:ad:ed:38:cd:0d:a7:e4:b8:90:48:4b:74:fd:8e:42:
        bb:48:7a:df:a7:8f:96:c6:34:7f:47:d0:c6:0b:b1:68:
        f4:30:e8:af:1b:db:83:ba:02:52:26:38:9c:31:8b:3e:
        e5:45:00:ed:e0:f5:bb:2a:24:15:44:0e:ac:a0:e9:a2:
        40:41:1e:d9:c8:22:28:bc:87:2e:af:52:45:3f:3c:5c:
        65:f0:3d:60:23:af:e9:d5:67:18:1d:d1:c1:73:3c:dd:
        89:2e:39:4b:a7:80:0b:e4:8a:fa:8f:e0:54:f1:e6:56
    Fingerprint (SHA-256):
        50:73:3A:22:1D:EB:04:67:32:A3:3F:5B:08:D2:DC:6F:4F:01:37:A0:8E:01:AE:6F:7E:F3:72:C2:B2:2C:5C:C0
    Fingerprint (SHA1):
        99:EB:C7:F9:8A:E3:AB:DF:89:65:39:EE:D6:3C:30:BC:75:32:1E:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6482: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6483: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153866 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6484: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6485: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6486: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153867 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6487: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6488: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #6489: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6490: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502153868   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6491: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6492: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #6493: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6494: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502153869   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6495: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6496: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6497: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6498: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502153870 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6499: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6500: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502153871 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6501: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6502: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #6503: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6504: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6505: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153872   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6506: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6507: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6508: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6509: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502153873   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6510: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6511: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6512: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6513: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153874   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6514: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6515: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6516: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6517: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153875   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6518: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6519: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6520: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153866 (0x1dee428a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:14 2017
            Not After : Mon May 02 15:39:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:6f:04:1a:1c:80:0d:50:2c:89:fc:84:13:8c:f4:c4:
                    9a:23:df:31:f0:28:6b:3c:b3:19:1f:69:f8:58:1e:89:
                    59:89:15:cd:3f:39:77:b5:63:5e:72:26:10:21:b1:40:
                    f8:31:4c:db:f2:2c:42:78:33:8a:dc:39:2b:cd:34:72:
                    8f:08:77:38:e4:71:52:c7:6a:21:5e:e6:d6:33:2f:46:
                    d4:3f:f2:30:78:6f:20:eb:70:b0:4b:4b:57:17:a1:9c:
                    74:02:ac:e9:11:a5:f9:9e:e3:3d:33:21:6b:73:3b:8d:
                    5e:65:ad:80:0f:28:da:66:ff:59:b2:68:9a:b1:be:30:
                    7a:ed:3d:d4:7f:7c:ac:81:52:93:86:f2:e6:4f:94:09:
                    3c:f9:ae:d2:f0:9b:c4:cb:6b:3d:4d:1f:28:fc:08:cd:
                    f6:db:78:0c:d2:03:f7:44:7b:11:cf:30:5b:80:8e:12:
                    09:8e:f2:20:5e:77:e3:37:12:a7:98:ec:8d:10:bd:59:
                    80:9c:9b:6a:af:ae:a8:f7:83:77:31:4b:76:20:6c:fe:
                    65:d6:56:1e:9d:98:76:3d:f0:1c:b2:7c:33:43:b6:53:
                    45:49:4c:0d:ac:77:b6:43:3f:67:ad:fc:a2:5c:1f:1b:
                    42:77:00:63:90:cd:74:eb:21:42:72:e0:67:a5:95:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:70:51:18:b9:c0:8d:0d:28:cd:87:4a:6e:e1:1f:fd:
        e4:1f:0b:60:f0:e7:da:aa:45:ef:4f:52:a3:7c:9b:b9:
        20:19:f0:d6:fe:03:71:9e:26:da:53:c1:53:8a:83:b4:
        71:ea:55:d5:72:52:ec:cc:d1:0b:f0:9b:a8:80:ed:14:
        ef:ea:2d:ce:c7:b0:5a:ad:a0:ac:f1:2a:82:dd:1d:59:
        1d:bd:e2:87:84:30:f4:a3:cd:ef:66:10:bf:00:22:de:
        26:9d:6e:a0:29:8b:84:b9:3e:ed:c6:7a:fc:64:25:26:
        52:03:4c:e7:75:40:ee:0b:b0:d8:a2:d1:88:87:06:4a:
        23:74:a2:86:f3:6f:13:a3:6b:28:f4:94:8f:74:d8:a0:
        71:43:be:7e:a9:96:6a:c4:69:61:03:76:51:0d:6f:a4:
        f8:d6:90:c3:ae:42:96:70:f6:3d:42:96:49:26:5a:64:
        31:f7:5a:5e:97:cb:22:d6:e1:c7:9d:e8:2a:ab:6b:26:
        9f:8b:95:75:2c:fd:ac:a5:96:d2:ad:1c:78:b0:6b:27:
        30:0a:71:73:00:b6:86:ec:75:c2:03:b8:0f:90:e8:76:
        38:99:96:1d:be:21:91:d2:9b:96:4e:48:4a:36:0d:3c:
        d2:22:e2:a1:a8:0a:b2:2c:f5:60:be:d5:4e:6c:30:6f
    Fingerprint (SHA-256):
        D5:61:96:8F:AF:95:A3:21:E2:3B:FD:B7:32:E3:E8:32:7C:B7:CD:73:EF:77:B3:23:C3:14:77:A1:9D:6F:33:04
    Fingerprint (SHA1):
        AD:0F:8E:1B:A0:BF:3A:6D:A9:DD:21:F8:9D:63:33:CD:4D:2F:6C:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6521: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6522: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6523: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6524: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6525: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6526: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6527: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6528: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6529: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153867 (0x1dee428b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:15 2017
            Not After : Mon May 02 15:39:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:3c:94:e7:87:d9:e7:fd:ad:dc:2c:00:19:1e:8b:13:
                    25:51:f1:bb:9e:46:40:6a:98:be:59:d5:c3:3e:58:91:
                    cf:78:ae:b1:20:50:16:15:6f:bc:6b:fa:6d:df:df:1f:
                    51:ad:f5:e7:76:f9:08:de:89:e2:32:9e:b5:86:de:34:
                    4d:4b:19:6f:44:f1:9e:32:4b:59:81:cf:e2:42:ad:d3:
                    b2:45:b2:f2:15:5d:b2:77:0c:49:25:68:5e:27:3e:aa:
                    4c:cb:29:18:95:b9:e6:45:4a:8f:b1:e2:1b:0f:d8:4a:
                    0c:c9:24:8c:d1:d7:fe:b9:59:79:39:44:63:6c:23:43:
                    04:d7:32:4d:fd:86:0e:09:8f:51:0a:6a:4d:d9:52:74:
                    f9:77:92:9c:f1:0d:cb:67:fd:e7:2a:21:d9:61:b9:ee:
                    60:c0:c8:5e:9d:f8:64:91:a8:39:6d:10:af:d0:df:4f:
                    e4:7d:12:ac:67:26:c6:f0:52:9f:c5:6e:dd:1d:5d:a8:
                    7d:32:07:c4:6b:d6:db:9d:a1:c9:7b:85:82:8e:88:fb:
                    80:02:09:c6:86:7f:93:4d:4e:16:52:92:56:a0:ba:e7:
                    7a:1d:b8:5e:8d:a2:6a:c0:d7:0d:80:c5:bc:a3:9b:a1:
                    b2:ab:a2:23:6b:ce:62:87:60:2b:b0:3d:f1:ff:d2:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:36:fc:ad:b5:b9:ac:99:8c:a8:2f:33:33:d0:1a:5b:
        39:fc:fd:d0:21:fd:5f:ca:42:d2:d4:52:4d:6f:32:b6:
        7b:2f:d0:62:7d:0d:2a:b1:9b:f0:77:d8:68:ff:a6:4a:
        08:3b:99:38:c8:de:48:db:ea:b2:48:64:ba:a5:3e:ac:
        56:bd:dd:a1:d4:58:bd:7d:8d:8c:e7:df:0e:d1:5b:21:
        0c:00:aa:3e:39:cf:3e:2f:b0:1e:f5:1d:89:64:e2:41:
        c9:d0:7b:2c:58:3d:6c:88:e8:a9:8a:30:bc:96:90:f4:
        05:b6:40:cc:a6:54:db:ae:1d:19:65:8e:85:61:78:6d:
        81:26:e9:67:87:c2:9f:45:be:e7:97:47:0f:4e:00:74:
        39:1f:fa:57:27:4d:4d:ab:79:cc:e8:e2:55:9d:e8:99:
        4e:74:37:d0:e8:9e:de:c0:1a:3f:5b:99:e9:22:1d:19:
        af:01:f9:20:f2:ec:96:78:a3:c1:03:3b:48:94:bf:8a:
        69:62:92:cd:9b:f5:08:c8:12:b4:08:65:a4:f2:62:af:
        df:26:55:d0:95:ee:9d:3b:93:5d:99:74:e3:f4:fa:64:
        05:34:39:68:2c:1f:47:7a:f0:bb:91:58:b6:82:01:cb:
        c0:a6:63:f9:5b:79:a4:b1:83:93:9f:59:a7:59:af:5a
    Fingerprint (SHA-256):
        48:A0:14:57:7D:C7:99:C4:1A:40:B7:9D:13:E9:F0:61:DE:A7:0C:32:8C:B4:6D:F7:33:3A:F3:8E:6D:FB:1C:16
    Fingerprint (SHA1):
        B5:E7:12:16:29:BB:7A:F6:FB:76:F5:AE:38:4C:12:F1:78:65:59:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6530: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6531: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6532: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6533: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6534: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6535: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6536: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #6537: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #6538: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #6539: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #6540: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #6541: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #6542: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #6543: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6544: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6545: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #6546: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #6547: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6548: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153876 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6549: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6550: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6551: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6552: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153877   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6553: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6554: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6555: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6556: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153878   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6557: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6558: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6559: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6560: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502153879   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6561: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6562: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6563: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6564: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502153880   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6565: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6566: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6567: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6568: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502153881   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6569: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6570: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6571: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6572: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502153882   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6573: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6574: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #6575: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6576: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502153883   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6577: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6578: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6579: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6580: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502153884   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6581: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6582: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6583: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153876 (0x1dee4294)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:20 2017
            Not After : Mon May 02 15:39:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0a:75:94:a5:62:b0:5e:a6:d4:24:dc:67:8d:90:ff:06:
                    4c:23:cf:5b:70:7b:1d:a3:7d:51:7b:45:09:90:a5:2e:
                    20:fa:87:81:82:42:ae:b1:dd:84:10:97:75:fd:18:2c:
                    25:60:bc:e4:fc:3d:a5:e0:5f:dc:f2:ed:d3:af:e9:83:
                    70:6c:57:7f:25:ac:8e:0c:68:2f:28:a4:48:50:38:87:
                    d4:45:7d:f8:0c:ec:82:4f:e5:3e:2f:45:77:07:51:c3:
                    ec:6c:8f:9a:b6:f2:54:9b:fc:f5:29:0b:23:e6:fc:5d:
                    60:cc:cd:9c:ca:d4:07:04:80:ab:9e:2a:2d:09:80:f7:
                    5e:02:2c:32:f3:9b:ba:09:13:bc:7c:20:b3:c3:80:76:
                    6a:7a:4f:b5:1a:92:82:f2:86:e6:11:21:cd:8d:9c:f0:
                    28:4a:e8:ab:d2:37:13:e5:0c:b9:7e:f5:a4:f6:84:9a:
                    08:8b:1e:cb:26:31:f4:80:d9:c3:02:3d:66:63:37:b8:
                    b1:c9:08:c2:49:43:00:ef:0b:a1:12:cb:ca:4c:f8:d3:
                    5e:e5:21:18:f3:b7:8f:50:af:72:e1:ca:6c:e6:f8:d9:
                    a9:af:23:71:79:4d:c5:2f:b1:df:12:c9:91:97:77:73:
                    6b:19:28:42:4c:25:5f:c4:fa:37:cc:b4:1c:55:00:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:43:4a:9b:8d:b9:87:5d:50:f6:6a:2e:3a:
        ab:c1:bd:a9:86:dc:32:28:50:36:b5:42:d2:85:e7:ae:
        02:1d:00:87:72:3f:f6:de:55:f2:f1:f6:81:5d:ff:66:
        b9:91:8c:93:51:a1:81:16:ea:82:b6:d3:2f:64:2a
    Fingerprint (SHA-256):
        01:E3:83:CB:DA:AB:E6:85:59:80:0D:1D:3A:9F:17:8D:F0:A9:B3:65:CA:21:C2:F2:90:BA:16:BC:74:6A:A5:18
    Fingerprint (SHA1):
        E9:19:76:19:CF:47:8F:DF:2F:E1:96:79:67:73:C8:99:24:80:8E:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6584: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153876 (0x1dee4294)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:20 2017
            Not After : Mon May 02 15:39:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0a:75:94:a5:62:b0:5e:a6:d4:24:dc:67:8d:90:ff:06:
                    4c:23:cf:5b:70:7b:1d:a3:7d:51:7b:45:09:90:a5:2e:
                    20:fa:87:81:82:42:ae:b1:dd:84:10:97:75:fd:18:2c:
                    25:60:bc:e4:fc:3d:a5:e0:5f:dc:f2:ed:d3:af:e9:83:
                    70:6c:57:7f:25:ac:8e:0c:68:2f:28:a4:48:50:38:87:
                    d4:45:7d:f8:0c:ec:82:4f:e5:3e:2f:45:77:07:51:c3:
                    ec:6c:8f:9a:b6:f2:54:9b:fc:f5:29:0b:23:e6:fc:5d:
                    60:cc:cd:9c:ca:d4:07:04:80:ab:9e:2a:2d:09:80:f7:
                    5e:02:2c:32:f3:9b:ba:09:13:bc:7c:20:b3:c3:80:76:
                    6a:7a:4f:b5:1a:92:82:f2:86:e6:11:21:cd:8d:9c:f0:
                    28:4a:e8:ab:d2:37:13:e5:0c:b9:7e:f5:a4:f6:84:9a:
                    08:8b:1e:cb:26:31:f4:80:d9:c3:02:3d:66:63:37:b8:
                    b1:c9:08:c2:49:43:00:ef:0b:a1:12:cb:ca:4c:f8:d3:
                    5e:e5:21:18:f3:b7:8f:50:af:72:e1:ca:6c:e6:f8:d9:
                    a9:af:23:71:79:4d:c5:2f:b1:df:12:c9:91:97:77:73:
                    6b:19:28:42:4c:25:5f:c4:fa:37:cc:b4:1c:55:00:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:43:4a:9b:8d:b9:87:5d:50:f6:6a:2e:3a:
        ab:c1:bd:a9:86:dc:32:28:50:36:b5:42:d2:85:e7:ae:
        02:1d:00:87:72:3f:f6:de:55:f2:f1:f6:81:5d:ff:66:
        b9:91:8c:93:51:a1:81:16:ea:82:b6:d3:2f:64:2a
    Fingerprint (SHA-256):
        01:E3:83:CB:DA:AB:E6:85:59:80:0D:1D:3A:9F:17:8D:F0:A9:B3:65:CA:21:C2:F2:90:BA:16:BC:74:6A:A5:18
    Fingerprint (SHA1):
        E9:19:76:19:CF:47:8F:DF:2F:E1:96:79:67:73:C8:99:24:80:8E:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6585: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153876 (0x1dee4294)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:20 2017
            Not After : Mon May 02 15:39:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0a:75:94:a5:62:b0:5e:a6:d4:24:dc:67:8d:90:ff:06:
                    4c:23:cf:5b:70:7b:1d:a3:7d:51:7b:45:09:90:a5:2e:
                    20:fa:87:81:82:42:ae:b1:dd:84:10:97:75:fd:18:2c:
                    25:60:bc:e4:fc:3d:a5:e0:5f:dc:f2:ed:d3:af:e9:83:
                    70:6c:57:7f:25:ac:8e:0c:68:2f:28:a4:48:50:38:87:
                    d4:45:7d:f8:0c:ec:82:4f:e5:3e:2f:45:77:07:51:c3:
                    ec:6c:8f:9a:b6:f2:54:9b:fc:f5:29:0b:23:e6:fc:5d:
                    60:cc:cd:9c:ca:d4:07:04:80:ab:9e:2a:2d:09:80:f7:
                    5e:02:2c:32:f3:9b:ba:09:13:bc:7c:20:b3:c3:80:76:
                    6a:7a:4f:b5:1a:92:82:f2:86:e6:11:21:cd:8d:9c:f0:
                    28:4a:e8:ab:d2:37:13:e5:0c:b9:7e:f5:a4:f6:84:9a:
                    08:8b:1e:cb:26:31:f4:80:d9:c3:02:3d:66:63:37:b8:
                    b1:c9:08:c2:49:43:00:ef:0b:a1:12:cb:ca:4c:f8:d3:
                    5e:e5:21:18:f3:b7:8f:50:af:72:e1:ca:6c:e6:f8:d9:
                    a9:af:23:71:79:4d:c5:2f:b1:df:12:c9:91:97:77:73:
                    6b:19:28:42:4c:25:5f:c4:fa:37:cc:b4:1c:55:00:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:43:4a:9b:8d:b9:87:5d:50:f6:6a:2e:3a:
        ab:c1:bd:a9:86:dc:32:28:50:36:b5:42:d2:85:e7:ae:
        02:1d:00:87:72:3f:f6:de:55:f2:f1:f6:81:5d:ff:66:
        b9:91:8c:93:51:a1:81:16:ea:82:b6:d3:2f:64:2a
    Fingerprint (SHA-256):
        01:E3:83:CB:DA:AB:E6:85:59:80:0D:1D:3A:9F:17:8D:F0:A9:B3:65:CA:21:C2:F2:90:BA:16:BC:74:6A:A5:18
    Fingerprint (SHA1):
        E9:19:76:19:CF:47:8F:DF:2F:E1:96:79:67:73:C8:99:24:80:8E:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6586: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153876 (0x1dee4294)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:20 2017
            Not After : Mon May 02 15:39:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0a:75:94:a5:62:b0:5e:a6:d4:24:dc:67:8d:90:ff:06:
                    4c:23:cf:5b:70:7b:1d:a3:7d:51:7b:45:09:90:a5:2e:
                    20:fa:87:81:82:42:ae:b1:dd:84:10:97:75:fd:18:2c:
                    25:60:bc:e4:fc:3d:a5:e0:5f:dc:f2:ed:d3:af:e9:83:
                    70:6c:57:7f:25:ac:8e:0c:68:2f:28:a4:48:50:38:87:
                    d4:45:7d:f8:0c:ec:82:4f:e5:3e:2f:45:77:07:51:c3:
                    ec:6c:8f:9a:b6:f2:54:9b:fc:f5:29:0b:23:e6:fc:5d:
                    60:cc:cd:9c:ca:d4:07:04:80:ab:9e:2a:2d:09:80:f7:
                    5e:02:2c:32:f3:9b:ba:09:13:bc:7c:20:b3:c3:80:76:
                    6a:7a:4f:b5:1a:92:82:f2:86:e6:11:21:cd:8d:9c:f0:
                    28:4a:e8:ab:d2:37:13:e5:0c:b9:7e:f5:a4:f6:84:9a:
                    08:8b:1e:cb:26:31:f4:80:d9:c3:02:3d:66:63:37:b8:
                    b1:c9:08:c2:49:43:00:ef:0b:a1:12:cb:ca:4c:f8:d3:
                    5e:e5:21:18:f3:b7:8f:50:af:72:e1:ca:6c:e6:f8:d9:
                    a9:af:23:71:79:4d:c5:2f:b1:df:12:c9:91:97:77:73:
                    6b:19:28:42:4c:25:5f:c4:fa:37:cc:b4:1c:55:00:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:43:4a:9b:8d:b9:87:5d:50:f6:6a:2e:3a:
        ab:c1:bd:a9:86:dc:32:28:50:36:b5:42:d2:85:e7:ae:
        02:1d:00:87:72:3f:f6:de:55:f2:f1:f6:81:5d:ff:66:
        b9:91:8c:93:51:a1:81:16:ea:82:b6:d3:2f:64:2a
    Fingerprint (SHA-256):
        01:E3:83:CB:DA:AB:E6:85:59:80:0D:1D:3A:9F:17:8D:F0:A9:B3:65:CA:21:C2:F2:90:BA:16:BC:74:6A:A5:18
    Fingerprint (SHA1):
        E9:19:76:19:CF:47:8F:DF:2F:E1:96:79:67:73:C8:99:24:80:8E:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #6587: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6588: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6589: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6590: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6591: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6592: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6593: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6594: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6595: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6596: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6597: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6598: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6599: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6600: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6601: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6602: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #6603: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6604: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6605: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6606: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6607: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6608: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6609: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6610: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6611: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6612: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6613: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6614: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153929Z
nextupdate=20180502153929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:39:29 2017
    Next Update: Wed May 02 15:39:29 2018
    CRL Extensions:
chains.sh: #6615: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153929Z
nextupdate=20180502153929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:39:29 2017
    Next Update: Wed May 02 15:39:29 2018
    CRL Extensions:
chains.sh: #6616: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153929Z
nextupdate=20180502153929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:39:29 2017
    Next Update: Wed May 02 15:39:29 2018
    CRL Extensions:
chains.sh: #6617: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153929Z
nextupdate=20180502153929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:39:29 2017
    Next Update: Wed May 02 15:39:29 2018
    CRL Extensions:
chains.sh: #6618: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153930Z
addcert 14 20170502153930Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:39:30 2017
    Next Update: Wed May 02 15:39:29 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:39:30 2017
    CRL Extensions:
chains.sh: #6619: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153931Z
addcert 15 20170502153931Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:39:31 2017
    Next Update: Wed May 02 15:39:29 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:39:31 2017
    CRL Extensions:
chains.sh: #6620: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6621: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6622: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6623: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #6624: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #6625: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #6626: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #6627: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #6628: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #6629: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:25 2017
            Not After : Mon May 02 15:39:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e4:6d:eb:78:13:69:cb:08:e4:24:cc:85:7c:17:7d:
                    86:55:67:1c:59:2e:2d:7d:f3:b9:75:f0:73:fe:d3:3c:
                    cb:89:de:1d:fd:64:a0:95:4b:38:2f:67:b7:dc:c1:9b:
                    ba:a2:ef:9a:f4:1f:90:05:2f:6b:f6:5b:b8:55:07:43:
                    43:a9:5d:e8:d4:16:dd:eb:5f:c6:41:e0:4f:6a:1e:32:
                    66:3c:49:ca:9a:a6:d8:ff:7b:36:0a:6b:57:fc:0c:07:
                    30:28:26:3c:8a:6c:8b:f2:75:85:2f:72:91:f5:f5:a4:
                    99:72:af:84:93:9c:26:9a:68:46:8e:be:81:19:2e:30:
                    1e:65:bc:a4:7b:af:10:c8:79:18:0d:19:a7:29:be:3f:
                    de:39:ab:d3:20:88:df:47:2e:32:03:c5:09:81:85:1a:
                    f3:a9:84:ef:30:e0:8b:de:3a:da:02:c2:52:82:b8:8e:
                    bc:03:04:22:ef:79:85:fd:b6:06:4a:53:1f:db:6e:ac:
                    81:23:e4:d1:34:02:78:5a:dd:0f:45:83:e3:4c:9d:23:
                    f8:e4:d5:6a:a7:12:54:aa:ae:bc:0a:21:53:f9:12:a1:
                    49:61:21:98:4c:fb:dd:12:63:e9:16:05:d6:57:0b:57:
                    6f:5d:bc:9f:a6:6d:30:ea:44:dd:bf:0d:52:e0:03:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:35:9e:49:2e:44:00:b2:2c:28:8e:db:50:d5:d8:d5:
        b0:30:7e:c5:1d:b1:e4:2c:10:51:cc:a9:0f:0d:78:be:
        73:ce:29:86:51:5f:9f:a7:99:32:13:a4:5a:ce:b3:d0:
        6c:c2:2f:d3:e6:a7:0c:0e:c9:2a:2d:b4:96:0c:60:78:
        ec:83:8a:9f:79:93:62:a4:22:4c:e5:01:61:fc:67:95:
        df:68:fb:39:c4:b5:d4:89:d9:06:d9:89:eb:14:43:76:
        fc:f4:26:47:d8:78:1d:72:98:5b:f3:07:bd:e6:13:57:
        d8:92:cd:58:94:99:98:24:70:f2:37:e3:89:be:00:77:
        05:e3:d0:83:4f:82:53:af:5d:78:1a:a7:a9:49:0d:1a:
        1b:2f:a3:45:95:f0:da:e1:e7:5b:43:37:9e:27:86:12:
        39:96:b7:a9:50:fb:8b:26:0e:26:fa:0f:c8:b5:01:17:
        c4:cc:34:e9:e1:a5:f9:1a:62:58:3f:12:2c:bc:86:f0:
        14:8e:6f:d6:b6:32:14:56:4e:02:16:ff:19:c9:b0:9e:
        62:59:85:29:d2:38:1a:8c:05:1f:2d:65:22:03:63:6e:
        4a:be:03:33:6c:1a:6a:88:8f:70:04:b3:41:cb:71:66:
        a2:d3:bd:c4:87:45:67:04:0d:57:d9:2f:58:2e:5f:59
    Fingerprint (SHA-256):
        35:89:AB:07:DB:4A:37:D9:6A:00:33:41:9E:45:BB:E2:3D:4F:FA:38:58:AE:F4:EC:48:CE:43:22:87:C3:76:1B
    Fingerprint (SHA1):
        7F:5E:D5:73:BB:06:17:D9:2D:F0:8A:1D:AC:6F:DB:A6:BA:9C:F7:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6630: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6631: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:25 2017
            Not After : Mon May 02 15:39:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e4:6d:eb:78:13:69:cb:08:e4:24:cc:85:7c:17:7d:
                    86:55:67:1c:59:2e:2d:7d:f3:b9:75:f0:73:fe:d3:3c:
                    cb:89:de:1d:fd:64:a0:95:4b:38:2f:67:b7:dc:c1:9b:
                    ba:a2:ef:9a:f4:1f:90:05:2f:6b:f6:5b:b8:55:07:43:
                    43:a9:5d:e8:d4:16:dd:eb:5f:c6:41:e0:4f:6a:1e:32:
                    66:3c:49:ca:9a:a6:d8:ff:7b:36:0a:6b:57:fc:0c:07:
                    30:28:26:3c:8a:6c:8b:f2:75:85:2f:72:91:f5:f5:a4:
                    99:72:af:84:93:9c:26:9a:68:46:8e:be:81:19:2e:30:
                    1e:65:bc:a4:7b:af:10:c8:79:18:0d:19:a7:29:be:3f:
                    de:39:ab:d3:20:88:df:47:2e:32:03:c5:09:81:85:1a:
                    f3:a9:84:ef:30:e0:8b:de:3a:da:02:c2:52:82:b8:8e:
                    bc:03:04:22:ef:79:85:fd:b6:06:4a:53:1f:db:6e:ac:
                    81:23:e4:d1:34:02:78:5a:dd:0f:45:83:e3:4c:9d:23:
                    f8:e4:d5:6a:a7:12:54:aa:ae:bc:0a:21:53:f9:12:a1:
                    49:61:21:98:4c:fb:dd:12:63:e9:16:05:d6:57:0b:57:
                    6f:5d:bc:9f:a6:6d:30:ea:44:dd:bf:0d:52:e0:03:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:35:9e:49:2e:44:00:b2:2c:28:8e:db:50:d5:d8:d5:
        b0:30:7e:c5:1d:b1:e4:2c:10:51:cc:a9:0f:0d:78:be:
        73:ce:29:86:51:5f:9f:a7:99:32:13:a4:5a:ce:b3:d0:
        6c:c2:2f:d3:e6:a7:0c:0e:c9:2a:2d:b4:96:0c:60:78:
        ec:83:8a:9f:79:93:62:a4:22:4c:e5:01:61:fc:67:95:
        df:68:fb:39:c4:b5:d4:89:d9:06:d9:89:eb:14:43:76:
        fc:f4:26:47:d8:78:1d:72:98:5b:f3:07:bd:e6:13:57:
        d8:92:cd:58:94:99:98:24:70:f2:37:e3:89:be:00:77:
        05:e3:d0:83:4f:82:53:af:5d:78:1a:a7:a9:49:0d:1a:
        1b:2f:a3:45:95:f0:da:e1:e7:5b:43:37:9e:27:86:12:
        39:96:b7:a9:50:fb:8b:26:0e:26:fa:0f:c8:b5:01:17:
        c4:cc:34:e9:e1:a5:f9:1a:62:58:3f:12:2c:bc:86:f0:
        14:8e:6f:d6:b6:32:14:56:4e:02:16:ff:19:c9:b0:9e:
        62:59:85:29:d2:38:1a:8c:05:1f:2d:65:22:03:63:6e:
        4a:be:03:33:6c:1a:6a:88:8f:70:04:b3:41:cb:71:66:
        a2:d3:bd:c4:87:45:67:04:0d:57:d9:2f:58:2e:5f:59
    Fingerprint (SHA-256):
        35:89:AB:07:DB:4A:37:D9:6A:00:33:41:9E:45:BB:E2:3D:4F:FA:38:58:AE:F4:EC:48:CE:43:22:87:C3:76:1B
    Fingerprint (SHA1):
        7F:5E:D5:73:BB:06:17:D9:2D:F0:8A:1D:AC:6F:DB:A6:BA:9C:F7:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6632: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6633: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6634: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153885 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6635: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6636: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6637: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6638: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502153886   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6639: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6640: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6641: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153776.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6642: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153761.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6643: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6644: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6645: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153776.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6646: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502153887   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6647: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6648: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6649: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153776.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6650: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153762.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6651: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6652: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6653: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6654: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502153888   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6655: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6656: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6657: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153776.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6658: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153763.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6659: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6660: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6661: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153776.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6662: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153764.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6663: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6664: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502153935Z
nextupdate=20180502153935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:39:35 2017
    Next Update: Wed May 02 15:39:35 2018
    CRL Extensions:
chains.sh: #6665: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153935Z
nextupdate=20180502153935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:39:35 2017
    Next Update: Wed May 02 15:39:35 2018
    CRL Extensions:
chains.sh: #6666: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502153935Z
nextupdate=20180502153935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:39:35 2017
    Next Update: Wed May 02 15:39:35 2018
    CRL Extensions:
chains.sh: #6667: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502153935Z
nextupdate=20180502153935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:39:35 2017
    Next Update: Wed May 02 15:39:35 2018
    CRL Extensions:
chains.sh: #6668: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153936Z
addcert 20 20170502153936Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:39:36 2017
    Next Update: Wed May 02 15:39:35 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:39:36 2017
    CRL Extensions:
chains.sh: #6669: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502153937Z
addcert 40 20170502153937Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:39:37 2017
    Next Update: Wed May 02 15:39:35 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:39:36 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:39:37 2017
    CRL Extensions:
chains.sh: #6670: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6671: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6672: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6673: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153885 (0x1dee429d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:32 2017
            Not After : Mon May 02 15:39:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:8a:51:ab:96:e9:41:38:2b:9a:a5:0d:9c:df:12:de:
                    08:d3:87:2e:30:77:40:a0:17:24:6b:1f:9a:10:4f:2d:
                    b9:76:48:24:3a:18:55:16:d7:3f:a5:61:7c:f4:a6:03:
                    56:b6:88:58:8a:82:75:a9:14:4c:d2:82:bb:e4:94:e9:
                    ec:6b:09:a4:01:bc:9a:64:11:1d:c1:74:33:4f:49:a0:
                    68:7c:a2:ad:39:fc:00:ec:be:63:91:f2:c5:52:e7:a6:
                    26:43:43:55:ad:92:fc:2f:f0:d4:00:92:a2:ab:7a:72:
                    36:a2:55:36:04:72:ec:0d:48:40:42:38:57:20:90:a5:
                    2e:90:3e:59:40:93:4b:1d:58:78:35:5f:4f:68:a8:9d:
                    ed:29:fb:1d:84:34:6f:e4:4b:5d:35:06:a8:5e:57:c1:
                    cd:dc:ea:22:c5:2e:3b:92:a1:ab:fd:07:53:4b:6b:f0:
                    52:4d:84:59:0e:0d:10:22:93:4a:aa:fa:b8:d8:ea:48:
                    c6:10:3b:5c:50:2b:11:ec:c5:39:bd:ad:cf:9c:04:b0:
                    8c:bc:e0:3c:4c:1d:26:c2:a4:15:3b:d4:38:79:5d:bd:
                    ca:df:b0:bd:6d:b9:e2:c3:b9:4d:d1:a5:ee:8f:b1:5b:
                    45:af:73:ce:af:11:8e:69:e1:c8:32:77:74:20:a7:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:34:f0:c5:6a:68:de:2d:65:42:61:4d:cc:76:5d:e0:
        2d:41:ce:18:16:72:84:e5:ac:1c:87:ab:33:96:da:52:
        9e:f5:22:f9:ac:3a:cc:06:7b:2a:e3:7c:21:99:bb:8e:
        62:3b:d0:55:7d:32:b9:2a:69:69:61:3e:05:29:5b:1e:
        9a:83:5b:e2:18:46:da:8d:70:b2:3a:16:9a:04:41:ad:
        46:20:e0:e8:31:16:4f:ce:69:85:ec:43:67:14:f8:97:
        76:f4:db:d9:49:59:d2:69:69:d4:07:67:bf:07:aa:e5:
        1c:6c:bb:29:f1:36:0a:54:ea:da:d1:66:0e:95:c0:62:
        1d:20:d9:f7:85:f2:b8:9f:16:bc:4f:61:a1:94:ce:ce:
        0c:0c:bd:d4:4a:54:3c:81:c3:52:12:c2:85:96:2c:31:
        08:e5:24:88:83:72:ee:ae:f7:d5:e5:50:28:3d:ac:15:
        c9:d1:d3:5d:e6:bc:ec:d1:c7:59:3e:7b:d6:c2:c3:45:
        42:cf:72:71:5d:12:26:f2:8e:cf:76:b0:34:4c:9e:f9:
        70:ae:29:55:80:3b:33:03:b7:35:2d:c1:97:eb:ef:17:
        55:1f:7a:8a:1f:9b:34:67:d1:f2:db:db:2e:ba:af:d7:
        5f:71:df:ca:64:10:9b:b3:9e:cc:68:35:c5:4b:be:2c
    Fingerprint (SHA-256):
        76:08:BD:B0:E5:FA:CC:8B:2D:17:BD:CA:75:5E:27:39:59:FB:53:CD:7A:98:40:F0:E5:78:4B:EE:14:9E:0C:79
    Fingerprint (SHA1):
        18:C3:99:F3:D4:1C:17:AB:68:FE:D5:91:E8:D5:3B:8F:A1:5D:29:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6674: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6675: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153885 (0x1dee429d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:32 2017
            Not After : Mon May 02 15:39:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:8a:51:ab:96:e9:41:38:2b:9a:a5:0d:9c:df:12:de:
                    08:d3:87:2e:30:77:40:a0:17:24:6b:1f:9a:10:4f:2d:
                    b9:76:48:24:3a:18:55:16:d7:3f:a5:61:7c:f4:a6:03:
                    56:b6:88:58:8a:82:75:a9:14:4c:d2:82:bb:e4:94:e9:
                    ec:6b:09:a4:01:bc:9a:64:11:1d:c1:74:33:4f:49:a0:
                    68:7c:a2:ad:39:fc:00:ec:be:63:91:f2:c5:52:e7:a6:
                    26:43:43:55:ad:92:fc:2f:f0:d4:00:92:a2:ab:7a:72:
                    36:a2:55:36:04:72:ec:0d:48:40:42:38:57:20:90:a5:
                    2e:90:3e:59:40:93:4b:1d:58:78:35:5f:4f:68:a8:9d:
                    ed:29:fb:1d:84:34:6f:e4:4b:5d:35:06:a8:5e:57:c1:
                    cd:dc:ea:22:c5:2e:3b:92:a1:ab:fd:07:53:4b:6b:f0:
                    52:4d:84:59:0e:0d:10:22:93:4a:aa:fa:b8:d8:ea:48:
                    c6:10:3b:5c:50:2b:11:ec:c5:39:bd:ad:cf:9c:04:b0:
                    8c:bc:e0:3c:4c:1d:26:c2:a4:15:3b:d4:38:79:5d:bd:
                    ca:df:b0:bd:6d:b9:e2:c3:b9:4d:d1:a5:ee:8f:b1:5b:
                    45:af:73:ce:af:11:8e:69:e1:c8:32:77:74:20:a7:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:34:f0:c5:6a:68:de:2d:65:42:61:4d:cc:76:5d:e0:
        2d:41:ce:18:16:72:84:e5:ac:1c:87:ab:33:96:da:52:
        9e:f5:22:f9:ac:3a:cc:06:7b:2a:e3:7c:21:99:bb:8e:
        62:3b:d0:55:7d:32:b9:2a:69:69:61:3e:05:29:5b:1e:
        9a:83:5b:e2:18:46:da:8d:70:b2:3a:16:9a:04:41:ad:
        46:20:e0:e8:31:16:4f:ce:69:85:ec:43:67:14:f8:97:
        76:f4:db:d9:49:59:d2:69:69:d4:07:67:bf:07:aa:e5:
        1c:6c:bb:29:f1:36:0a:54:ea:da:d1:66:0e:95:c0:62:
        1d:20:d9:f7:85:f2:b8:9f:16:bc:4f:61:a1:94:ce:ce:
        0c:0c:bd:d4:4a:54:3c:81:c3:52:12:c2:85:96:2c:31:
        08:e5:24:88:83:72:ee:ae:f7:d5:e5:50:28:3d:ac:15:
        c9:d1:d3:5d:e6:bc:ec:d1:c7:59:3e:7b:d6:c2:c3:45:
        42:cf:72:71:5d:12:26:f2:8e:cf:76:b0:34:4c:9e:f9:
        70:ae:29:55:80:3b:33:03:b7:35:2d:c1:97:eb:ef:17:
        55:1f:7a:8a:1f:9b:34:67:d1:f2:db:db:2e:ba:af:d7:
        5f:71:df:ca:64:10:9b:b3:9e:cc:68:35:c5:4b:be:2c
    Fingerprint (SHA-256):
        76:08:BD:B0:E5:FA:CC:8B:2D:17:BD:CA:75:5E:27:39:59:FB:53:CD:7A:98:40:F0:E5:78:4B:EE:14:9E:0C:79
    Fingerprint (SHA1):
        18:C3:99:F3:D4:1C:17:AB:68:FE:D5:91:E8:D5:3B:8F:A1:5D:29:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6676: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6677: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6678: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153889 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6679: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6680: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6681: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6682: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153890   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6683: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6684: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6685: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6686: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153891   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6687: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6688: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6689: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6690: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502153892   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6691: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6692: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #6693: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153893 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6694: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #6695: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #6696: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6697: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502153894   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6698: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6699: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6700: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6701: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502153895   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6702: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6703: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #6704: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #6705: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #6706: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153889 (0x1dee42a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:39:37 2017
            Not After : Mon May 02 15:39:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:33:8d:da:ba:39:0f:1c:f3:40:9b:9e:a1:4f:d9:34:
                    24:8c:83:b7:f3:af:df:21:c3:74:0e:0e:60:2b:8d:10:
                    0f:01:3b:26:48:c4:46:60:e4:c6:d0:89:ca:9b:9b:d8:
                    22:a4:97:36:8c:23:92:b2:6c:f1:2e:14:65:ad:b9:cb:
                    03:80:94:d9:91:43:4d:42:20:08:c2:04:bd:82:d8:00:
                    dc:95:6b:d5:3d:49:6e:99:70:31:b2:07:47:31:5e:1c:
                    83:f9:68:97:db:d2:4c:5b:92:5c:58:c2:d5:ee:25:3a:
                    27:49:30:3c:74:84:af:be:68:0f:25:78:27:c5:d2:87:
                    b7:07:bc:e8:5d:d6:80:a9:d6:f5:b2:80:5f:8b:63:46:
                    f3:3b:e1:ad:cc:06:6d:da:30:96:9a:58:82:d9:dd:f1:
                    ab:f5:c0:f2:74:ea:43:64:d5:ef:b2:43:0b:88:32:97:
                    6e:1f:51:13:4d:04:c7:db:fc:5e:88:29:34:2e:63:fe:
                    c0:dc:be:73:92:01:68:6c:c4:21:82:f7:46:05:23:39:
                    6a:1c:c5:06:81:91:ee:73:75:9b:67:0f:f5:3c:32:15:
                    32:c3:3d:25:05:0a:f2:a5:c0:08:4f:5e:33:d0:9d:71:
                    ee:56:9c:44:fd:12:85:0e:0d:95:c7:ad:c5:66:82:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e5:43:4a:d2:dc:c6:3b:17:64:9c:7f:cb:26:26:24:
        53:9e:fb:4d:49:13:e5:2a:a3:c6:52:3c:ea:94:c0:0b:
        bb:e8:22:38:fa:e4:17:8d:2a:75:44:13:dd:e6:73:6f:
        ac:9f:6c:03:d1:2f:7c:31:b7:5c:be:40:d9:90:f3:a0:
        76:62:74:ae:46:64:9b:eb:fb:8d:c5:fc:95:cc:8c:f6:
        20:48:f1:81:bb:85:3e:8c:10:c6:d4:7f:f7:f1:11:0b:
        a6:f4:5e:c5:b7:a8:9d:36:c1:66:9d:c7:9c:33:85:78:
        08:eb:6f:30:ce:e7:c6:e7:bd:a9:f2:7d:f1:61:90:ce:
        ed:1a:a0:76:7d:9e:31:e1:e9:2f:62:3f:22:c5:b4:b4:
        82:39:01:d6:d5:9a:4a:7f:af:6a:d8:c1:70:aa:ca:ad:
        c5:d5:f2:e6:4f:4b:6b:d6:54:1f:ac:1f:b0:3c:3e:cb:
        db:eb:49:ea:21:bf:65:27:c4:17:22:3f:b9:d5:85:d0:
        08:a3:54:e7:42:ac:5c:ab:37:e1:17:02:a5:88:b6:35:
        64:e6:9f:33:6b:f4:b9:64:a0:14:0d:fb:7f:39:d4:cd:
        a8:4f:b1:a9:7d:72:e6:5f:09:b3:19:9d:bd:d4:6d:1d:
        04:da:6f:59:8f:b6:19:06:7b:e6:d7:88:ee:b3:7e:85
    Fingerprint (SHA-256):
        C8:6C:81:AB:3D:3D:7E:33:F4:3F:2E:6D:31:54:5F:63:31:BF:2C:98:B6:4B:09:F4:F5:9F:CE:3E:37:CD:FA:CD
    Fingerprint (SHA1):
        77:CB:A9:DE:58:E1:2C:14:36:AA:98:8B:A5:54:E6:33:B0:A3:85:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6707: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153891 (0x1dee42a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:39 2017
            Not After : Mon May 02 15:39:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:00:69:44:48:d2:d6:f0:e2:6b:5e:5e:4f:90:e7:36:
                    5e:be:5c:7b:b6:5d:a9:7c:24:d8:ce:19:be:fe:43:44:
                    e3:29:ec:a1:90:b3:39:57:12:7a:b3:ef:27:d3:2f:c9:
                    99:ae:6f:c6:7f:9c:15:e2:33:96:5a:5c:ec:35:b1:41:
                    3e:a1:e0:bc:f4:53:4d:d2:d2:45:28:74:a6:03:ad:42:
                    0e:65:32:af:8a:15:cd:4f:ad:9a:3c:65:09:9b:69:cf:
                    95:5f:c7:e0:1a:af:17:19:42:9a:56:3d:17:54:28:36:
                    e4:21:a8:72:c4:5a:3d:cd:63:65:bc:2a:0f:b9:ac:1f:
                    56:bc:19:74:6f:a8:1d:0e:8b:ea:2b:96:8f:c9:3c:c6:
                    db:6f:28:2d:65:a3:27:dd:df:48:01:0f:26:18:f5:ce:
                    ec:e3:e9:98:d4:79:13:29:2f:56:58:ae:6f:cb:1f:cc:
                    5b:2f:78:1e:8f:e5:a1:4a:85:ac:ab:c6:d4:34:88:97:
                    0e:67:54:fb:6c:6c:49:cf:86:d2:e2:11:1c:45:88:7e:
                    b9:4a:86:b5:2c:01:9e:bd:99:a3:1f:88:b4:81:cf:2e:
                    5e:dc:74:4f:ff:53:cd:13:91:cc:14:23:4d:67:33:79:
                    cb:d4:83:67:9a:6d:51:6f:ea:d1:40:ba:17:c8:29:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:de:88:32:35:08:68:50:bf:70:84:8f:47:49:d7:7a:
        f8:97:12:13:a8:a6:a0:60:d5:73:d8:4c:7e:4b:14:3d:
        8d:02:a1:fd:2e:3c:b7:fd:58:78:e2:88:46:28:6b:27:
        5d:f9:6f:d4:70:e8:70:7c:93:e0:6e:52:a8:16:3d:f3:
        2f:c9:0c:4f:b7:6d:b6:62:11:c9:12:8d:6f:ca:99:de:
        cf:8a:50:37:e7:ab:83:b6:1f:13:59:60:b6:34:00:58:
        ec:72:6f:b6:e9:c6:70:3e:44:6d:08:f7:bd:7a:2d:4c:
        10:25:5b:60:ad:3a:eb:f2:29:52:47:0c:b0:a4:43:0e:
        32:df:88:bb:b2:89:0d:8d:46:c8:3f:7b:eb:b8:cc:f4:
        5e:2a:ed:84:16:ae:e3:4f:ce:d1:64:06:fd:06:22:26:
        09:e6:be:7e:23:83:da:24:46:59:33:d8:f4:e9:3b:c8:
        92:81:e9:cf:ef:c3:d0:c1:b9:82:62:05:51:46:da:0e:
        48:a3:aa:08:69:1e:31:6d:2a:93:25:d8:d4:6b:1b:62:
        f3:4d:fa:05:94:d3:87:cb:e8:fc:a3:b4:3a:2f:85:5e:
        64:8e:1d:eb:53:45:c4:49:88:48:05:2f:59:fd:df:6b:
        f2:e6:0a:a4:54:46:6f:f2:fd:85:f1:cb:06:0f:f0:06
    Fingerprint (SHA-256):
        A0:6B:63:04:BD:53:97:C2:EB:A6:98:1A:5F:2D:A4:7F:BD:D1:E1:5A:03:3C:1F:5A:C6:4A:80:7A:9C:1D:95:53
    Fingerprint (SHA1):
        73:AF:C7:7C:10:21:C8:AE:D3:64:50:E0:15:F7:1C:AF:36:6C:8B:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6708: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153889 (0x1dee42a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:39:37 2017
            Not After : Mon May 02 15:39:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:33:8d:da:ba:39:0f:1c:f3:40:9b:9e:a1:4f:d9:34:
                    24:8c:83:b7:f3:af:df:21:c3:74:0e:0e:60:2b:8d:10:
                    0f:01:3b:26:48:c4:46:60:e4:c6:d0:89:ca:9b:9b:d8:
                    22:a4:97:36:8c:23:92:b2:6c:f1:2e:14:65:ad:b9:cb:
                    03:80:94:d9:91:43:4d:42:20:08:c2:04:bd:82:d8:00:
                    dc:95:6b:d5:3d:49:6e:99:70:31:b2:07:47:31:5e:1c:
                    83:f9:68:97:db:d2:4c:5b:92:5c:58:c2:d5:ee:25:3a:
                    27:49:30:3c:74:84:af:be:68:0f:25:78:27:c5:d2:87:
                    b7:07:bc:e8:5d:d6:80:a9:d6:f5:b2:80:5f:8b:63:46:
                    f3:3b:e1:ad:cc:06:6d:da:30:96:9a:58:82:d9:dd:f1:
                    ab:f5:c0:f2:74:ea:43:64:d5:ef:b2:43:0b:88:32:97:
                    6e:1f:51:13:4d:04:c7:db:fc:5e:88:29:34:2e:63:fe:
                    c0:dc:be:73:92:01:68:6c:c4:21:82:f7:46:05:23:39:
                    6a:1c:c5:06:81:91:ee:73:75:9b:67:0f:f5:3c:32:15:
                    32:c3:3d:25:05:0a:f2:a5:c0:08:4f:5e:33:d0:9d:71:
                    ee:56:9c:44:fd:12:85:0e:0d:95:c7:ad:c5:66:82:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e5:43:4a:d2:dc:c6:3b:17:64:9c:7f:cb:26:26:24:
        53:9e:fb:4d:49:13:e5:2a:a3:c6:52:3c:ea:94:c0:0b:
        bb:e8:22:38:fa:e4:17:8d:2a:75:44:13:dd:e6:73:6f:
        ac:9f:6c:03:d1:2f:7c:31:b7:5c:be:40:d9:90:f3:a0:
        76:62:74:ae:46:64:9b:eb:fb:8d:c5:fc:95:cc:8c:f6:
        20:48:f1:81:bb:85:3e:8c:10:c6:d4:7f:f7:f1:11:0b:
        a6:f4:5e:c5:b7:a8:9d:36:c1:66:9d:c7:9c:33:85:78:
        08:eb:6f:30:ce:e7:c6:e7:bd:a9:f2:7d:f1:61:90:ce:
        ed:1a:a0:76:7d:9e:31:e1:e9:2f:62:3f:22:c5:b4:b4:
        82:39:01:d6:d5:9a:4a:7f:af:6a:d8:c1:70:aa:ca:ad:
        c5:d5:f2:e6:4f:4b:6b:d6:54:1f:ac:1f:b0:3c:3e:cb:
        db:eb:49:ea:21:bf:65:27:c4:17:22:3f:b9:d5:85:d0:
        08:a3:54:e7:42:ac:5c:ab:37:e1:17:02:a5:88:b6:35:
        64:e6:9f:33:6b:f4:b9:64:a0:14:0d:fb:7f:39:d4:cd:
        a8:4f:b1:a9:7d:72:e6:5f:09:b3:19:9d:bd:d4:6d:1d:
        04:da:6f:59:8f:b6:19:06:7b:e6:d7:88:ee:b3:7e:85
    Fingerprint (SHA-256):
        C8:6C:81:AB:3D:3D:7E:33:F4:3F:2E:6D:31:54:5F:63:31:BF:2C:98:B6:4B:09:F4:F5:9F:CE:3E:37:CD:FA:CD
    Fingerprint (SHA1):
        77:CB:A9:DE:58:E1:2C:14:36:AA:98:8B:A5:54:E6:33:B0:A3:85:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6709: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #6710: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153889 (0x1dee42a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:39:37 2017
            Not After : Mon May 02 15:39:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:33:8d:da:ba:39:0f:1c:f3:40:9b:9e:a1:4f:d9:34:
                    24:8c:83:b7:f3:af:df:21:c3:74:0e:0e:60:2b:8d:10:
                    0f:01:3b:26:48:c4:46:60:e4:c6:d0:89:ca:9b:9b:d8:
                    22:a4:97:36:8c:23:92:b2:6c:f1:2e:14:65:ad:b9:cb:
                    03:80:94:d9:91:43:4d:42:20:08:c2:04:bd:82:d8:00:
                    dc:95:6b:d5:3d:49:6e:99:70:31:b2:07:47:31:5e:1c:
                    83:f9:68:97:db:d2:4c:5b:92:5c:58:c2:d5:ee:25:3a:
                    27:49:30:3c:74:84:af:be:68:0f:25:78:27:c5:d2:87:
                    b7:07:bc:e8:5d:d6:80:a9:d6:f5:b2:80:5f:8b:63:46:
                    f3:3b:e1:ad:cc:06:6d:da:30:96:9a:58:82:d9:dd:f1:
                    ab:f5:c0:f2:74:ea:43:64:d5:ef:b2:43:0b:88:32:97:
                    6e:1f:51:13:4d:04:c7:db:fc:5e:88:29:34:2e:63:fe:
                    c0:dc:be:73:92:01:68:6c:c4:21:82:f7:46:05:23:39:
                    6a:1c:c5:06:81:91:ee:73:75:9b:67:0f:f5:3c:32:15:
                    32:c3:3d:25:05:0a:f2:a5:c0:08:4f:5e:33:d0:9d:71:
                    ee:56:9c:44:fd:12:85:0e:0d:95:c7:ad:c5:66:82:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e5:43:4a:d2:dc:c6:3b:17:64:9c:7f:cb:26:26:24:
        53:9e:fb:4d:49:13:e5:2a:a3:c6:52:3c:ea:94:c0:0b:
        bb:e8:22:38:fa:e4:17:8d:2a:75:44:13:dd:e6:73:6f:
        ac:9f:6c:03:d1:2f:7c:31:b7:5c:be:40:d9:90:f3:a0:
        76:62:74:ae:46:64:9b:eb:fb:8d:c5:fc:95:cc:8c:f6:
        20:48:f1:81:bb:85:3e:8c:10:c6:d4:7f:f7:f1:11:0b:
        a6:f4:5e:c5:b7:a8:9d:36:c1:66:9d:c7:9c:33:85:78:
        08:eb:6f:30:ce:e7:c6:e7:bd:a9:f2:7d:f1:61:90:ce:
        ed:1a:a0:76:7d:9e:31:e1:e9:2f:62:3f:22:c5:b4:b4:
        82:39:01:d6:d5:9a:4a:7f:af:6a:d8:c1:70:aa:ca:ad:
        c5:d5:f2:e6:4f:4b:6b:d6:54:1f:ac:1f:b0:3c:3e:cb:
        db:eb:49:ea:21:bf:65:27:c4:17:22:3f:b9:d5:85:d0:
        08:a3:54:e7:42:ac:5c:ab:37:e1:17:02:a5:88:b6:35:
        64:e6:9f:33:6b:f4:b9:64:a0:14:0d:fb:7f:39:d4:cd:
        a8:4f:b1:a9:7d:72:e6:5f:09:b3:19:9d:bd:d4:6d:1d:
        04:da:6f:59:8f:b6:19:06:7b:e6:d7:88:ee:b3:7e:85
    Fingerprint (SHA-256):
        C8:6C:81:AB:3D:3D:7E:33:F4:3F:2E:6D:31:54:5F:63:31:BF:2C:98:B6:4B:09:F4:F5:9F:CE:3E:37:CD:FA:CD
    Fingerprint (SHA1):
        77:CB:A9:DE:58:E1:2C:14:36:AA:98:8B:A5:54:E6:33:B0:A3:85:54
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6711: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153891 (0x1dee42a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:39 2017
            Not After : Mon May 02 15:39:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:00:69:44:48:d2:d6:f0:e2:6b:5e:5e:4f:90:e7:36:
                    5e:be:5c:7b:b6:5d:a9:7c:24:d8:ce:19:be:fe:43:44:
                    e3:29:ec:a1:90:b3:39:57:12:7a:b3:ef:27:d3:2f:c9:
                    99:ae:6f:c6:7f:9c:15:e2:33:96:5a:5c:ec:35:b1:41:
                    3e:a1:e0:bc:f4:53:4d:d2:d2:45:28:74:a6:03:ad:42:
                    0e:65:32:af:8a:15:cd:4f:ad:9a:3c:65:09:9b:69:cf:
                    95:5f:c7:e0:1a:af:17:19:42:9a:56:3d:17:54:28:36:
                    e4:21:a8:72:c4:5a:3d:cd:63:65:bc:2a:0f:b9:ac:1f:
                    56:bc:19:74:6f:a8:1d:0e:8b:ea:2b:96:8f:c9:3c:c6:
                    db:6f:28:2d:65:a3:27:dd:df:48:01:0f:26:18:f5:ce:
                    ec:e3:e9:98:d4:79:13:29:2f:56:58:ae:6f:cb:1f:cc:
                    5b:2f:78:1e:8f:e5:a1:4a:85:ac:ab:c6:d4:34:88:97:
                    0e:67:54:fb:6c:6c:49:cf:86:d2:e2:11:1c:45:88:7e:
                    b9:4a:86:b5:2c:01:9e:bd:99:a3:1f:88:b4:81:cf:2e:
                    5e:dc:74:4f:ff:53:cd:13:91:cc:14:23:4d:67:33:79:
                    cb:d4:83:67:9a:6d:51:6f:ea:d1:40:ba:17:c8:29:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:de:88:32:35:08:68:50:bf:70:84:8f:47:49:d7:7a:
        f8:97:12:13:a8:a6:a0:60:d5:73:d8:4c:7e:4b:14:3d:
        8d:02:a1:fd:2e:3c:b7:fd:58:78:e2:88:46:28:6b:27:
        5d:f9:6f:d4:70:e8:70:7c:93:e0:6e:52:a8:16:3d:f3:
        2f:c9:0c:4f:b7:6d:b6:62:11:c9:12:8d:6f:ca:99:de:
        cf:8a:50:37:e7:ab:83:b6:1f:13:59:60:b6:34:00:58:
        ec:72:6f:b6:e9:c6:70:3e:44:6d:08:f7:bd:7a:2d:4c:
        10:25:5b:60:ad:3a:eb:f2:29:52:47:0c:b0:a4:43:0e:
        32:df:88:bb:b2:89:0d:8d:46:c8:3f:7b:eb:b8:cc:f4:
        5e:2a:ed:84:16:ae:e3:4f:ce:d1:64:06:fd:06:22:26:
        09:e6:be:7e:23:83:da:24:46:59:33:d8:f4:e9:3b:c8:
        92:81:e9:cf:ef:c3:d0:c1:b9:82:62:05:51:46:da:0e:
        48:a3:aa:08:69:1e:31:6d:2a:93:25:d8:d4:6b:1b:62:
        f3:4d:fa:05:94:d3:87:cb:e8:fc:a3:b4:3a:2f:85:5e:
        64:8e:1d:eb:53:45:c4:49:88:48:05:2f:59:fd:df:6b:
        f2:e6:0a:a4:54:46:6f:f2:fd:85:f1:cb:06:0f:f0:06
    Fingerprint (SHA-256):
        A0:6B:63:04:BD:53:97:C2:EB:A6:98:1A:5F:2D:A4:7F:BD:D1:E1:5A:03:3C:1F:5A:C6:4A:80:7A:9C:1D:95:53
    Fingerprint (SHA1):
        73:AF:C7:7C:10:21:C8:AE:D3:64:50:E0:15:F7:1C:AF:36:6C:8B:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6712: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #6713: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #6714: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #6715: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153889 (0x1dee42a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:39:37 2017
            Not After : Mon May 02 15:39:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:33:8d:da:ba:39:0f:1c:f3:40:9b:9e:a1:4f:d9:34:
                    24:8c:83:b7:f3:af:df:21:c3:74:0e:0e:60:2b:8d:10:
                    0f:01:3b:26:48:c4:46:60:e4:c6:d0:89:ca:9b:9b:d8:
                    22:a4:97:36:8c:23:92:b2:6c:f1:2e:14:65:ad:b9:cb:
                    03:80:94:d9:91:43:4d:42:20:08:c2:04:bd:82:d8:00:
                    dc:95:6b:d5:3d:49:6e:99:70:31:b2:07:47:31:5e:1c:
                    83:f9:68:97:db:d2:4c:5b:92:5c:58:c2:d5:ee:25:3a:
                    27:49:30:3c:74:84:af:be:68:0f:25:78:27:c5:d2:87:
                    b7:07:bc:e8:5d:d6:80:a9:d6:f5:b2:80:5f:8b:63:46:
                    f3:3b:e1:ad:cc:06:6d:da:30:96:9a:58:82:d9:dd:f1:
                    ab:f5:c0:f2:74:ea:43:64:d5:ef:b2:43:0b:88:32:97:
                    6e:1f:51:13:4d:04:c7:db:fc:5e:88:29:34:2e:63:fe:
                    c0:dc:be:73:92:01:68:6c:c4:21:82:f7:46:05:23:39:
                    6a:1c:c5:06:81:91:ee:73:75:9b:67:0f:f5:3c:32:15:
                    32:c3:3d:25:05:0a:f2:a5:c0:08:4f:5e:33:d0:9d:71:
                    ee:56:9c:44:fd:12:85:0e:0d:95:c7:ad:c5:66:82:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e5:43:4a:d2:dc:c6:3b:17:64:9c:7f:cb:26:26:24:
        53:9e:fb:4d:49:13:e5:2a:a3:c6:52:3c:ea:94:c0:0b:
        bb:e8:22:38:fa:e4:17:8d:2a:75:44:13:dd:e6:73:6f:
        ac:9f:6c:03:d1:2f:7c:31:b7:5c:be:40:d9:90:f3:a0:
        76:62:74:ae:46:64:9b:eb:fb:8d:c5:fc:95:cc:8c:f6:
        20:48:f1:81:bb:85:3e:8c:10:c6:d4:7f:f7:f1:11:0b:
        a6:f4:5e:c5:b7:a8:9d:36:c1:66:9d:c7:9c:33:85:78:
        08:eb:6f:30:ce:e7:c6:e7:bd:a9:f2:7d:f1:61:90:ce:
        ed:1a:a0:76:7d:9e:31:e1:e9:2f:62:3f:22:c5:b4:b4:
        82:39:01:d6:d5:9a:4a:7f:af:6a:d8:c1:70:aa:ca:ad:
        c5:d5:f2:e6:4f:4b:6b:d6:54:1f:ac:1f:b0:3c:3e:cb:
        db:eb:49:ea:21:bf:65:27:c4:17:22:3f:b9:d5:85:d0:
        08:a3:54:e7:42:ac:5c:ab:37:e1:17:02:a5:88:b6:35:
        64:e6:9f:33:6b:f4:b9:64:a0:14:0d:fb:7f:39:d4:cd:
        a8:4f:b1:a9:7d:72:e6:5f:09:b3:19:9d:bd:d4:6d:1d:
        04:da:6f:59:8f:b6:19:06:7b:e6:d7:88:ee:b3:7e:85
    Fingerprint (SHA-256):
        C8:6C:81:AB:3D:3D:7E:33:F4:3F:2E:6D:31:54:5F:63:31:BF:2C:98:B6:4B:09:F4:F5:9F:CE:3E:37:CD:FA:CD
    Fingerprint (SHA1):
        77:CB:A9:DE:58:E1:2C:14:36:AA:98:8B:A5:54:E6:33:B0:A3:85:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6716: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153893 (0x1dee42a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:39:40 2017
            Not After : Mon May 02 15:39:40 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:ac:47:e2:51:f8:dd:3c:23:c4:73:dd:8a:62:8a:1a:
                    68:c4:dd:7c:d2:c0:f7:aa:27:87:63:af:a9:7b:8e:5a:
                    4f:8f:31:a6:f5:64:e9:01:df:fe:e1:85:35:67:7f:d3:
                    a7:5a:c3:3f:af:f3:9a:b5:12:30:ff:4e:c7:4b:a2:85:
                    d7:a8:d6:5b:1c:d1:84:af:c9:b4:3a:32:eb:6f:13:ff:
                    37:68:2f:09:4c:a5:34:2b:05:4e:a2:67:57:0b:2e:54:
                    04:fc:49:7e:0a:df:31:7a:5c:50:a1:37:8e:8f:51:54:
                    6b:a1:ce:f2:33:d7:44:00:3c:ed:81:8e:46:11:6f:d2:
                    cc:1a:2c:12:24:8c:18:43:c1:73:06:42:e9:23:14:e0:
                    96:fb:19:be:38:dc:cc:32:bb:15:8b:5f:d8:71:0b:fa:
                    31:f2:f7:83:26:92:c6:58:63:23:32:74:a6:91:03:0d:
                    30:d9:09:92:d8:42:cf:96:ba:e1:96:54:df:7a:5c:48:
                    2d:e3:b2:94:30:a1:0b:fb:48:50:6f:6f:5d:90:0f:b3:
                    11:a2:ec:2c:75:87:51:1d:69:80:73:5e:b5:ed:18:35:
                    c4:e5:c6:19:a7:44:95:b9:e0:30:60:c4:ee:88:46:d6:
                    b7:c3:0b:0e:0e:9d:9d:c8:79:be:ab:91:b8:62:2d:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:f2:71:1e:2b:2b:4f:e2:ac:b4:0d:bd:a3:44:df:6d:
        14:9b:92:43:40:e5:6d:78:74:65:29:63:75:77:20:77:
        20:9f:9d:7d:81:ff:29:67:4a:9e:9e:ee:a7:be:57:90:
        b5:56:9b:ba:9b:df:db:e5:a0:22:87:64:5e:db:0d:a6:
        3a:62:d9:7a:ae:d0:f1:03:9a:c3:fe:60:25:c5:35:81:
        62:9f:11:5b:4d:d0:d8:81:c9:fa:58:54:89:86:2d:90:
        ea:2d:31:d6:bc:d3:14:6a:8a:03:18:2d:fd:41:22:8d:
        ee:55:a0:6d:75:b3:80:7f:b8:ba:3f:63:35:41:d5:06:
        30:0e:07:fd:97:b2:83:88:6f:48:8d:50:00:6e:a9:a2:
        05:92:be:03:f3:be:71:9f:c1:85:4c:0a:0d:30:88:60:
        0a:85:0a:73:de:c8:42:b0:2b:17:12:4e:bf:86:1f:13:
        db:b3:36:9a:81:2c:1a:fa:fb:80:a2:8b:d6:f8:e8:9d:
        84:7c:ad:95:8c:da:ff:76:b0:14:00:0d:79:89:a1:1c:
        5b:df:98:1a:fc:07:bd:8e:4e:63:75:85:b5:a1:d9:db:
        0b:e4:53:a6:f8:47:c2:4f:af:46:97:87:b4:73:4b:cc:
        b8:6a:2f:e1:b2:03:b5:dc:f2:17:a9:e3:88:cb:4c:29
    Fingerprint (SHA-256):
        04:C2:0D:F9:3D:68:97:4F:A1:AB:F8:E0:43:35:53:17:7D:1B:5E:76:A9:46:68:A0:11:3D:3D:EE:16:DB:B5:E3
    Fingerprint (SHA1):
        6E:48:F2:57:60:88:02:AD:87:E8:DA:05:38:55:5B:69:BE:69:25:73
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #6717: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153889 (0x1dee42a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:39:37 2017
            Not After : Mon May 02 15:39:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:33:8d:da:ba:39:0f:1c:f3:40:9b:9e:a1:4f:d9:34:
                    24:8c:83:b7:f3:af:df:21:c3:74:0e:0e:60:2b:8d:10:
                    0f:01:3b:26:48:c4:46:60:e4:c6:d0:89:ca:9b:9b:d8:
                    22:a4:97:36:8c:23:92:b2:6c:f1:2e:14:65:ad:b9:cb:
                    03:80:94:d9:91:43:4d:42:20:08:c2:04:bd:82:d8:00:
                    dc:95:6b:d5:3d:49:6e:99:70:31:b2:07:47:31:5e:1c:
                    83:f9:68:97:db:d2:4c:5b:92:5c:58:c2:d5:ee:25:3a:
                    27:49:30:3c:74:84:af:be:68:0f:25:78:27:c5:d2:87:
                    b7:07:bc:e8:5d:d6:80:a9:d6:f5:b2:80:5f:8b:63:46:
                    f3:3b:e1:ad:cc:06:6d:da:30:96:9a:58:82:d9:dd:f1:
                    ab:f5:c0:f2:74:ea:43:64:d5:ef:b2:43:0b:88:32:97:
                    6e:1f:51:13:4d:04:c7:db:fc:5e:88:29:34:2e:63:fe:
                    c0:dc:be:73:92:01:68:6c:c4:21:82:f7:46:05:23:39:
                    6a:1c:c5:06:81:91:ee:73:75:9b:67:0f:f5:3c:32:15:
                    32:c3:3d:25:05:0a:f2:a5:c0:08:4f:5e:33:d0:9d:71:
                    ee:56:9c:44:fd:12:85:0e:0d:95:c7:ad:c5:66:82:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e5:43:4a:d2:dc:c6:3b:17:64:9c:7f:cb:26:26:24:
        53:9e:fb:4d:49:13:e5:2a:a3:c6:52:3c:ea:94:c0:0b:
        bb:e8:22:38:fa:e4:17:8d:2a:75:44:13:dd:e6:73:6f:
        ac:9f:6c:03:d1:2f:7c:31:b7:5c:be:40:d9:90:f3:a0:
        76:62:74:ae:46:64:9b:eb:fb:8d:c5:fc:95:cc:8c:f6:
        20:48:f1:81:bb:85:3e:8c:10:c6:d4:7f:f7:f1:11:0b:
        a6:f4:5e:c5:b7:a8:9d:36:c1:66:9d:c7:9c:33:85:78:
        08:eb:6f:30:ce:e7:c6:e7:bd:a9:f2:7d:f1:61:90:ce:
        ed:1a:a0:76:7d:9e:31:e1:e9:2f:62:3f:22:c5:b4:b4:
        82:39:01:d6:d5:9a:4a:7f:af:6a:d8:c1:70:aa:ca:ad:
        c5:d5:f2:e6:4f:4b:6b:d6:54:1f:ac:1f:b0:3c:3e:cb:
        db:eb:49:ea:21:bf:65:27:c4:17:22:3f:b9:d5:85:d0:
        08:a3:54:e7:42:ac:5c:ab:37:e1:17:02:a5:88:b6:35:
        64:e6:9f:33:6b:f4:b9:64:a0:14:0d:fb:7f:39:d4:cd:
        a8:4f:b1:a9:7d:72:e6:5f:09:b3:19:9d:bd:d4:6d:1d:
        04:da:6f:59:8f:b6:19:06:7b:e6:d7:88:ee:b3:7e:85
    Fingerprint (SHA-256):
        C8:6C:81:AB:3D:3D:7E:33:F4:3F:2E:6D:31:54:5F:63:31:BF:2C:98:B6:4B:09:F4:F5:9F:CE:3E:37:CD:FA:CD
    Fingerprint (SHA1):
        77:CB:A9:DE:58:E1:2C:14:36:AA:98:8B:A5:54:E6:33:B0:A3:85:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6718: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #6719: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #6720: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #6721: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #6722: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #6723: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153894 (0x1dee42a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:39:40 2017
            Not After : Mon May 02 15:39:40 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:29:ac:e2:8d:e8:aa:02:5e:e6:39:29:be:ed:d7:ab:
                    cf:9e:bc:b7:11:20:50:f3:8d:f6:de:0e:82:d7:89:a9:
                    77:6e:0d:7c:05:28:fb:ef:dc:6c:1d:48:3c:03:d9:10:
                    44:8a:bc:4b:5e:57:3c:5b:dd:da:a3:c0:14:ea:71:4f:
                    dc:be:70:12:cb:f7:30:72:94:72:38:ea:fd:c4:0a:12:
                    01:9f:40:bf:3f:e7:52:b8:c8:be:12:da:f5:27:da:3a:
                    bd:4d:c6:4c:e5:54:bf:cc:06:a4:7d:9c:fd:83:ce:f4:
                    e0:c2:63:7c:08:f9:04:78:a3:56:9a:d2:f4:cb:8c:21:
                    ac:17:f6:cd:c7:fc:e6:62:79:89:dd:50:bb:9e:bb:36:
                    ea:ef:3c:5e:ba:fd:c9:70:e1:94:69:6e:09:75:24:2f:
                    c6:32:4a:aa:f3:a5:72:22:ec:62:df:aa:56:8c:62:a8:
                    59:d8:b6:46:ab:c4:57:0c:e8:e8:c2:3f:89:03:f4:f4:
                    ad:13:0a:17:28:c4:53:56:28:78:dd:34:98:50:fc:35:
                    3b:e5:4b:b5:81:17:43:71:3a:eb:f1:79:1d:0a:c5:0d:
                    f3:d4:45:1e:10:1f:e0:60:56:23:89:2b:34:c0:a4:9a:
                    d9:71:46:18:51:16:f8:0f:02:a9:16:84:e5:3f:ee:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:df:5f:74:27:e7:aa:56:11:1b:5f:71:e8:f7:13:2f:
        ec:5b:fb:be:3a:36:62:cb:56:6f:b1:f7:86:fa:e4:00:
        d6:7d:f7:17:79:21:9c:a8:39:76:69:db:97:f8:01:03:
        e8:87:ba:c4:96:46:91:9c:d5:4e:ef:a9:b1:55:6f:e5:
        1c:4a:5c:d4:9c:e0:7c:9a:2b:c4:11:5f:4f:88:96:8b:
        52:96:2e:bb:12:1a:50:b0:42:d7:21:52:bd:10:43:4a:
        c8:0e:42:ac:66:71:e9:5c:d0:c5:2c:37:69:5f:6e:1e:
        eb:53:df:e4:b9:aa:7a:0c:2a:10:19:e6:d9:83:02:4e:
        b6:d8:1f:82:c7:d9:6f:04:10:ce:40:a0:8c:9a:8f:43:
        d0:9a:60:e5:68:bf:94:2d:9b:1e:43:65:04:7d:8d:9c:
        4d:3a:41:4f:ee:a6:41:8c:2f:59:d2:86:27:c4:ed:99:
        81:1a:9c:62:28:86:1e:ab:7e:3a:da:a3:c7:4c:f7:82:
        39:40:97:2f:c1:5e:8f:c7:4c:d7:d9:27:2e:86:0c:4f:
        8f:13:30:92:46:bf:a2:30:7e:b1:70:15:73:12:af:92:
        04:25:cf:fd:27:f3:9d:99:b9:cf:b3:3b:6b:7f:e9:e3:
        9b:59:93:39:f6:ef:99:f2:d1:02:ed:84:62:1c:79:84
    Fingerprint (SHA-256):
        F3:E3:9F:11:B2:A4:D6:72:A4:1B:6A:33:DB:98:39:62:F3:6B:19:40:FA:82:F5:51:AA:02:D9:40:7B:F9:34:B4
    Fingerprint (SHA1):
        CE:76:27:F2:DB:6B:CE:2F:DD:0E:67:20:0B:38:55:B0:19:2D:B6:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6724: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #6725: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #6726: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #6727: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #6728: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6729: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6730: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6731: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6732: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6733: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6734: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6735: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6736: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6737: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6738: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6739: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6740: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6741: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6742: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #6743: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6744: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6745: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6746: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6747: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 29804 at Tue May  2 15:39:42 UTC 2017
kill -USR1 29804
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 29804 killed at Tue May  2 15:39:42 UTC 2017
httpserv starting at Tue May  2 15:39:42 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:39:42 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 13019 >/dev/null 2>/dev/null
httpserv with PID 13019 found at Tue May  2 15:39:42 UTC 2017
httpserv with PID 13019 started at Tue May  2 15:39:42 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6748: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153896 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6749: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6750: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6751: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153897 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6752: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6753: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6754: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6755: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153898 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6756: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6757: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153899 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6758: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6759: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6760: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6761: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6762: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502153900   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6763: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6764: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6765: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6766: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6767: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153897 (0x1dee42a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:43 2017
            Not After : Mon May 02 15:39:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:26:02:b7:7f:e6:71:ac:51:a5:8a:99:17:d9:80:02:
                    8e:37:e8:cf:d4:8b:08:5c:5c:e1:36:c4:36:d9:5f:c5:
                    ac:d9:09:15:10:89:0e:b1:a0:6b:ad:65:70:a4:6a:3c:
                    14:7d:62:5a:50:ab:3c:63:e2:33:44:e6:ab:b2:70:d9:
                    e3:e7:ab:c3:d3:ef:a5:bb:dd:dd:e8:b4:3b:67:ea:bb:
                    ed:0b:67:20:43:5b:36:5d:be:4d:7d:fc:49:25:93:40:
                    02:c8:87:14:36:64:24:a8:e2:a9:9a:23:c7:98:7a:4c:
                    c4:4c:9a:a3:72:be:dd:f8:5a:12:54:61:bd:7c:7b:3f:
                    6c:39:c2:b8:60:9a:e1:ae:ba:79:d0:5c:af:4a:6d:d9:
                    6f:02:b2:33:9e:c7:e0:1d:25:0c:23:bf:12:2e:bf:90:
                    28:22:0e:1a:84:65:d9:ba:30:8a:bc:b9:d7:02:5b:4a:
                    d3:07:b1:de:43:b2:21:b7:6b:b5:ad:b8:f8:aa:ba:5e:
                    50:59:4c:f3:ff:ee:a9:04:6e:ac:9d:0b:46:94:82:dc:
                    38:24:b3:b3:17:e0:41:48:23:75:5d:86:c1:2f:2b:b9:
                    40:12:cd:77:9b:23:3d:88:ca:b0:dd:aa:a1:c7:47:44:
                    40:a4:bc:72:4c:49:04:13:78:ec:52:98:e4:dc:3d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:41:a3:41:0b:8d:c3:48:44:15:8e:25:9f:70:f6:3f:
        8f:3f:ce:58:99:1d:d9:0e:f8:1e:a1:8f:2b:f1:86:77:
        62:e5:10:38:d1:c4:6a:cd:a3:f7:fd:22:2e:4a:c6:48:
        a8:0a:15:84:8b:41:00:7c:d6:79:5f:80:e9:9b:29:91:
        46:62:b1:a6:74:e8:5c:db:78:98:ea:34:9e:26:28:87:
        ff:3e:4c:52:1c:3a:d8:d8:68:ae:3b:b7:67:b4:7d:fd:
        eb:3d:0f:b0:4c:fa:11:cb:88:66:bc:c6:ab:04:35:29:
        83:9c:e0:5a:9f:83:87:cb:4b:7d:05:48:2b:8c:6d:a2:
        a6:30:55:12:ea:46:35:a9:f0:52:c7:8d:73:ae:7c:7f:
        9b:51:ba:33:87:1b:1a:dd:af:c4:8f:41:59:93:a7:3f:
        9f:e4:8b:bb:c7:2e:6f:63:5f:fa:32:4a:50:a0:e3:21:
        51:db:94:6b:e9:b6:3e:21:24:8e:6b:89:01:8e:2b:da:
        82:32:8b:d4:9e:27:d8:dd:5d:08:0a:79:5d:a4:9b:82:
        55:ab:7e:86:58:7a:bb:83:aa:8d:a3:c0:fd:59:70:ac:
        6a:fa:84:4d:f2:fd:99:ed:76:d2:b6:00:6b:91:01:0e:
        32:fa:e6:d8:6c:49:eb:01:8f:2f:17:6b:a7:87:51:c2
    Fingerprint (SHA-256):
        E3:8E:9E:B7:10:93:04:27:F2:E4:91:E4:44:1B:FD:56:70:B2:38:41:EC:7B:43:5D:6A:25:49:2E:A4:57:36:EC
    Fingerprint (SHA1):
        F1:DE:5B:FA:93:D0:DD:0C:7B:15:40:67:89:6C:39:61:7C:FF:6E:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6768: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153896 (0x1dee42a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:42 2017
            Not After : Mon May 02 15:39:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:92:16:2d:a3:2e:c3:b8:4e:a3:b0:39:6a:3c:29:4b:
                    e9:c6:60:e0:71:4c:be:02:9d:08:f8:ee:33:60:ab:71:
                    81:b3:f1:d2:ee:a0:52:a2:fa:fa:05:52:94:84:2e:90:
                    73:3f:98:f0:27:35:2f:c4:d3:65:1e:bd:e5:24:37:a4:
                    07:18:1e:c8:dd:a0:25:fc:21:5a:fd:b5:ae:40:1e:a1:
                    18:49:01:fe:7a:92:c0:30:5f:5a:3d:71:ca:2c:0b:ea:
                    ec:6c:74:8e:a7:c5:d8:0e:5c:5c:8a:16:6c:a4:08:31:
                    d9:2d:8c:2a:45:eb:36:48:a9:ea:10:b1:2b:6f:bc:85:
                    2a:f7:b5:b4:db:61:44:42:b8:03:4d:ee:e9:43:29:a7:
                    cd:ce:68:39:3e:84:18:1c:74:1b:d6:1b:b3:01:f8:b1:
                    f5:08:f6:ab:ed:c1:04:44:d1:12:93:e8:c7:7a:21:78:
                    8e:71:aa:4d:5d:e3:7b:10:57:00:c1:2c:e5:9f:62:c0:
                    0f:5a:96:69:b2:41:e5:90:a8:75:af:01:fc:3d:69:ed:
                    f7:c5:b0:87:78:e4:d2:e4:89:2f:5f:62:47:f1:63:1c:
                    2d:79:ef:28:f6:e2:5b:68:b5:91:a6:8e:dd:4f:c4:f7:
                    71:02:3d:de:f0:53:da:40:44:77:08:9c:e1:be:19:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:c7:01:f9:9c:3b:00:ed:bb:44:b4:32:2b:d0:63:2b:
        ed:6d:0b:0a:8f:bd:8d:a2:88:8e:b4:eb:3f:82:33:40:
        c7:a9:1a:41:e0:8e:5e:48:35:0b:69:65:77:bd:0e:2f:
        19:c3:f9:be:17:ac:17:ed:34:d9:87:fd:62:39:c7:f8:
        63:6c:3a:c0:68:f6:69:75:f8:69:5f:68:0d:44:17:58:
        9e:c0:1a:51:d6:ae:ac:4a:15:b6:bb:a1:d8:fc:a2:38:
        a6:95:05:22:4c:3c:fc:f9:c3:b4:aa:21:52:da:3b:5c:
        90:c1:eb:11:ed:93:64:68:d8:36:37:92:e0:4e:fa:96:
        5a:76:5a:25:2e:8f:83:14:86:e6:f3:6d:1d:33:3a:df:
        91:77:a7:ef:44:1c:88:50:61:c8:8d:87:0b:87:40:ed:
        12:b3:a7:11:b2:f0:fd:ac:6e:84:a6:74:72:57:43:2f:
        16:d7:9b:5b:3b:90:d3:96:92:18:24:93:b6:74:b5:a7:
        37:1d:75:1b:d4:b1:cf:e1:2c:80:ba:c4:d4:0f:89:5c:
        bd:f7:f1:50:b4:38:6d:24:f6:6f:d2:8b:f0:c3:61:a8:
        23:ab:31:d2:f6:1f:41:48:f7:d1:55:ef:25:17:9d:e8:
        33:1e:e5:07:c7:01:61:25:b7:e8:c1:b8:6b:54:96:d3
    Fingerprint (SHA-256):
        E3:A3:9A:48:DB:BB:CF:DC:48:4F:11:2F:2D:AF:15:2E:F5:65:79:DE:FC:B2:6D:14:3C:48:5C:8A:A4:6C:51:DA
    Fingerprint (SHA1):
        3D:0D:89:2E:C3:78:57:A4:5D:7B:A0:80:24:F2:70:6E:66:63:8C:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6769: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6770: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6771: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6772: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153896 (0x1dee42a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:42 2017
            Not After : Mon May 02 15:39:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:92:16:2d:a3:2e:c3:b8:4e:a3:b0:39:6a:3c:29:4b:
                    e9:c6:60:e0:71:4c:be:02:9d:08:f8:ee:33:60:ab:71:
                    81:b3:f1:d2:ee:a0:52:a2:fa:fa:05:52:94:84:2e:90:
                    73:3f:98:f0:27:35:2f:c4:d3:65:1e:bd:e5:24:37:a4:
                    07:18:1e:c8:dd:a0:25:fc:21:5a:fd:b5:ae:40:1e:a1:
                    18:49:01:fe:7a:92:c0:30:5f:5a:3d:71:ca:2c:0b:ea:
                    ec:6c:74:8e:a7:c5:d8:0e:5c:5c:8a:16:6c:a4:08:31:
                    d9:2d:8c:2a:45:eb:36:48:a9:ea:10:b1:2b:6f:bc:85:
                    2a:f7:b5:b4:db:61:44:42:b8:03:4d:ee:e9:43:29:a7:
                    cd:ce:68:39:3e:84:18:1c:74:1b:d6:1b:b3:01:f8:b1:
                    f5:08:f6:ab:ed:c1:04:44:d1:12:93:e8:c7:7a:21:78:
                    8e:71:aa:4d:5d:e3:7b:10:57:00:c1:2c:e5:9f:62:c0:
                    0f:5a:96:69:b2:41:e5:90:a8:75:af:01:fc:3d:69:ed:
                    f7:c5:b0:87:78:e4:d2:e4:89:2f:5f:62:47:f1:63:1c:
                    2d:79:ef:28:f6:e2:5b:68:b5:91:a6:8e:dd:4f:c4:f7:
                    71:02:3d:de:f0:53:da:40:44:77:08:9c:e1:be:19:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:c7:01:f9:9c:3b:00:ed:bb:44:b4:32:2b:d0:63:2b:
        ed:6d:0b:0a:8f:bd:8d:a2:88:8e:b4:eb:3f:82:33:40:
        c7:a9:1a:41:e0:8e:5e:48:35:0b:69:65:77:bd:0e:2f:
        19:c3:f9:be:17:ac:17:ed:34:d9:87:fd:62:39:c7:f8:
        63:6c:3a:c0:68:f6:69:75:f8:69:5f:68:0d:44:17:58:
        9e:c0:1a:51:d6:ae:ac:4a:15:b6:bb:a1:d8:fc:a2:38:
        a6:95:05:22:4c:3c:fc:f9:c3:b4:aa:21:52:da:3b:5c:
        90:c1:eb:11:ed:93:64:68:d8:36:37:92:e0:4e:fa:96:
        5a:76:5a:25:2e:8f:83:14:86:e6:f3:6d:1d:33:3a:df:
        91:77:a7:ef:44:1c:88:50:61:c8:8d:87:0b:87:40:ed:
        12:b3:a7:11:b2:f0:fd:ac:6e:84:a6:74:72:57:43:2f:
        16:d7:9b:5b:3b:90:d3:96:92:18:24:93:b6:74:b5:a7:
        37:1d:75:1b:d4:b1:cf:e1:2c:80:ba:c4:d4:0f:89:5c:
        bd:f7:f1:50:b4:38:6d:24:f6:6f:d2:8b:f0:c3:61:a8:
        23:ab:31:d2:f6:1f:41:48:f7:d1:55:ef:25:17:9d:e8:
        33:1e:e5:07:c7:01:61:25:b7:e8:c1:b8:6b:54:96:d3
    Fingerprint (SHA-256):
        E3:A3:9A:48:DB:BB:CF:DC:48:4F:11:2F:2D:AF:15:2E:F5:65:79:DE:FC:B2:6D:14:3C:48:5C:8A:A4:6C:51:DA
    Fingerprint (SHA1):
        3D:0D:89:2E:C3:78:57:A4:5D:7B:A0:80:24:F2:70:6E:66:63:8C:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6773: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153897 (0x1dee42a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:43 2017
            Not After : Mon May 02 15:39:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:26:02:b7:7f:e6:71:ac:51:a5:8a:99:17:d9:80:02:
                    8e:37:e8:cf:d4:8b:08:5c:5c:e1:36:c4:36:d9:5f:c5:
                    ac:d9:09:15:10:89:0e:b1:a0:6b:ad:65:70:a4:6a:3c:
                    14:7d:62:5a:50:ab:3c:63:e2:33:44:e6:ab:b2:70:d9:
                    e3:e7:ab:c3:d3:ef:a5:bb:dd:dd:e8:b4:3b:67:ea:bb:
                    ed:0b:67:20:43:5b:36:5d:be:4d:7d:fc:49:25:93:40:
                    02:c8:87:14:36:64:24:a8:e2:a9:9a:23:c7:98:7a:4c:
                    c4:4c:9a:a3:72:be:dd:f8:5a:12:54:61:bd:7c:7b:3f:
                    6c:39:c2:b8:60:9a:e1:ae:ba:79:d0:5c:af:4a:6d:d9:
                    6f:02:b2:33:9e:c7:e0:1d:25:0c:23:bf:12:2e:bf:90:
                    28:22:0e:1a:84:65:d9:ba:30:8a:bc:b9:d7:02:5b:4a:
                    d3:07:b1:de:43:b2:21:b7:6b:b5:ad:b8:f8:aa:ba:5e:
                    50:59:4c:f3:ff:ee:a9:04:6e:ac:9d:0b:46:94:82:dc:
                    38:24:b3:b3:17:e0:41:48:23:75:5d:86:c1:2f:2b:b9:
                    40:12:cd:77:9b:23:3d:88:ca:b0:dd:aa:a1:c7:47:44:
                    40:a4:bc:72:4c:49:04:13:78:ec:52:98:e4:dc:3d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:41:a3:41:0b:8d:c3:48:44:15:8e:25:9f:70:f6:3f:
        8f:3f:ce:58:99:1d:d9:0e:f8:1e:a1:8f:2b:f1:86:77:
        62:e5:10:38:d1:c4:6a:cd:a3:f7:fd:22:2e:4a:c6:48:
        a8:0a:15:84:8b:41:00:7c:d6:79:5f:80:e9:9b:29:91:
        46:62:b1:a6:74:e8:5c:db:78:98:ea:34:9e:26:28:87:
        ff:3e:4c:52:1c:3a:d8:d8:68:ae:3b:b7:67:b4:7d:fd:
        eb:3d:0f:b0:4c:fa:11:cb:88:66:bc:c6:ab:04:35:29:
        83:9c:e0:5a:9f:83:87:cb:4b:7d:05:48:2b:8c:6d:a2:
        a6:30:55:12:ea:46:35:a9:f0:52:c7:8d:73:ae:7c:7f:
        9b:51:ba:33:87:1b:1a:dd:af:c4:8f:41:59:93:a7:3f:
        9f:e4:8b:bb:c7:2e:6f:63:5f:fa:32:4a:50:a0:e3:21:
        51:db:94:6b:e9:b6:3e:21:24:8e:6b:89:01:8e:2b:da:
        82:32:8b:d4:9e:27:d8:dd:5d:08:0a:79:5d:a4:9b:82:
        55:ab:7e:86:58:7a:bb:83:aa:8d:a3:c0:fd:59:70:ac:
        6a:fa:84:4d:f2:fd:99:ed:76:d2:b6:00:6b:91:01:0e:
        32:fa:e6:d8:6c:49:eb:01:8f:2f:17:6b:a7:87:51:c2
    Fingerprint (SHA-256):
        E3:8E:9E:B7:10:93:04:27:F2:E4:91:E4:44:1B:FD:56:70:B2:38:41:EC:7B:43:5D:6A:25:49:2E:A4:57:36:EC
    Fingerprint (SHA1):
        F1:DE:5B:FA:93:D0:DD:0C:7B:15:40:67:89:6C:39:61:7C:FF:6E:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6774: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6775: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6776: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6777: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6778: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6779: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153897 (0x1dee42a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:43 2017
            Not After : Mon May 02 15:39:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:26:02:b7:7f:e6:71:ac:51:a5:8a:99:17:d9:80:02:
                    8e:37:e8:cf:d4:8b:08:5c:5c:e1:36:c4:36:d9:5f:c5:
                    ac:d9:09:15:10:89:0e:b1:a0:6b:ad:65:70:a4:6a:3c:
                    14:7d:62:5a:50:ab:3c:63:e2:33:44:e6:ab:b2:70:d9:
                    e3:e7:ab:c3:d3:ef:a5:bb:dd:dd:e8:b4:3b:67:ea:bb:
                    ed:0b:67:20:43:5b:36:5d:be:4d:7d:fc:49:25:93:40:
                    02:c8:87:14:36:64:24:a8:e2:a9:9a:23:c7:98:7a:4c:
                    c4:4c:9a:a3:72:be:dd:f8:5a:12:54:61:bd:7c:7b:3f:
                    6c:39:c2:b8:60:9a:e1:ae:ba:79:d0:5c:af:4a:6d:d9:
                    6f:02:b2:33:9e:c7:e0:1d:25:0c:23:bf:12:2e:bf:90:
                    28:22:0e:1a:84:65:d9:ba:30:8a:bc:b9:d7:02:5b:4a:
                    d3:07:b1:de:43:b2:21:b7:6b:b5:ad:b8:f8:aa:ba:5e:
                    50:59:4c:f3:ff:ee:a9:04:6e:ac:9d:0b:46:94:82:dc:
                    38:24:b3:b3:17:e0:41:48:23:75:5d:86:c1:2f:2b:b9:
                    40:12:cd:77:9b:23:3d:88:ca:b0:dd:aa:a1:c7:47:44:
                    40:a4:bc:72:4c:49:04:13:78:ec:52:98:e4:dc:3d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:41:a3:41:0b:8d:c3:48:44:15:8e:25:9f:70:f6:3f:
        8f:3f:ce:58:99:1d:d9:0e:f8:1e:a1:8f:2b:f1:86:77:
        62:e5:10:38:d1:c4:6a:cd:a3:f7:fd:22:2e:4a:c6:48:
        a8:0a:15:84:8b:41:00:7c:d6:79:5f:80:e9:9b:29:91:
        46:62:b1:a6:74:e8:5c:db:78:98:ea:34:9e:26:28:87:
        ff:3e:4c:52:1c:3a:d8:d8:68:ae:3b:b7:67:b4:7d:fd:
        eb:3d:0f:b0:4c:fa:11:cb:88:66:bc:c6:ab:04:35:29:
        83:9c:e0:5a:9f:83:87:cb:4b:7d:05:48:2b:8c:6d:a2:
        a6:30:55:12:ea:46:35:a9:f0:52:c7:8d:73:ae:7c:7f:
        9b:51:ba:33:87:1b:1a:dd:af:c4:8f:41:59:93:a7:3f:
        9f:e4:8b:bb:c7:2e:6f:63:5f:fa:32:4a:50:a0:e3:21:
        51:db:94:6b:e9:b6:3e:21:24:8e:6b:89:01:8e:2b:da:
        82:32:8b:d4:9e:27:d8:dd:5d:08:0a:79:5d:a4:9b:82:
        55:ab:7e:86:58:7a:bb:83:aa:8d:a3:c0:fd:59:70:ac:
        6a:fa:84:4d:f2:fd:99:ed:76:d2:b6:00:6b:91:01:0e:
        32:fa:e6:d8:6c:49:eb:01:8f:2f:17:6b:a7:87:51:c2
    Fingerprint (SHA-256):
        E3:8E:9E:B7:10:93:04:27:F2:E4:91:E4:44:1B:FD:56:70:B2:38:41:EC:7B:43:5D:6A:25:49:2E:A4:57:36:EC
    Fingerprint (SHA1):
        F1:DE:5B:FA:93:D0:DD:0C:7B:15:40:67:89:6C:39:61:7C:FF:6E:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6780: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153897 (0x1dee42a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:39:43 2017
            Not After : Mon May 02 15:39:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:26:02:b7:7f:e6:71:ac:51:a5:8a:99:17:d9:80:02:
                    8e:37:e8:cf:d4:8b:08:5c:5c:e1:36:c4:36:d9:5f:c5:
                    ac:d9:09:15:10:89:0e:b1:a0:6b:ad:65:70:a4:6a:3c:
                    14:7d:62:5a:50:ab:3c:63:e2:33:44:e6:ab:b2:70:d9:
                    e3:e7:ab:c3:d3:ef:a5:bb:dd:dd:e8:b4:3b:67:ea:bb:
                    ed:0b:67:20:43:5b:36:5d:be:4d:7d:fc:49:25:93:40:
                    02:c8:87:14:36:64:24:a8:e2:a9:9a:23:c7:98:7a:4c:
                    c4:4c:9a:a3:72:be:dd:f8:5a:12:54:61:bd:7c:7b:3f:
                    6c:39:c2:b8:60:9a:e1:ae:ba:79:d0:5c:af:4a:6d:d9:
                    6f:02:b2:33:9e:c7:e0:1d:25:0c:23:bf:12:2e:bf:90:
                    28:22:0e:1a:84:65:d9:ba:30:8a:bc:b9:d7:02:5b:4a:
                    d3:07:b1:de:43:b2:21:b7:6b:b5:ad:b8:f8:aa:ba:5e:
                    50:59:4c:f3:ff:ee:a9:04:6e:ac:9d:0b:46:94:82:dc:
                    38:24:b3:b3:17:e0:41:48:23:75:5d:86:c1:2f:2b:b9:
                    40:12:cd:77:9b:23:3d:88:ca:b0:dd:aa:a1:c7:47:44:
                    40:a4:bc:72:4c:49:04:13:78:ec:52:98:e4:dc:3d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:41:a3:41:0b:8d:c3:48:44:15:8e:25:9f:70:f6:3f:
        8f:3f:ce:58:99:1d:d9:0e:f8:1e:a1:8f:2b:f1:86:77:
        62:e5:10:38:d1:c4:6a:cd:a3:f7:fd:22:2e:4a:c6:48:
        a8:0a:15:84:8b:41:00:7c:d6:79:5f:80:e9:9b:29:91:
        46:62:b1:a6:74:e8:5c:db:78:98:ea:34:9e:26:28:87:
        ff:3e:4c:52:1c:3a:d8:d8:68:ae:3b:b7:67:b4:7d:fd:
        eb:3d:0f:b0:4c:fa:11:cb:88:66:bc:c6:ab:04:35:29:
        83:9c:e0:5a:9f:83:87:cb:4b:7d:05:48:2b:8c:6d:a2:
        a6:30:55:12:ea:46:35:a9:f0:52:c7:8d:73:ae:7c:7f:
        9b:51:ba:33:87:1b:1a:dd:af:c4:8f:41:59:93:a7:3f:
        9f:e4:8b:bb:c7:2e:6f:63:5f:fa:32:4a:50:a0:e3:21:
        51:db:94:6b:e9:b6:3e:21:24:8e:6b:89:01:8e:2b:da:
        82:32:8b:d4:9e:27:d8:dd:5d:08:0a:79:5d:a4:9b:82:
        55:ab:7e:86:58:7a:bb:83:aa:8d:a3:c0:fd:59:70:ac:
        6a:fa:84:4d:f2:fd:99:ed:76:d2:b6:00:6b:91:01:0e:
        32:fa:e6:d8:6c:49:eb:01:8f:2f:17:6b:a7:87:51:c2
    Fingerprint (SHA-256):
        E3:8E:9E:B7:10:93:04:27:F2:E4:91:E4:44:1B:FD:56:70:B2:38:41:EC:7B:43:5D:6A:25:49:2E:A4:57:36:EC
    Fingerprint (SHA1):
        F1:DE:5B:FA:93:D0:DD:0C:7B:15:40:67:89:6C:39:61:7C:FF:6E:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6781: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6782: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6783: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6784: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6785: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6786: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153896 (0x1dee42a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:42 2017
            Not After : Mon May 02 15:39:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:92:16:2d:a3:2e:c3:b8:4e:a3:b0:39:6a:3c:29:4b:
                    e9:c6:60:e0:71:4c:be:02:9d:08:f8:ee:33:60:ab:71:
                    81:b3:f1:d2:ee:a0:52:a2:fa:fa:05:52:94:84:2e:90:
                    73:3f:98:f0:27:35:2f:c4:d3:65:1e:bd:e5:24:37:a4:
                    07:18:1e:c8:dd:a0:25:fc:21:5a:fd:b5:ae:40:1e:a1:
                    18:49:01:fe:7a:92:c0:30:5f:5a:3d:71:ca:2c:0b:ea:
                    ec:6c:74:8e:a7:c5:d8:0e:5c:5c:8a:16:6c:a4:08:31:
                    d9:2d:8c:2a:45:eb:36:48:a9:ea:10:b1:2b:6f:bc:85:
                    2a:f7:b5:b4:db:61:44:42:b8:03:4d:ee:e9:43:29:a7:
                    cd:ce:68:39:3e:84:18:1c:74:1b:d6:1b:b3:01:f8:b1:
                    f5:08:f6:ab:ed:c1:04:44:d1:12:93:e8:c7:7a:21:78:
                    8e:71:aa:4d:5d:e3:7b:10:57:00:c1:2c:e5:9f:62:c0:
                    0f:5a:96:69:b2:41:e5:90:a8:75:af:01:fc:3d:69:ed:
                    f7:c5:b0:87:78:e4:d2:e4:89:2f:5f:62:47:f1:63:1c:
                    2d:79:ef:28:f6:e2:5b:68:b5:91:a6:8e:dd:4f:c4:f7:
                    71:02:3d:de:f0:53:da:40:44:77:08:9c:e1:be:19:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:c7:01:f9:9c:3b:00:ed:bb:44:b4:32:2b:d0:63:2b:
        ed:6d:0b:0a:8f:bd:8d:a2:88:8e:b4:eb:3f:82:33:40:
        c7:a9:1a:41:e0:8e:5e:48:35:0b:69:65:77:bd:0e:2f:
        19:c3:f9:be:17:ac:17:ed:34:d9:87:fd:62:39:c7:f8:
        63:6c:3a:c0:68:f6:69:75:f8:69:5f:68:0d:44:17:58:
        9e:c0:1a:51:d6:ae:ac:4a:15:b6:bb:a1:d8:fc:a2:38:
        a6:95:05:22:4c:3c:fc:f9:c3:b4:aa:21:52:da:3b:5c:
        90:c1:eb:11:ed:93:64:68:d8:36:37:92:e0:4e:fa:96:
        5a:76:5a:25:2e:8f:83:14:86:e6:f3:6d:1d:33:3a:df:
        91:77:a7:ef:44:1c:88:50:61:c8:8d:87:0b:87:40:ed:
        12:b3:a7:11:b2:f0:fd:ac:6e:84:a6:74:72:57:43:2f:
        16:d7:9b:5b:3b:90:d3:96:92:18:24:93:b6:74:b5:a7:
        37:1d:75:1b:d4:b1:cf:e1:2c:80:ba:c4:d4:0f:89:5c:
        bd:f7:f1:50:b4:38:6d:24:f6:6f:d2:8b:f0:c3:61:a8:
        23:ab:31:d2:f6:1f:41:48:f7:d1:55:ef:25:17:9d:e8:
        33:1e:e5:07:c7:01:61:25:b7:e8:c1:b8:6b:54:96:d3
    Fingerprint (SHA-256):
        E3:A3:9A:48:DB:BB:CF:DC:48:4F:11:2F:2D:AF:15:2E:F5:65:79:DE:FC:B2:6D:14:3C:48:5C:8A:A4:6C:51:DA
    Fingerprint (SHA1):
        3D:0D:89:2E:C3:78:57:A4:5D:7B:A0:80:24:F2:70:6E:66:63:8C:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6787: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153896 (0x1dee42a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:39:42 2017
            Not After : Mon May 02 15:39:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:92:16:2d:a3:2e:c3:b8:4e:a3:b0:39:6a:3c:29:4b:
                    e9:c6:60:e0:71:4c:be:02:9d:08:f8:ee:33:60:ab:71:
                    81:b3:f1:d2:ee:a0:52:a2:fa:fa:05:52:94:84:2e:90:
                    73:3f:98:f0:27:35:2f:c4:d3:65:1e:bd:e5:24:37:a4:
                    07:18:1e:c8:dd:a0:25:fc:21:5a:fd:b5:ae:40:1e:a1:
                    18:49:01:fe:7a:92:c0:30:5f:5a:3d:71:ca:2c:0b:ea:
                    ec:6c:74:8e:a7:c5:d8:0e:5c:5c:8a:16:6c:a4:08:31:
                    d9:2d:8c:2a:45:eb:36:48:a9:ea:10:b1:2b:6f:bc:85:
                    2a:f7:b5:b4:db:61:44:42:b8:03:4d:ee:e9:43:29:a7:
                    cd:ce:68:39:3e:84:18:1c:74:1b:d6:1b:b3:01:f8:b1:
                    f5:08:f6:ab:ed:c1:04:44:d1:12:93:e8:c7:7a:21:78:
                    8e:71:aa:4d:5d:e3:7b:10:57:00:c1:2c:e5:9f:62:c0:
                    0f:5a:96:69:b2:41:e5:90:a8:75:af:01:fc:3d:69:ed:
                    f7:c5:b0:87:78:e4:d2:e4:89:2f:5f:62:47:f1:63:1c:
                    2d:79:ef:28:f6:e2:5b:68:b5:91:a6:8e:dd:4f:c4:f7:
                    71:02:3d:de:f0:53:da:40:44:77:08:9c:e1:be:19:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:c7:01:f9:9c:3b:00:ed:bb:44:b4:32:2b:d0:63:2b:
        ed:6d:0b:0a:8f:bd:8d:a2:88:8e:b4:eb:3f:82:33:40:
        c7:a9:1a:41:e0:8e:5e:48:35:0b:69:65:77:bd:0e:2f:
        19:c3:f9:be:17:ac:17:ed:34:d9:87:fd:62:39:c7:f8:
        63:6c:3a:c0:68:f6:69:75:f8:69:5f:68:0d:44:17:58:
        9e:c0:1a:51:d6:ae:ac:4a:15:b6:bb:a1:d8:fc:a2:38:
        a6:95:05:22:4c:3c:fc:f9:c3:b4:aa:21:52:da:3b:5c:
        90:c1:eb:11:ed:93:64:68:d8:36:37:92:e0:4e:fa:96:
        5a:76:5a:25:2e:8f:83:14:86:e6:f3:6d:1d:33:3a:df:
        91:77:a7:ef:44:1c:88:50:61:c8:8d:87:0b:87:40:ed:
        12:b3:a7:11:b2:f0:fd:ac:6e:84:a6:74:72:57:43:2f:
        16:d7:9b:5b:3b:90:d3:96:92:18:24:93:b6:74:b5:a7:
        37:1d:75:1b:d4:b1:cf:e1:2c:80:ba:c4:d4:0f:89:5c:
        bd:f7:f1:50:b4:38:6d:24:f6:6f:d2:8b:f0:c3:61:a8:
        23:ab:31:d2:f6:1f:41:48:f7:d1:55:ef:25:17:9d:e8:
        33:1e:e5:07:c7:01:61:25:b7:e8:c1:b8:6b:54:96:d3
    Fingerprint (SHA-256):
        E3:A3:9A:48:DB:BB:CF:DC:48:4F:11:2F:2D:AF:15:2E:F5:65:79:DE:FC:B2:6D:14:3C:48:5C:8A:A4:6C:51:DA
    Fingerprint (SHA1):
        3D:0D:89:2E:C3:78:57:A4:5D:7B:A0:80:24:F2:70:6E:66:63:8C:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6788: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6789: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153901 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6790: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6791: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6792: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153902 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6793: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6794: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6795: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153903 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6796: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6797: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6798: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153904 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6799: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6800: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6801: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153905 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6802: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6803: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6804: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153906 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6805: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6806: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6807: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153907 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6808: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6809: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6810: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153908 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6811: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6812: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6813: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153909 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6814: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6815: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6816: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6817: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502153910 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6818: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6819: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502153911 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6820: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6821: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502153912 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6822: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6823: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6824: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6825: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6826: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502153913 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6827: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6828: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502153914 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6829: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6830: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502153915 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6831: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6832: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6833: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6834: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6835: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502153916 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6836: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502153917 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6838: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6839: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502153918 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6840: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6841: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6842: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6843: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6844: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502153919 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6845: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6846: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502153920 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6847: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6848: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502153921 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6849: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6850: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6851: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6852: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6853: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502153922   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6854: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6855: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6856: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6857: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153923   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6858: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6859: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153901 (0x1dee42ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:46 2017
            Not After : Mon May 02 15:39:46 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:55:41:06:53:0e:d1:9c:6d:e0:5b:f3:7f:9a:6b:16:
                    b6:ee:f6:7f:bb:fd:27:86:c6:39:8c:c5:7e:3d:ef:00:
                    6c:ba:55:8c:45:5e:db:cc:59:27:52:92:95:92:aa:2b:
                    4c:b5:76:22:11:0b:1a:5e:bd:94:4c:b2:17:71:c3:eb:
                    bd:3c:4b:ca:41:6b:4b:10:94:0a:b7:b0:6e:f9:31:48:
                    56:a5:c9:cd:21:43:59:99:e0:2c:63:80:12:8f:f4:38:
                    c4:06:27:ee:05:d3:4d:8e:6b:5a:4b:80:64:9a:df:96:
                    0a:bb:7c:03:1e:7a:f6:28:ec:20:41:b4:9b:3e:ff:84:
                    f1:8a:6c:18:07:72:a3:ba:2d:1c:6c:4e:1c:9c:db:fd:
                    86:ba:55:08:2e:7d:6f:aa:81:3a:bc:65:9c:70:f0:4d:
                    2c:e9:da:1e:0c:a5:ea:71:64:4a:ce:70:67:d3:28:f7:
                    a5:15:c9:0c:cf:69:4a:13:49:a8:a5:7d:5b:52:1f:a2:
                    6e:0d:d7:36:52:7d:95:48:bc:9e:ab:ed:5e:3b:25:b7:
                    6a:fb:29:70:7d:27:c0:f2:5c:ec:4b:93:b2:ca:fd:10:
                    7e:af:6c:0c:f0:d9:f6:e9:05:1f:cf:c7:f9:5d:e6:7c:
                    96:d6:3d:b8:34:3a:ae:e9:d8:dd:bd:69:6d:b9:82:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:c7:5f:8f:49:42:37:c2:2c:03:57:b9:80:36:6c:f8:
        f8:02:57:41:e4:00:fe:a8:34:59:3f:ef:50:57:9e:86:
        42:d0:26:26:0f:d0:7a:f7:0f:64:73:d2:1b:bd:c7:42:
        5a:eb:e0:c8:c1:52:af:07:53:b3:de:2c:2f:b3:f6:5a:
        3d:b4:85:b0:0a:8f:20:02:ae:d2:4b:73:59:12:c0:a1:
        03:41:aa:4e:cd:32:d7:24:b8:f4:87:42:cd:39:b7:3a:
        dd:e4:1d:8b:81:17:61:47:d6:3f:b2:e0:2d:1b:97:d6:
        51:7c:42:c4:8d:2b:93:74:e3:ad:91:f8:f5:27:3b:5a:
        09:22:cc:16:6b:2c:25:03:41:0e:4c:33:b4:c4:47:c8:
        a6:6a:e9:88:2a:03:c8:d8:de:c0:fc:d7:aa:57:1e:05:
        de:58:50:95:fd:60:23:f3:5b:cb:94:db:88:d3:a6:7d:
        a0:3a:e8:8b:a2:ee:98:a7:d4:e3:7b:eb:36:c4:87:6e:
        cd:3e:fa:a3:82:3d:92:e5:ef:38:e0:68:e0:cf:da:44:
        a4:d5:bf:a6:6e:ae:68:b4:00:53:f7:d8:10:79:43:85:
        94:5b:4d:e2:f0:63:de:3a:01:25:29:f4:8b:0a:c2:b8:
        ca:88:20:63:32:cf:44:2e:12:eb:99:9f:79:1f:6d:8c
    Fingerprint (SHA-256):
        E6:E4:96:EB:30:81:CC:D2:62:70:41:33:79:B9:58:37:C8:92:DA:66:4C:00:3C:11:A2:19:B0:21:1A:FE:AB:38
    Fingerprint (SHA1):
        D7:CD:9B:C7:71:A4:EC:3B:FA:81:71:B5:1D:8C:B6:50:46:34:D6:54
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6860: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153902 (0x1dee42ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:39:46 2017
            Not After : Mon May 02 15:39:46 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:96:b0:56:c1:78:f3:8a:3e:d1:fb:42:8a:b7:4a:9d:
                    e9:7e:a0:c1:6d:eb:a5:99:6c:4b:91:cd:67:2f:40:ac:
                    be:e0:a5:59:01:1f:3f:b3:35:aa:6c:5b:6e:99:a2:49:
                    b5:bc:cf:84:49:81:c7:1a:29:a9:cf:15:44:b3:8d:de:
                    56:77:bb:ff:ba:47:4d:c1:cd:10:13:e8:61:05:8e:10:
                    1c:51:80:b8:ea:35:83:34:34:4d:bd:20:b2:27:d9:85:
                    96:07:0e:5c:8a:a6:ee:78:d0:b8:56:3b:53:9b:72:f6:
                    51:b0:7b:5e:ef:bf:97:ee:12:69:90:f4:bf:e2:63:ea:
                    26:15:ea:71:5e:d5:ba:e9:3c:3a:71:4a:9d:18:a5:9f:
                    59:bd:42:d0:23:bb:e2:79:f6:67:76:2d:70:ee:38:7a:
                    99:83:49:11:21:59:00:14:58:6f:fe:da:77:c6:a2:2a:
                    e1:5c:3d:fb:58:00:94:4e:de:c2:eb:bf:40:83:6d:6f:
                    8a:80:82:f3:72:51:30:41:d9:fd:ce:69:df:05:f4:e9:
                    9b:bc:cb:fc:b3:75:cd:92:22:f6:ea:54:91:4c:dc:06:
                    78:4a:2a:33:43:10:18:f8:44:7e:5d:27:9f:a8:37:d8:
                    b4:67:04:08:51:23:eb:0a:ad:86:06:cb:cb:c7:48:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:40:37:0f:a2:4e:c3:5e:e8:91:48:c7:2c:5a:97:68:
        6b:a5:e0:45:31:29:8f:c2:1a:16:80:90:fa:bf:8e:ce:
        e5:0a:a2:cc:ec:0d:9f:01:50:f1:33:01:bd:cc:f1:b8:
        d9:ac:9b:59:de:c1:d3:82:4e:87:b9:71:bd:3e:c4:f3:
        ad:c4:c7:19:e8:86:d0:9f:3d:34:e0:b3:c2:2c:a2:18:
        d3:f7:5c:04:6c:5b:ef:55:dd:27:4c:9b:74:42:c7:11:
        97:26:aa:28:1b:3d:27:44:ec:2b:c4:7a:d7:81:7f:2d:
        5e:cd:1b:88:7f:b5:7b:02:87:70:1b:52:36:d1:e7:df:
        44:9f:d6:70:18:b2:da:e2:ad:2c:f1:b7:96:c7:17:5b:
        56:6e:a4:54:12:c3:a7:63:bb:63:3f:3f:cb:43:74:d5:
        69:e0:c0:28:84:e8:8d:2a:3a:2b:a4:58:d2:8c:57:e3:
        48:f0:2d:a5:4f:86:76:9a:a2:21:32:eb:4b:29:13:84:
        18:1f:5a:26:73:f7:5a:39:91:4b:8a:f9:83:be:80:37:
        6a:47:d1:36:87:cd:1a:b3:39:4a:f0:39:81:75:db:da:
        0a:63:00:55:4e:85:95:37:40:d2:cd:21:bd:4e:58:37:
        9a:4d:32:84:59:72:f0:7f:28:fe:12:d4:d4:df:d6:af
    Fingerprint (SHA-256):
        F8:4B:D7:5E:23:E5:32:C2:BC:EE:47:79:78:25:F6:39:77:58:97:1C:74:5B:41:81:B2:05:80:BB:B8:2B:15:19
    Fingerprint (SHA1):
        9C:90:02:B7:D8:3C:EE:55:C4:FC:10:74:5B:F4:F7:5C:1B:A9:24:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6861: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153903 (0x1dee42af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:39:46 2017
            Not After : Mon May 02 15:39:46 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:fe:fd:1b:6d:6e:67:69:af:79:c3:65:99:37:1b:d7:
                    53:8a:7c:9f:c4:e1:56:d9:78:76:ad:71:59:ab:c8:ce:
                    9a:1c:06:d0:16:7e:6f:4d:c1:61:fb:a5:a9:c5:b4:22:
                    ce:3f:4c:58:c0:3a:dc:1d:5e:a1:24:bc:dd:c5:75:cf:
                    92:70:ef:50:3a:ba:47:a4:3f:d9:c8:44:08:1a:80:59:
                    81:a9:f7:8c:b4:d6:21:a8:6d:2d:77:a9:26:c3:b7:c9:
                    6b:27:76:82:b3:41:73:86:ff:d0:f8:5c:0b:97:d0:43:
                    8e:52:58:0f:b2:f4:f7:e6:39:07:50:3f:84:31:98:5f:
                    2b:02:40:b5:4f:e8:25:83:25:3b:83:e6:0e:ab:8e:df:
                    5e:4f:72:e4:6f:49:9d:8e:e6:81:3a:7e:1c:ff:33:3a:
                    af:f1:33:7d:c3:b3:18:6f:20:f7:70:27:0b:11:be:c7:
                    89:25:56:d2:2e:52:88:fd:b3:4a:6f:b6:e8:81:e7:84:
                    60:79:61:67:a4:d8:f7:6b:0b:18:3e:6d:df:8c:4d:db:
                    32:df:57:6d:06:66:2d:6a:10:d2:b4:fd:73:fc:71:f3:
                    50:38:47:1d:05:95:12:13:5c:c9:fb:6e:bc:e8:ba:d5:
                    b6:ae:04:f7:c6:e2:18:2e:3c:8b:e3:9b:d1:8e:e3:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:c0:88:27:be:7d:3e:59:f6:3a:30:8b:a3:58:0b:a7:
        f7:06:4d:f0:af:61:d0:d3:1c:86:94:d0:d3:0d:51:a6:
        52:50:76:22:b0:3f:2b:69:96:f1:d4:2d:7d:8f:0f:30:
        ea:87:fd:4f:18:30:a2:91:58:92:98:16:44:e5:a4:43:
        06:a5:db:fb:2f:60:f2:d0:f5:1c:52:59:34:f5:a0:28:
        6f:c1:80:a7:34:c1:0e:ed:35:ec:21:f4:51:99:e6:1a:
        55:9f:93:fb:79:ec:13:22:e2:b5:0d:e2:94:59:15:03:
        07:a0:ef:af:ea:3e:9d:dd:e5:13:cd:2e:1b:cb:13:6e:
        b2:9a:09:ba:45:59:d0:fc:44:4c:66:03:d5:c5:d7:cc:
        65:ff:0b:19:21:08:de:18:4f:ca:33:de:cc:64:ce:67:
        d0:7c:a3:c0:17:0d:64:74:53:79:ee:6b:06:ec:3a:68:
        6b:82:5f:93:54:a3:1f:1b:cb:15:5b:49:20:6a:0a:f1:
        bc:97:d9:18:0c:15:44:72:69:c6:7f:df:29:a0:2b:cd:
        82:62:0e:68:23:45:70:b0:60:3f:1d:78:3e:14:29:f1:
        63:86:bd:b4:a8:47:11:68:af:12:69:06:41:e4:fc:e8:
        da:3f:48:cf:99:74:85:d2:6e:c6:b4:f0:e1:c8:b7:9a
    Fingerprint (SHA-256):
        4D:C0:A7:5A:36:F4:79:41:28:9A:82:36:54:4A:72:88:82:CD:07:54:C4:B5:1F:9A:A4:32:AD:27:EF:C4:1B:2D
    Fingerprint (SHA1):
        DE:DE:F2:0D:B3:7A:5E:83:8D:26:72:39:FB:C9:AC:F7:0E:EA:F2:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6862: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153904 (0x1dee42b0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:39:47 2017
            Not After : Mon May 02 15:39:47 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:09:87:8d:7a:55:47:7a:39:4d:f9:c4:36:44:6a:68:
                    76:a4:21:ce:f6:15:ff:9e:80:3e:0f:29:5d:8e:81:35:
                    05:7c:ea:e3:2f:4c:0d:77:8e:51:98:a3:b2:40:8d:92:
                    a6:63:62:da:e3:c1:a7:90:08:0c:ef:fe:8e:ee:d2:ab:
                    c5:9d:6a:2f:f1:61:34:b9:b9:54:95:21:b9:ed:37:1c:
                    96:0d:5c:7d:d3:62:ae:e4:78:bf:84:25:c5:10:80:75:
                    1f:39:e5:f3:74:fd:ac:4d:e5:18:e7:c3:cc:66:62:c3:
                    63:2b:ac:43:8e:c6:86:e7:70:6e:80:ed:96:c8:28:7c:
                    1e:c0:59:2a:b6:2d:9a:e1:2a:49:01:3e:2d:8c:fb:d3:
                    c4:bd:c1:97:d9:0f:47:fb:4e:ea:a3:d3:29:91:89:2b:
                    75:93:dc:db:1f:58:30:37:6f:29:15:03:3c:d8:6f:7e:
                    5b:97:72:ed:8e:fc:15:7c:36:01:ed:35:ac:63:43:6d:
                    9f:07:70:09:8f:ca:c5:a7:76:6c:01:1a:c2:15:11:62:
                    10:2a:d3:80:22:40:0a:ca:0d:db:c0:74:4e:08:78:28:
                    1f:81:e8:6e:90:ac:6b:32:72:41:f4:47:8e:b8:65:a2:
                    91:af:83:16:d3:ec:46:0a:39:6d:d2:0f:c6:9f:01:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:3c:e9:97:36:b2:25:10:4b:b4:fa:80:56:10:10:14:
        fe:26:ed:12:c4:5c:b6:d8:17:de:f3:b9:31:98:c4:de:
        44:e3:1b:2e:c7:56:54:c8:6b:0a:19:3d:b4:32:3c:df:
        5a:7c:59:5d:14:2e:7f:fe:57:77:ed:36:ba:03:8a:38:
        86:9d:e8:a5:f0:7a:0e:11:7f:ca:fe:9d:14:db:34:4b:
        38:8f:f8:06:5e:fc:be:4f:a4:0f:89:c1:22:d0:9c:e9:
        53:28:13:5f:01:f9:3d:a0:1a:18:76:fc:6b:ad:9c:52:
        e4:12:c9:18:17:83:a5:fc:d5:85:32:93:42:1c:56:de:
        51:02:cd:f5:76:b7:18:ef:48:a6:92:d1:76:bb:76:ba:
        3e:69:07:47:cb:8d:ba:af:e1:6f:6c:d6:33:15:ac:63:
        c9:ba:0c:eb:5a:d1:35:0c:37:91:37:68:56:68:0b:c3:
        9b:27:e2:c1:58:fb:6f:70:9c:03:29:e0:b4:ea:cd:98:
        d0:ee:05:0f:d3:b0:22:cc:f4:73:53:f9:6f:94:35:a9:
        2e:89:b1:76:ae:87:74:5a:46:8f:c2:ac:62:f6:6c:fd:
        82:64:c2:0a:2e:c9:c6:0f:d3:c1:a4:c5:9f:71:a0:97:
        81:15:65:82:18:6d:c2:4c:f9:be:23:56:43:c0:df:4f
    Fingerprint (SHA-256):
        15:99:AB:E1:41:6B:F4:7C:E9:2B:99:69:5D:65:84:FD:1B:48:9B:B4:DF:C7:AB:3C:C5:B8:40:ED:07:15:27:54
    Fingerprint (SHA1):
        0B:A0:A3:54:E9:5D:5D:F9:49:92:D8:89:64:FB:22:16:DA:83:84:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6863: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153905 (0x1dee42b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:39:47 2017
            Not After : Mon May 02 15:39:47 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:33:a5:3b:03:12:d8:06:b6:24:10:5d:68:74:77:63:
                    40:4e:bc:c1:d8:5b:28:f3:bc:0b:f0:5e:8d:64:34:55:
                    ac:bc:4f:99:22:87:1f:3e:e7:b5:3a:4f:55:1f:c6:40:
                    a4:40:b6:62:51:73:1f:9a:72:c0:1d:d2:b9:62:ab:28:
                    d1:ff:c4:58:53:4d:1f:94:70:ea:b5:50:c0:2f:96:ae:
                    c8:7b:27:0c:59:1b:f5:a7:a4:e7:81:ce:83:60:d7:c6:
                    c3:fa:f1:78:b7:37:1a:3d:78:d6:bd:f4:36:bb:7c:23:
                    db:27:2c:51:f2:22:a0:28:de:19:de:6f:7b:fa:89:9e:
                    40:88:90:38:6a:79:08:7c:65:4f:85:c4:c8:bc:28:aa:
                    73:5c:b2:8d:6a:42:6a:8d:f5:6f:73:27:8e:26:00:f9:
                    b9:b7:65:fd:98:51:60:ec:24:1e:7f:12:a0:44:76:ff:
                    23:13:84:6a:69:16:0a:c8:ac:42:66:1d:6c:94:55:ba:
                    8d:45:0b:34:5d:fe:94:8c:c2:6d:ec:28:76:6b:6f:9b:
                    19:51:58:61:4f:78:43:c0:78:c9:e3:cc:99:ce:ae:76:
                    a1:f0:e7:2b:07:71:22:9c:a8:d2:f1:99:15:45:c0:78:
                    3e:a5:ac:b6:46:bc:fd:79:bc:0a:2d:af:a8:dc:09:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:4f:85:75:4f:1d:78:d7:3a:2b:18:8f:d9:96:d6:ec:
        1a:38:cd:55:ca:d6:46:77:67:d6:b9:8d:8a:f5:1b:7d:
        f1:19:79:12:42:b7:25:e6:63:18:1f:61:0b:25:1b:f5:
        3f:e8:8e:ad:e8:65:b3:e7:df:cf:16:b5:1c:56:27:8c:
        0f:cc:60:d0:59:b3:bd:4b:27:00:18:47:eb:3c:ff:75:
        99:dd:de:68:92:54:d0:5c:7a:27:44:e1:0e:64:54:88:
        ad:3f:29:f7:5a:7d:8d:1b:a4:d5:48:bb:06:c2:98:bc:
        36:e9:7e:8f:bd:e4:84:85:2f:b7:ad:3c:f5:73:fa:dd:
        c3:85:bd:f3:65:82:b0:f9:9c:0d:33:3e:ab:dc:68:f7:
        ec:f3:7d:f2:54:bd:78:00:29:66:ee:40:07:79:4e:47:
        f1:85:ad:97:b3:d0:aa:46:43:9b:72:78:d4:27:ad:4d:
        c9:6c:68:b1:fd:a6:be:1b:42:f9:9e:f0:62:88:78:25:
        db:4c:6a:84:1b:53:4d:22:15:e0:c6:d1:4f:54:9b:71:
        55:21:9e:a4:0f:79:f3:fb:e2:6e:78:30:36:f1:78:ce:
        9f:58:73:93:71:9f:e0:4d:7f:a6:8a:f1:0c:7e:c6:ba:
        74:33:1f:3d:7b:c3:ac:28:e9:df:85:c1:8c:47:e8:3d
    Fingerprint (SHA-256):
        33:98:6A:BF:8B:DF:D6:3B:74:AD:64:B7:9B:6C:E6:8D:70:09:BA:29:15:02:6B:BF:81:18:9F:75:7A:B1:A3:EC
    Fingerprint (SHA1):
        01:3D:80:ED:E7:81:59:8A:6A:3D:D8:AD:10:9C:0D:34:02:ED:D2:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6864: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153906 (0x1dee42b2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:39:48 2017
            Not After : Mon May 02 15:39:48 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:10:2e:7e:ad:9a:48:b9:d6:86:1b:11:49:92:bf:82:
                    f4:0d:31:16:9a:4f:b1:1c:2c:15:d8:9d:a1:32:28:d3:
                    7f:a9:3d:89:ab:7d:b5:af:1d:0a:68:0c:b8:6b:1d:57:
                    5e:32:6d:c2:6f:a6:e6:cf:7b:3b:b3:1d:c1:9a:d6:1c:
                    83:4c:44:41:33:10:b1:45:6d:eb:3c:46:0a:f4:ff:c5:
                    b1:50:b6:a6:17:29:68:aa:e1:81:2c:92:d0:b2:27:70:
                    f2:cf:8c:1c:62:e0:bd:94:84:7f:ae:ba:df:c5:ee:81:
                    83:a8:12:38:9d:e5:17:10:4a:45:5f:54:d7:70:0b:1c:
                    d1:d0:1f:d0:07:1d:98:5c:a3:a8:23:32:d0:f0:85:bb:
                    b0:b1:51:f4:73:d1:d2:b9:d1:e0:fc:d5:dd:0b:94:94:
                    f1:4a:cb:a4:c5:0c:09:cf:6c:62:c8:4c:98:e7:21:ca:
                    1d:e7:31:25:98:e4:fb:11:b8:ce:db:29:7c:21:35:6c:
                    80:0f:16:e1:13:14:24:c3:48:cb:2b:80:77:0e:6c:6c:
                    52:70:01:9c:20:1b:18:fc:c2:f1:3d:20:d6:e2:b1:1d:
                    84:4b:17:2a:e1:5c:ca:7c:22:7f:9f:95:bc:9f:c5:e4:
                    31:5d:e1:c3:f8:6c:9a:3c:ab:07:3b:14:52:c9:8a:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:98:b5:ef:b9:36:c7:60:3f:f7:03:ee:12:34:81:7b:
        5c:6c:f8:ea:62:9a:09:11:13:8d:9d:5d:80:b6:73:26:
        ac:48:39:2e:41:04:5f:2a:d4:6d:b8:be:03:50:db:bc:
        c1:a8:d0:bd:a5:42:98:91:67:0a:9c:36:5a:20:60:6c:
        e9:6b:1a:13:69:f9:34:0f:29:a7:6d:0f:1d:24:c6:35:
        50:38:5a:db:1f:2c:85:b9:63:ec:5c:a6:07:2a:a1:08:
        62:1a:56:8f:69:87:47:d7:73:ff:69:95:09:ca:c4:d1:
        a1:48:74:7e:d7:52:13:bd:1c:25:73:0f:3e:9d:16:fb:
        7d:85:d2:fd:41:30:6d:36:3e:5b:08:67:33:2a:29:f8:
        88:69:20:61:d8:c0:1b:7a:77:e9:49:1d:91:c7:78:8c:
        77:5c:7a:36:09:27:1e:bc:f7:db:1d:d1:d5:da:05:b4:
        8d:bf:48:34:b4:60:f4:34:46:63:aa:fc:9b:39:2b:71:
        c0:c8:61:46:2b:e0:1a:10:ed:c7:28:28:6a:3a:50:4e:
        e6:02:6e:f4:d3:58:52:60:8e:a9:da:62:ae:fb:89:0c:
        e3:cc:cb:66:eb:56:2f:7a:c2:d3:5c:58:b4:6a:6b:7f:
        72:1a:f4:2a:32:5f:05:21:7a:2a:a6:49:93:d5:f2:29
    Fingerprint (SHA-256):
        33:85:7D:C4:14:BC:13:CD:F0:3A:02:FB:80:8C:B7:19:4E:88:64:B6:8B:92:54:77:DD:60:03:B5:F2:B0:F8:BE
    Fingerprint (SHA1):
        84:A7:07:3A:74:08:44:E2:94:1D:F3:C3:CD:8F:E5:E8:72:DE:D3:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6865: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153907 (0x1dee42b3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:39:48 2017
            Not After : Mon May 02 15:39:48 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:4c:47:88:0d:80:a8:78:0c:8b:1c:d9:2f:71:18:05:
                    5d:25:77:5b:12:92:14:b9:d5:fe:28:da:93:f7:4f:32:
                    99:39:bf:8d:81:ad:a8:96:fa:5b:62:ab:b3:cc:35:32:
                    b1:11:f7:f1:eb:53:b2:dc:cb:fc:28:12:51:51:88:c7:
                    62:af:3e:c6:8d:1c:de:c1:61:9c:2d:a1:29:54:f5:1d:
                    4b:f9:05:d3:13:e2:12:03:23:1a:ad:f3:7a:d1:a5:18:
                    d7:4f:f3:f0:af:2b:d7:60:65:51:bb:db:93:2b:71:a2:
                    dc:1d:c5:23:4d:99:aa:07:7e:35:76:75:c7:80:6c:2c:
                    eb:c7:37:17:f6:a6:78:d1:1b:28:5a:ed:c7:ad:21:ec:
                    30:6f:6a:5d:f9:49:b9:0a:e2:b7:64:9c:a9:e8:aa:7e:
                    ad:75:5e:f4:65:65:63:43:cf:5c:21:d9:0e:aa:66:f4:
                    57:7a:98:af:1b:8e:8f:9f:f7:cd:c2:2f:88:e5:5f:62:
                    d5:ae:5a:37:93:de:2d:aa:6c:14:36:e3:25:c6:df:1c:
                    8d:1d:55:ce:a3:a1:05:fc:c6:b6:02:07:4c:43:b9:26:
                    ba:81:be:6a:a4:91:46:a2:f4:a1:f1:52:98:e2:52:a0:
                    4e:b6:e9:cb:7a:24:c6:28:06:25:11:bb:25:5e:f2:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:51:0d:d4:4a:d1:c2:92:f1:60:4f:cd:4a:27:6b:05:
        73:58:48:ca:92:b7:23:2c:96:da:ac:ed:06:d3:d7:c8:
        b6:f3:9d:59:f0:66:59:12:b8:bb:3d:5f:9a:6f:8d:9f:
        26:16:46:36:ef:aa:f5:5b:51:df:fd:3a:86:ac:80:e1:
        f3:12:94:a3:d8:6b:8a:bf:b5:55:a3:36:b1:e9:79:06:
        8e:c1:02:5a:4f:89:f9:25:2b:c5:f6:bb:30:6e:d9:3f:
        bb:b1:7d:58:93:fa:c3:28:f7:68:20:c5:22:5c:7d:34:
        87:1b:40:7f:b7:03:db:de:d7:48:70:e1:c8:29:47:30:
        7d:ef:12:5c:c7:8f:38:49:8d:59:62:8b:0b:35:b0:43:
        67:33:03:0c:ba:10:2c:2d:f8:46:9f:d0:0c:7c:2c:45:
        44:a2:2a:ae:fb:b6:d5:c5:fb:f6:04:67:9e:37:2c:a7:
        b9:80:f5:a6:02:fb:bd:18:38:0a:ba:6e:8c:8c:bd:5a:
        9e:84:99:d1:0c:43:72:26:c1:c3:79:d7:2c:fc:0b:5a:
        c6:83:e6:e8:44:63:c8:df:d0:94:f1:0a:54:f2:a0:69:
        2f:2c:78:00:36:08:e7:9d:d1:07:cc:63:5d:55:e9:25:
        42:a4:cb:8e:71:ce:50:55:08:eb:e6:8a:06:0a:80:b2
    Fingerprint (SHA-256):
        51:88:19:ED:ED:18:54:66:92:3F:89:59:1B:FF:C1:4C:9A:DE:3C:CF:25:45:8A:40:14:1C:35:97:14:54:F5:C7
    Fingerprint (SHA1):
        C2:A3:0E:A3:66:5B:C5:30:6C:4B:C3:10:4C:D1:37:A5:A0:31:A9:D2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6866: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153908 (0x1dee42b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:39:49 2017
            Not After : Mon May 02 15:39:49 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:e6:c6:89:77:82:3c:10:7d:7e:98:41:66:4a:9b:80:
                    00:11:1d:4b:0d:8c:15:52:84:6d:b4:de:5c:45:73:fc:
                    f9:87:3c:ab:97:36:07:7f:6e:2a:73:73:5f:70:61:83:
                    37:f3:9a:7f:e9:ee:a1:91:a1:e2:de:05:6b:35:94:5b:
                    9e:81:f6:7f:c3:12:83:e2:12:26:61:f1:8b:ad:3f:eb:
                    7c:e9:e1:9e:32:14:1c:88:4a:59:c2:74:cb:aa:2c:cc:
                    ce:a7:b0:1e:d8:4e:33:37:61:a9:fe:b8:3f:d6:19:cc:
                    f9:31:46:ea:4a:79:e5:eb:4a:e3:c2:9d:68:8b:63:71:
                    78:01:a9:ba:a2:7b:37:0c:e4:7d:c9:ca:e7:9b:ee:11:
                    00:58:69:82:38:9b:3f:33:25:f6:b7:05:f6:1d:aa:54:
                    4f:8d:9f:c1:6b:4a:53:93:c7:51:23:b7:21:0f:3b:16:
                    94:36:50:f5:0a:0e:de:a6:63:ff:3c:f3:5a:b3:d6:ab:
                    89:62:8c:69:1d:bf:01:7e:45:d4:e5:69:89:0e:13:fa:
                    20:97:3c:43:be:c4:e3:0b:ae:77:8a:a4:18:98:b7:e9:
                    9c:b2:53:01:45:31:b8:1b:1c:c3:c4:3a:e8:5b:a2:7c:
                    96:ab:f0:f7:67:1c:67:f2:11:6c:c8:e2:69:4f:5b:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:88:54:30:b1:73:40:1b:a2:f1:2c:37:8b:65:65:64:
        b0:53:a4:54:c4:8f:02:2a:70:43:e5:11:a5:80:4b:ba:
        4b:11:ee:06:4d:cc:44:2f:17:eb:e6:88:ff:bd:fc:f4:
        d1:3b:09:68:8a:9b:95:1b:be:10:6b:cc:5a:9c:70:f2:
        36:bb:de:8b:aa:df:54:bf:34:10:03:8d:42:a1:54:37:
        62:84:f3:10:fd:86:9f:e4:56:62:65:27:d1:87:86:4f:
        49:bd:ee:aa:20:37:bc:15:db:79:84:36:41:bf:59:04:
        58:53:12:ab:f9:1d:93:e7:fe:cd:c4:c5:f0:ec:77:0a:
        ca:9f:4c:63:99:b0:58:38:68:88:13:db:86:d2:b6:df:
        d6:ea:d4:ae:83:2e:b9:7d:a8:84:65:ea:35:a3:c8:e5:
        50:44:57:77:21:a2:bc:1c:9b:96:22:ef:03:2c:63:55:
        01:87:75:48:79:10:ef:ef:9a:93:b6:36:73:b0:fc:77:
        dd:04:d5:b5:dc:24:62:86:a4:6e:25:ae:21:68:1b:d1:
        a4:fb:fb:2a:2f:74:03:06:e1:be:b7:97:47:ab:2c:fe:
        0d:5d:29:f0:b7:e7:a6:bc:5c:be:3a:3d:dd:a2:61:d6:
        a6:b6:50:44:ab:0d:99:a8:c0:5e:71:1e:a2:51:d1:b3
    Fingerprint (SHA-256):
        1C:17:8D:8D:87:90:F0:8E:F8:3E:B0:7F:D6:31:61:21:DF:E4:1A:1F:65:10:63:EC:5C:80:87:39:DE:F4:40:63
    Fingerprint (SHA1):
        89:51:6F:C3:0D:6C:71:EE:F0:E1:52:59:39:20:37:F5:D6:D0:7C:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6867: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153909 (0x1dee42b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:39:49 2017
            Not After : Mon May 02 15:39:49 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:07:52:06:cf:c0:f3:a9:10:66:50:1f:8a:49:cf:22:
                    53:a4:46:a1:e7:61:35:3c:d2:a4:23:d7:4f:07:4a:32:
                    47:92:c6:b2:67:27:5f:3c:8b:eb:a9:69:75:7e:82:48:
                    65:b8:c9:86:f4:3a:79:a7:61:cb:1f:f4:1b:9c:de:7f:
                    de:9f:9f:f7:ea:2c:fd:cc:1f:df:2b:d7:1f:ea:83:2a:
                    ad:06:bb:9f:eb:88:a7:8a:15:1a:9d:fb:0c:bd:e0:f0:
                    bd:a5:68:5d:46:05:d7:e8:74:4f:98:ac:4c:64:72:b6:
                    79:a9:61:f8:16:cb:1c:60:22:bf:84:f5:c2:63:66:a5:
                    4d:f6:da:bf:49:45:18:65:09:e2:af:7f:c5:5c:2b:28:
                    28:a3:fb:29:7e:48:0d:bb:a1:1a:61:57:59:5f:0a:6f:
                    52:98:6e:68:d3:58:63:c8:f3:0e:75:0c:fc:f1:e8:05:
                    47:c2:b3:6d:dc:b7:8b:25:7d:f0:6c:da:db:10:6c:c1:
                    65:46:61:26:8e:0d:b2:33:93:f8:5e:ae:3b:71:07:18:
                    50:19:c8:c5:b0:e4:08:03:33:fc:e3:eb:b1:4a:47:64:
                    9f:24:a7:b9:6c:cd:94:8b:56:d1:d8:a2:96:86:ca:7c:
                    39:5f:72:05:af:15:b7:ee:2c:04:44:4b:a7:03:3e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:42:23:77:5f:45:6c:52:3c:40:ac:69:56:89:d2:71:
        e3:2d:c0:ad:de:9d:36:99:f9:1b:60:c7:4f:b6:16:68:
        ed:1c:88:bf:82:f2:93:2c:c0:d6:27:49:38:8c:ec:00:
        c9:c2:94:62:62:6c:b9:b7:8d:9b:5e:fb:6c:a8:fb:36:
        89:ec:bd:16:6c:4d:bd:47:dc:c4:b5:18:1d:b1:b3:9a:
        1c:0a:97:97:bf:78:b7:7c:f8:35:44:36:78:83:49:17:
        22:7f:9c:b2:e1:f4:8e:d8:ed:10:b7:d7:cb:d0:d2:f7:
        e6:fc:cd:82:ac:ba:eb:a3:81:93:e3:23:92:4d:0a:b5:
        c0:8b:50:81:22:d8:bf:90:82:46:8a:21:22:55:eb:bd:
        f9:1f:6e:bd:bf:62:f3:2f:5e:e7:ee:d3:a8:b2:59:98:
        41:ca:b6:42:81:9f:fb:a9:a9:cd:27:ee:bc:65:60:c4:
        cd:a3:3b:31:46:46:af:02:1f:87:af:a3:2a:a1:85:32:
        78:4b:ef:b4:8d:e9:bb:0a:df:75:8f:0f:08:a0:8e:a1:
        d6:26:3d:16:dc:2f:86:09:6b:22:5d:5e:2f:42:43:2b:
        9b:bc:bc:8f:f9:42:48:a3:d9:33:89:26:4e:f6:6b:11:
        43:fa:b8:4b:e8:ce:ed:5b:63:31:5f:2f:b3:3c:14:47
    Fingerprint (SHA-256):
        1F:81:E8:AB:F4:F1:91:21:E8:7B:0D:2B:0E:62:D9:8B:D8:73:0B:55:0B:87:5B:B3:7C:36:B9:33:83:24:03:5B
    Fingerprint (SHA1):
        55:2C:9C:9C:8E:29:DA:06:AF:18:EC:53:A4:13:27:29:EC:01:2D:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6868: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6869: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153924 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6870: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6871: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6872: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6873: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153925   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6874: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6875: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6876: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6877: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153926   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6878: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6879: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6880: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6881: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153927   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6882: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6883: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6884: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153924 (0x1dee42c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:55 2017
            Not After : Mon May 02 15:39:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:19:05:ae:65:7b:9f:24:41:d8:49:32:e5:ea:e1:f9:
                    25:ad:e5:11:a2:5b:5d:21:8b:55:42:cb:5a:58:c6:d0:
                    70:be:2f:eb:ee:41:15:e6:54:04:5b:53:a5:f9:1d:b3:
                    27:6b:92:51:cc:c6:19:32:75:19:c5:d9:ba:84:8c:bd:
                    6c:e1:3f:b7:51:d1:4a:e1:88:a0:70:69:75:05:40:b2:
                    52:92:53:8a:32:f3:89:20:c3:40:da:10:60:b8:4d:9f:
                    ae:d5:0f:ef:63:4a:48:ef:17:f0:a4:5c:3d:d1:53:75:
                    34:7e:08:93:88:33:b8:35:76:b6:24:13:f9:1e:7c:5d:
                    fc:6d:f3:ae:14:3d:fb:02:9c:d0:fd:32:4e:80:8e:e8:
                    ad:c3:d3:92:d1:11:5a:71:0e:74:29:49:16:a6:a2:33:
                    90:fd:9c:51:43:30:b3:78:4a:f2:41:0a:40:87:ee:59:
                    32:5e:e9:e2:c8:c4:b9:63:50:c9:c6:08:03:08:64:6c:
                    93:5f:c2:ed:8d:19:fb:44:fb:8e:eb:e6:e1:04:53:65:
                    ea:ad:93:c6:2d:14:f7:9d:90:42:96:20:12:d7:00:f8:
                    af:e3:41:0f:ea:98:41:32:e1:b2:81:f7:f7:f4:73:24:
                    ed:26:ee:f6:f7:9b:e2:0f:6e:bb:d5:7f:94:f8:52:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:a9:8f:8a:de:b0:90:fc:1f:6f:87:6f:fa:cb:99:d1:
        8e:00:26:d9:9e:8e:b2:13:c6:70:d4:96:63:0a:92:6d:
        3c:e3:1f:f2:7a:ab:d6:d9:04:0b:d6:2d:2f:2e:eb:54:
        a0:15:de:c3:27:cf:7b:3a:d0:ee:fa:ec:ef:4a:24:7f:
        d0:70:f8:b9:87:70:b8:7f:55:98:77:c7:8d:30:3c:1a:
        cd:75:59:2a:0f:2d:a1:7b:e1:2a:bb:9a:59:71:bb:49:
        16:f2:65:71:1d:d6:dc:40:12:87:42:95:04:4b:da:ea:
        6d:50:07:a1:5c:5a:7e:8b:74:72:55:1b:0b:16:f1:a5:
        b3:0a:38:62:d3:d1:63:93:d8:d0:33:51:e2:c9:8f:27:
        73:7d:bd:9f:0e:ac:70:a6:1c:8f:26:1d:fe:58:58:87:
        1f:0c:ef:12:f6:ba:5c:21:73:9c:ac:85:2d:3b:07:98:
        d3:da:db:41:a6:34:85:00:ee:20:74:47:1e:f4:cc:12:
        d4:e3:4f:21:96:df:e4:a7:56:e3:63:c4:71:c4:db:ec:
        70:36:a5:9a:5d:50:ef:8e:94:56:c1:30:ac:78:2b:f2:
        ef:20:2c:1d:13:e1:06:73:22:70:75:b1:f3:3a:a9:3a:
        3c:83:86:da:be:3b:f2:5b:78:82:7d:cd:1e:91:16:a6
    Fingerprint (SHA-256):
        0C:14:63:49:B0:0F:E5:0A:4C:4A:58:AE:76:30:E1:43:75:CF:AB:9A:B1:F6:D3:41:ED:4E:EE:6C:B0:1D:4E:A6
    Fingerprint (SHA1):
        5D:E1:34:92:C3:97:53:11:8E:8B:67:18:FE:A4:22:89:F0:20:A4:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6885: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6886: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153925 (0x1dee42c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:55 2017
            Not After : Mon May 02 15:39:55 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:a3:c9:33:0a:7d:3a:4f:86:c6:6b:d0:d3:a1:6a:9f:
                    0e:7e:dc:aa:7a:54:bb:6c:84:63:32:02:8f:09:dc:f4:
                    6c:12:6b:6f:f9:3c:df:6d:8c:2d:2a:dd:d9:d9:fa:c5:
                    a3:41:ec:41:dd:66:ab:a3:aa:f4:3b:29:69:96:28:66:
                    c8:e3:cd:0d:17:ce:72:9d:4d:42:1a:97:5e:05:fb:85:
                    fc:3d:28:94:88:a4:96:59:67:40:52:d5:8a:70:d1:8e:
                    08:69:14:dd:d9:61:f9:8c:37:de:19:0b:8d:24:e1:54:
                    b3:f7:11:77:2c:08:ff:d5:77:0f:ca:23:e7:87:e1:29:
                    98:92:89:79:07:e5:f4:d9:bd:d9:9d:cf:85:e5:36:6a:
                    61:a4:ed:88:1f:ff:d6:79:01:bc:4e:af:db:06:fe:b2:
                    b4:48:ec:1f:b6:05:e4:d8:1f:0f:9d:ce:6c:1e:24:94:
                    93:a5:50:eb:ad:13:96:9d:cc:c2:5e:4e:a2:17:58:13:
                    0c:4d:e8:af:09:bd:67:b8:6c:68:1e:c8:6a:5a:5a:95:
                    b8:77:7d:89:2b:4c:eb:26:85:e7:28:37:51:4f:31:40:
                    dd:21:39:e1:21:a6:90:d8:a1:dc:c8:6a:81:f3:f2:d8:
                    73:13:3e:08:62:f3:0d:81:16:5e:7d:76:df:83:30:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:e0:eb:e9:42:c7:a2:ee:3f:33:0a:ba:bd:02:17:97:
        96:21:4d:b6:f4:f9:12:5e:bb:32:c6:4f:21:77:3c:83:
        d0:ff:b6:e2:53:2d:2a:d5:cd:4c:e1:c7:f2:20:1d:97:
        c9:12:c4:b5:51:2c:44:e4:13:46:74:73:78:55:b4:54:
        5d:c5:60:9f:a0:67:0e:a9:f4:9f:cb:3d:d4:e9:fe:3e:
        43:1a:5c:2c:84:11:de:60:c8:82:73:52:8a:9f:69:28:
        0a:7f:62:bc:e3:f5:a3:e9:3d:98:45:4a:2d:7d:92:ed:
        7b:f1:5f:dd:ad:4c:e5:b8:e0:27:15:c4:4f:85:7d:16:
        b1:9f:9d:21:12:a1:fe:30:02:67:7a:9d:ee:d8:2f:b1:
        44:62:d7:90:1f:35:9c:7c:b1:8f:44:e1:ed:ba:21:c8:
        fc:a1:59:9d:ae:d7:43:6d:38:f5:b2:a8:6d:0e:b8:23:
        af:a2:98:57:49:b8:bc:3b:4a:0a:67:ca:81:94:61:34:
        7a:60:1b:ec:6b:8c:63:86:4f:bf:6f:f4:65:ff:f5:f3:
        be:6d:f8:29:55:49:d8:8e:cf:f4:16:ea:ca:a9:bb:85:
        71:33:c3:57:05:03:d4:18:ba:0a:34:c4:b2:db:30:26:
        26:3d:76:93:f5:0a:1f:e9:34:6b:71:f0:51:c8:0d:32
    Fingerprint (SHA-256):
        36:46:62:A3:F5:9E:B9:9C:DA:76:A4:7C:F3:E5:36:D9:B8:55:7E:ED:3A:8B:1D:4F:2B:D8:59:AF:BF:97:0A:C9
    Fingerprint (SHA1):
        EB:90:23:3C:FA:C3:EF:21:59:0F:7C:A0:A3:2E:65:75:14:EC:41:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6887: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6888: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153926 (0x1dee42c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:56 2017
            Not After : Mon May 02 15:39:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:35:84:a5:a1:7f:88:b6:ca:03:92:ee:a0:2f:0d:b4:
                    82:11:1c:06:de:ba:3a:89:cf:09:79:12:38:fc:a6:ba:
                    9a:67:b8:be:ba:65:ff:19:6f:a5:4e:21:68:38:ea:0e:
                    02:fc:21:d2:09:9a:c5:72:1c:a4:3c:59:2f:67:41:81:
                    b9:07:2b:50:de:41:62:90:fc:b2:a3:95:88:c0:8f:f0:
                    c9:1b:ec:e3:f2:51:22:92:6d:b8:5e:74:c0:82:ad:6a:
                    d9:9b:d5:20:8c:85:c7:80:09:8c:39:4a:5a:ca:49:77:
                    33:af:75:b6:99:ae:7e:3f:95:3e:4d:8a:8d:cd:c9:6b:
                    ad:f3:f5:2c:35:39:96:c1:59:5d:c9:95:3e:a0:45:58:
                    8c:b1:17:30:90:60:80:97:c8:c3:d8:c7:e6:19:e0:c1:
                    e9:1d:06:58:2f:f1:ed:a7:4f:91:7a:09:b5:48:17:e5:
                    77:0e:8f:46:5b:a2:8f:0c:2a:a1:42:0b:d4:ee:15:57:
                    df:8d:d4:30:3a:c9:b8:3c:19:ed:ff:c5:df:64:f6:70:
                    15:1e:a5:a0:ad:31:02:bb:c1:4c:95:df:4e:96:01:4c:
                    d2:dc:a8:24:67:8f:2d:6f:57:37:7c:fb:c6:93:f6:d0:
                    7e:d6:5b:e2:9e:05:e3:e9:d7:48:7f:b2:94:1e:e1:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:5c:b1:2f:48:9a:75:83:db:88:40:19:54:6e:09:8f:
        0f:46:ad:9c:48:c4:d4:10:38:da:d1:64:23:b4:93:77:
        d3:b0:21:e0:83:54:6c:e8:38:9a:61:e7:41:17:a6:f7:
        a6:c2:cf:ba:cf:86:cd:cf:af:0f:87:4d:7d:bd:78:f1:
        72:1f:59:ec:93:e9:a4:d0:0a:b5:f9:b5:77:86:30:0b:
        c2:a4:2d:83:df:74:c8:49:97:32:5b:83:9d:b7:4d:56:
        d7:48:16:cd:79:80:2e:6c:b5:84:73:0d:f6:21:13:78:
        12:2b:c8:20:a1:81:73:51:cb:5a:7f:18:ce:ab:e0:f2:
        b9:e0:79:f7:fe:f4:38:94:2c:08:36:29:ea:46:98:70:
        06:f8:1a:ff:cc:17:9f:32:3a:f6:d0:e3:94:eb:be:1d:
        ba:c5:96:f9:bf:17:5c:2f:7a:7f:ce:9a:8d:79:0f:28:
        70:8e:35:20:e0:16:0c:80:3b:f9:ac:4a:da:b2:41:e5:
        8b:c0:fc:75:10:f4:2b:77:1c:bd:93:dc:90:39:ab:52:
        f0:0a:56:b1:dc:3f:e0:95:f9:52:b6:37:d0:b9:c7:8b:
        99:26:f6:52:8d:e2:9a:3c:88:3b:d1:27:b4:40:71:d8:
        ab:33:be:a9:22:17:5d:6b:69:28:4f:e2:4a:49:32:f5
    Fingerprint (SHA-256):
        9B:A0:C8:35:71:B6:9D:D9:D4:FB:3E:C2:A3:71:72:8A:DE:F7:00:E9:0F:43:23:9F:5A:5D:80:E1:73:97:48:7B
    Fingerprint (SHA1):
        8E:64:8E:EB:07:F6:FD:F2:69:E4:99:27:0C:D2:A0:F3:3C:CA:91:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6889: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6890: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6891: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6892: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6893: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153924 (0x1dee42c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:55 2017
            Not After : Mon May 02 15:39:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:19:05:ae:65:7b:9f:24:41:d8:49:32:e5:ea:e1:f9:
                    25:ad:e5:11:a2:5b:5d:21:8b:55:42:cb:5a:58:c6:d0:
                    70:be:2f:eb:ee:41:15:e6:54:04:5b:53:a5:f9:1d:b3:
                    27:6b:92:51:cc:c6:19:32:75:19:c5:d9:ba:84:8c:bd:
                    6c:e1:3f:b7:51:d1:4a:e1:88:a0:70:69:75:05:40:b2:
                    52:92:53:8a:32:f3:89:20:c3:40:da:10:60:b8:4d:9f:
                    ae:d5:0f:ef:63:4a:48:ef:17:f0:a4:5c:3d:d1:53:75:
                    34:7e:08:93:88:33:b8:35:76:b6:24:13:f9:1e:7c:5d:
                    fc:6d:f3:ae:14:3d:fb:02:9c:d0:fd:32:4e:80:8e:e8:
                    ad:c3:d3:92:d1:11:5a:71:0e:74:29:49:16:a6:a2:33:
                    90:fd:9c:51:43:30:b3:78:4a:f2:41:0a:40:87:ee:59:
                    32:5e:e9:e2:c8:c4:b9:63:50:c9:c6:08:03:08:64:6c:
                    93:5f:c2:ed:8d:19:fb:44:fb:8e:eb:e6:e1:04:53:65:
                    ea:ad:93:c6:2d:14:f7:9d:90:42:96:20:12:d7:00:f8:
                    af:e3:41:0f:ea:98:41:32:e1:b2:81:f7:f7:f4:73:24:
                    ed:26:ee:f6:f7:9b:e2:0f:6e:bb:d5:7f:94:f8:52:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:a9:8f:8a:de:b0:90:fc:1f:6f:87:6f:fa:cb:99:d1:
        8e:00:26:d9:9e:8e:b2:13:c6:70:d4:96:63:0a:92:6d:
        3c:e3:1f:f2:7a:ab:d6:d9:04:0b:d6:2d:2f:2e:eb:54:
        a0:15:de:c3:27:cf:7b:3a:d0:ee:fa:ec:ef:4a:24:7f:
        d0:70:f8:b9:87:70:b8:7f:55:98:77:c7:8d:30:3c:1a:
        cd:75:59:2a:0f:2d:a1:7b:e1:2a:bb:9a:59:71:bb:49:
        16:f2:65:71:1d:d6:dc:40:12:87:42:95:04:4b:da:ea:
        6d:50:07:a1:5c:5a:7e:8b:74:72:55:1b:0b:16:f1:a5:
        b3:0a:38:62:d3:d1:63:93:d8:d0:33:51:e2:c9:8f:27:
        73:7d:bd:9f:0e:ac:70:a6:1c:8f:26:1d:fe:58:58:87:
        1f:0c:ef:12:f6:ba:5c:21:73:9c:ac:85:2d:3b:07:98:
        d3:da:db:41:a6:34:85:00:ee:20:74:47:1e:f4:cc:12:
        d4:e3:4f:21:96:df:e4:a7:56:e3:63:c4:71:c4:db:ec:
        70:36:a5:9a:5d:50:ef:8e:94:56:c1:30:ac:78:2b:f2:
        ef:20:2c:1d:13:e1:06:73:22:70:75:b1:f3:3a:a9:3a:
        3c:83:86:da:be:3b:f2:5b:78:82:7d:cd:1e:91:16:a6
    Fingerprint (SHA-256):
        0C:14:63:49:B0:0F:E5:0A:4C:4A:58:AE:76:30:E1:43:75:CF:AB:9A:B1:F6:D3:41:ED:4E:EE:6C:B0:1D:4E:A6
    Fingerprint (SHA1):
        5D:E1:34:92:C3:97:53:11:8E:8B:67:18:FE:A4:22:89:F0:20:A4:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6894: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6895: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153925 (0x1dee42c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:55 2017
            Not After : Mon May 02 15:39:55 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:a3:c9:33:0a:7d:3a:4f:86:c6:6b:d0:d3:a1:6a:9f:
                    0e:7e:dc:aa:7a:54:bb:6c:84:63:32:02:8f:09:dc:f4:
                    6c:12:6b:6f:f9:3c:df:6d:8c:2d:2a:dd:d9:d9:fa:c5:
                    a3:41:ec:41:dd:66:ab:a3:aa:f4:3b:29:69:96:28:66:
                    c8:e3:cd:0d:17:ce:72:9d:4d:42:1a:97:5e:05:fb:85:
                    fc:3d:28:94:88:a4:96:59:67:40:52:d5:8a:70:d1:8e:
                    08:69:14:dd:d9:61:f9:8c:37:de:19:0b:8d:24:e1:54:
                    b3:f7:11:77:2c:08:ff:d5:77:0f:ca:23:e7:87:e1:29:
                    98:92:89:79:07:e5:f4:d9:bd:d9:9d:cf:85:e5:36:6a:
                    61:a4:ed:88:1f:ff:d6:79:01:bc:4e:af:db:06:fe:b2:
                    b4:48:ec:1f:b6:05:e4:d8:1f:0f:9d:ce:6c:1e:24:94:
                    93:a5:50:eb:ad:13:96:9d:cc:c2:5e:4e:a2:17:58:13:
                    0c:4d:e8:af:09:bd:67:b8:6c:68:1e:c8:6a:5a:5a:95:
                    b8:77:7d:89:2b:4c:eb:26:85:e7:28:37:51:4f:31:40:
                    dd:21:39:e1:21:a6:90:d8:a1:dc:c8:6a:81:f3:f2:d8:
                    73:13:3e:08:62:f3:0d:81:16:5e:7d:76:df:83:30:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:e0:eb:e9:42:c7:a2:ee:3f:33:0a:ba:bd:02:17:97:
        96:21:4d:b6:f4:f9:12:5e:bb:32:c6:4f:21:77:3c:83:
        d0:ff:b6:e2:53:2d:2a:d5:cd:4c:e1:c7:f2:20:1d:97:
        c9:12:c4:b5:51:2c:44:e4:13:46:74:73:78:55:b4:54:
        5d:c5:60:9f:a0:67:0e:a9:f4:9f:cb:3d:d4:e9:fe:3e:
        43:1a:5c:2c:84:11:de:60:c8:82:73:52:8a:9f:69:28:
        0a:7f:62:bc:e3:f5:a3:e9:3d:98:45:4a:2d:7d:92:ed:
        7b:f1:5f:dd:ad:4c:e5:b8:e0:27:15:c4:4f:85:7d:16:
        b1:9f:9d:21:12:a1:fe:30:02:67:7a:9d:ee:d8:2f:b1:
        44:62:d7:90:1f:35:9c:7c:b1:8f:44:e1:ed:ba:21:c8:
        fc:a1:59:9d:ae:d7:43:6d:38:f5:b2:a8:6d:0e:b8:23:
        af:a2:98:57:49:b8:bc:3b:4a:0a:67:ca:81:94:61:34:
        7a:60:1b:ec:6b:8c:63:86:4f:bf:6f:f4:65:ff:f5:f3:
        be:6d:f8:29:55:49:d8:8e:cf:f4:16:ea:ca:a9:bb:85:
        71:33:c3:57:05:03:d4:18:ba:0a:34:c4:b2:db:30:26:
        26:3d:76:93:f5:0a:1f:e9:34:6b:71:f0:51:c8:0d:32
    Fingerprint (SHA-256):
        36:46:62:A3:F5:9E:B9:9C:DA:76:A4:7C:F3:E5:36:D9:B8:55:7E:ED:3A:8B:1D:4F:2B:D8:59:AF:BF:97:0A:C9
    Fingerprint (SHA1):
        EB:90:23:3C:FA:C3:EF:21:59:0F:7C:A0:A3:2E:65:75:14:EC:41:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6896: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6897: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153926 (0x1dee42c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:56 2017
            Not After : Mon May 02 15:39:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:35:84:a5:a1:7f:88:b6:ca:03:92:ee:a0:2f:0d:b4:
                    82:11:1c:06:de:ba:3a:89:cf:09:79:12:38:fc:a6:ba:
                    9a:67:b8:be:ba:65:ff:19:6f:a5:4e:21:68:38:ea:0e:
                    02:fc:21:d2:09:9a:c5:72:1c:a4:3c:59:2f:67:41:81:
                    b9:07:2b:50:de:41:62:90:fc:b2:a3:95:88:c0:8f:f0:
                    c9:1b:ec:e3:f2:51:22:92:6d:b8:5e:74:c0:82:ad:6a:
                    d9:9b:d5:20:8c:85:c7:80:09:8c:39:4a:5a:ca:49:77:
                    33:af:75:b6:99:ae:7e:3f:95:3e:4d:8a:8d:cd:c9:6b:
                    ad:f3:f5:2c:35:39:96:c1:59:5d:c9:95:3e:a0:45:58:
                    8c:b1:17:30:90:60:80:97:c8:c3:d8:c7:e6:19:e0:c1:
                    e9:1d:06:58:2f:f1:ed:a7:4f:91:7a:09:b5:48:17:e5:
                    77:0e:8f:46:5b:a2:8f:0c:2a:a1:42:0b:d4:ee:15:57:
                    df:8d:d4:30:3a:c9:b8:3c:19:ed:ff:c5:df:64:f6:70:
                    15:1e:a5:a0:ad:31:02:bb:c1:4c:95:df:4e:96:01:4c:
                    d2:dc:a8:24:67:8f:2d:6f:57:37:7c:fb:c6:93:f6:d0:
                    7e:d6:5b:e2:9e:05:e3:e9:d7:48:7f:b2:94:1e:e1:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:5c:b1:2f:48:9a:75:83:db:88:40:19:54:6e:09:8f:
        0f:46:ad:9c:48:c4:d4:10:38:da:d1:64:23:b4:93:77:
        d3:b0:21:e0:83:54:6c:e8:38:9a:61:e7:41:17:a6:f7:
        a6:c2:cf:ba:cf:86:cd:cf:af:0f:87:4d:7d:bd:78:f1:
        72:1f:59:ec:93:e9:a4:d0:0a:b5:f9:b5:77:86:30:0b:
        c2:a4:2d:83:df:74:c8:49:97:32:5b:83:9d:b7:4d:56:
        d7:48:16:cd:79:80:2e:6c:b5:84:73:0d:f6:21:13:78:
        12:2b:c8:20:a1:81:73:51:cb:5a:7f:18:ce:ab:e0:f2:
        b9:e0:79:f7:fe:f4:38:94:2c:08:36:29:ea:46:98:70:
        06:f8:1a:ff:cc:17:9f:32:3a:f6:d0:e3:94:eb:be:1d:
        ba:c5:96:f9:bf:17:5c:2f:7a:7f:ce:9a:8d:79:0f:28:
        70:8e:35:20:e0:16:0c:80:3b:f9:ac:4a:da:b2:41:e5:
        8b:c0:fc:75:10:f4:2b:77:1c:bd:93:dc:90:39:ab:52:
        f0:0a:56:b1:dc:3f:e0:95:f9:52:b6:37:d0:b9:c7:8b:
        99:26:f6:52:8d:e2:9a:3c:88:3b:d1:27:b4:40:71:d8:
        ab:33:be:a9:22:17:5d:6b:69:28:4f:e2:4a:49:32:f5
    Fingerprint (SHA-256):
        9B:A0:C8:35:71:B6:9D:D9:D4:FB:3E:C2:A3:71:72:8A:DE:F7:00:E9:0F:43:23:9F:5A:5D:80:E1:73:97:48:7B
    Fingerprint (SHA1):
        8E:64:8E:EB:07:F6:FD:F2:69:E4:99:27:0C:D2:A0:F3:3C:CA:91:CB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6898: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6899: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6900: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153928 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6901: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6902: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6903: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6904: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153929   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6905: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6906: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6907: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6908: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153930   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6909: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6910: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6911: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6912: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153931   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6913: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6914: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6915: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6916: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153932   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6917: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6918: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6919: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153928 (0x1dee42c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:57 2017
            Not After : Mon May 02 15:39:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:47:22:dc:5f:0c:02:27:89:64:e5:df:98:80:29:8d:
                    6c:fe:17:fb:ec:cf:c6:2a:7b:3f:78:81:bb:d8:0b:3e:
                    00:59:66:9b:7b:05:39:f7:25:c5:9d:9a:68:76:32:3b:
                    bf:15:5d:9b:48:2d:8b:32:ef:09:e7:fa:30:ab:fe:19:
                    c8:20:3a:e5:0e:65:b6:af:b5:61:9b:8a:5d:dd:2a:73:
                    8d:7b:ab:6c:60:b7:a6:e4:e2:e2:29:5f:90:69:d1:c8:
                    fe:97:36:9a:9d:95:9d:c9:48:f8:9f:ab:80:d0:2f:10:
                    9d:c1:d3:21:ba:03:8d:c3:7a:75:08:89:a9:e5:44:0e:
                    bb:90:03:56:2f:49:ca:de:ec:ff:92:4e:a6:8e:45:84:
                    9a:77:17:ae:2b:00:9d:cb:75:0f:c2:4d:74:a5:53:6d:
                    8f:04:70:77:83:88:6f:68:d8:d5:6c:a7:91:94:7a:65:
                    0d:d6:8f:5b:04:9f:57:13:51:32:2a:76:10:19:a3:0d:
                    fd:a7:d4:37:06:66:3e:dc:ec:73:dc:a8:58:24:39:c8:
                    78:dd:c2:d1:e1:db:8f:d4:86:ed:74:ff:ed:de:1e:2b:
                    25:c2:c8:48:9b:2e:0c:6e:ca:c4:a0:d0:51:f0:f5:29:
                    de:13:76:76:4d:6a:44:ae:6b:5f:17:01:ef:11:f0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4d:5e:74:e3:24:59:49:e8:81:8d:9e:51:1c:88:e9:
        e9:2c:bd:b6:8f:8b:3c:2e:01:84:d4:eb:a4:0d:00:6b:
        ef:6a:30:c8:3b:38:1d:41:17:5c:1a:c6:1d:59:66:fc:
        60:e1:4f:7c:34:99:cf:94:c0:1f:90:13:05:df:05:6a:
        9f:aa:e6:80:d9:bd:9b:9f:7a:57:e9:de:34:80:80:58:
        48:61:55:b1:e3:63:30:e3:50:50:52:d2:85:9c:56:cc:
        a6:57:06:e9:ba:a1:cb:4f:52:af:ab:1a:6e:70:1c:d3:
        b0:0b:05:81:ed:84:3e:ad:76:a8:1d:1a:f9:bd:98:e3:
        f5:7a:5f:04:17:b6:19:97:02:76:1a:08:40:e0:6a:26:
        14:d1:6b:cb:cc:5c:9f:31:30:46:d3:6b:04:e0:4e:d9:
        52:8d:28:23:1d:1b:e8:96:12:b7:12:46:24:52:57:b7:
        23:3d:bb:7f:af:82:6b:0c:e5:9d:46:b7:32:e6:8a:a8:
        66:99:5e:87:0a:1f:9e:d2:17:5a:4a:14:fe:a3:de:ef:
        21:cb:df:7a:b6:36:b6:5f:53:f4:06:23:be:ef:86:d5:
        7a:a4:fb:ef:31:05:70:2c:b1:9f:ce:66:30:dd:1e:4a:
        e5:13:00:f6:fc:f0:db:04:14:c2:fd:39:f2:49:f8:06
    Fingerprint (SHA-256):
        B5:08:7D:A0:1C:EE:1E:65:31:99:D2:24:86:72:99:7E:2A:FA:C7:39:00:2E:8C:0C:32:E7:7D:CC:67:EC:D8:C8
    Fingerprint (SHA1):
        85:35:F5:72:03:6D:FD:E5:3B:3B:90:98:85:44:DE:89:C4:69:38:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6920: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6921: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153929 (0x1dee42c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:23:47:99:4a:4b:29:81:da:bb:df:1d:6f:04:e0:7c:
                    0e:09:77:69:30:1f:4a:20:a8:fa:91:ec:5f:1a:23:0c:
                    f6:fc:62:7b:ef:ce:9d:48:57:9c:b4:2e:b1:9b:da:64:
                    3b:6b:5d:b3:42:e2:22:d1:37:5d:4d:55:43:a3:3f:e4:
                    1d:6b:92:5a:64:0e:84:80:20:f1:a8:43:63:98:15:b6:
                    1e:5c:dd:b2:f4:2c:37:cb:4b:fd:65:b8:1f:45:e8:41:
                    61:86:b1:85:6e:22:a0:f7:92:1e:fa:5f:53:c9:40:7d:
                    ce:ea:d6:3c:81:d4:26:42:04:00:00:cb:99:36:ed:66:
                    b6:d9:99:89:09:3a:11:1f:cf:40:37:70:49:7d:49:33:
                    5d:2f:ef:9a:5d:4b:21:11:06:e2:e3:a8:a7:32:16:3d:
                    d3:da:61:94:f9:09:2f:30:f1:68:3f:9d:05:4a:5f:74:
                    99:0f:58:8d:82:ef:a7:5b:b0:03:7a:5e:7c:dd:a4:5a:
                    81:88:f4:d8:a6:fd:c2:60:0e:4a:53:09:49:09:0a:e9:
                    b5:3b:68:70:d8:b3:2f:ad:be:c9:11:57:32:10:aa:11:
                    60:1a:ac:19:33:0b:af:34:a0:b5:73:63:a7:8e:3a:78:
                    bc:0c:8d:4f:7b:2c:68:6c:c3:9e:60:99:c5:8b:d9:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:73:7a:a1:d2:2c:b7:64:f7:02:3c:9b:aa:ad:23:5f:
        18:83:1d:37:38:bb:41:f9:8a:6e:71:07:36:ea:44:dd:
        3e:5e:a0:18:1a:a1:29:ee:32:b5:d5:a0:11:9a:7f:b5:
        5c:ad:f5:32:42:0c:12:37:8e:6c:ea:91:ae:9a:06:21:
        75:f9:f7:51:07:a3:63:a7:3c:82:83:93:cc:ca:b5:b3:
        c1:0f:8e:6e:a4:6b:69:b7:40:21:26:52:c7:8b:7b:36:
        42:04:b0:e7:57:eb:ae:93:99:a3:c3:a6:b9:47:13:ce:
        aa:c7:be:58:25:6c:d9:0b:03:cd:27:de:b4:7d:30:34:
        30:1e:dc:fd:d8:6d:f3:f9:54:e6:8a:ae:54:19:61:70:
        2b:7e:b3:50:ed:a1:4f:5d:de:44:fa:4c:91:3a:54:2c:
        c2:a5:bf:1d:88:fd:3a:9e:b6:99:e9:7d:61:32:4e:2e:
        d0:8c:c4:37:bc:67:bc:6c:24:0c:64:55:66:27:24:c1:
        12:d8:ea:50:c1:eb:7a:ef:7e:e5:9d:41:27:4a:9c:41:
        a3:4d:2b:a7:e8:91:3b:3e:1a:f0:cb:ac:72:75:14:13:
        93:a2:a7:a5:a8:72:26:4a:3d:dd:63:a4:b4:64:5b:af:
        3c:d5:4d:88:f9:c5:6e:3e:0d:07:fe:92:77:57:a5:48
    Fingerprint (SHA-256):
        8C:60:74:A3:5F:14:AE:44:3F:15:DF:83:DA:7E:98:B9:86:73:4A:F3:58:D8:6A:2D:61:A6:27:B5:53:36:64:84
    Fingerprint (SHA1):
        1B:24:47:F2:7D:CD:80:C0:25:09:E0:81:8B:54:C3:EE:43:30:9E:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6922: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6923: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153930 (0x1dee42ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f8:16:40:09:b4:ec:3f:6b:89:b5:79:89:bb:0b:d5:
                    ea:74:0b:2c:cd:c6:cf:fa:a1:d1:8c:9f:bc:2b:18:4c:
                    84:00:b4:c4:16:74:28:aa:38:b0:93:66:51:dd:70:9c:
                    ae:84:2a:05:3b:d0:5a:f8:49:1f:5c:cc:7c:b0:94:35:
                    7a:eb:d4:44:41:3f:00:99:b6:5b:e4:6f:af:88:c1:1a:
                    f5:a4:12:66:cb:1a:e6:9e:8b:e6:2c:8a:cd:2c:fa:55:
                    56:b4:4a:dc:59:c5:61:69:bf:99:4c:2d:ac:2b:de:4e:
                    b5:93:01:45:13:65:0f:fc:87:2b:58:e6:1f:de:67:92:
                    51:82:3a:cf:cc:d7:b5:79:36:66:2f:d6:2c:87:02:90:
                    d9:5a:66:f1:ed:54:90:29:e8:73:55:68:ee:80:52:88:
                    be:d1:2b:24:7f:ad:83:9e:b8:78:e1:1d:77:2c:16:63:
                    23:4c:cb:51:21:0d:28:de:63:d3:b4:ae:97:15:5f:36:
                    5d:87:6e:6c:60:c8:44:4b:52:e0:56:58:05:88:ac:a3:
                    75:4d:90:bd:de:9f:3e:42:d6:0b:6e:9f:52:12:e7:6b:
                    1e:f4:f9:69:e0:4f:3d:e2:f5:1a:6a:14:51:09:5c:64:
                    f2:9b:0e:6f:6f:a5:5b:73:6a:91:99:23:52:9f:0f:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:6b:24:fe:fb:4b:a6:14:71:8f:ee:d2:62:0f:26:a8:
        2a:ff:d1:2a:34:9a:bd:d9:91:78:1c:2a:56:2e:44:71:
        70:87:e5:3b:62:99:6f:fc:e6:07:71:0a:00:68:9a:f0:
        17:8e:b8:47:10:0c:c4:39:05:05:48:f7:29:e3:bd:9d:
        d0:96:6e:87:3f:63:41:b9:57:ea:5d:1a:52:f9:82:94:
        8b:1c:f1:80:7b:5b:37:74:ed:c3:d2:e7:1f:d5:86:3a:
        f9:10:f1:f5:14:a4:5b:87:29:e8:66:74:d8:15:f3:bb:
        e9:c5:17:af:d4:f5:46:01:e7:a4:6b:97:2a:94:42:38:
        18:5c:60:13:89:99:5c:e3:55:fd:a9:e1:c6:1e:7c:01:
        82:90:84:63:fa:8c:52:6a:40:2e:e4:eb:1d:4e:6a:12:
        69:77:a0:7b:99:90:93:ec:80:22:fe:21:11:98:40:d3:
        3d:d0:98:67:7b:6e:2e:ec:14:c1:76:03:20:2e:b4:44:
        90:e2:51:b5:1e:b3:24:12:86:59:3d:c9:2d:38:6a:e8:
        ab:0f:3e:85:5f:7c:b4:b9:bc:04:c7:da:9e:1b:dc:6c:
        ef:e1:c6:1b:e2:52:09:8a:17:d7:9b:02:74:41:39:3a:
        0b:1b:8f:08:aa:2f:93:b0:3a:a9:b9:80:a1:a7:b9:25
    Fingerprint (SHA-256):
        BB:87:E8:21:00:2C:BE:5E:1C:E6:67:73:2E:80:AE:E7:3B:31:6A:C8:59:38:26:4E:F2:96:54:AA:2D:1F:70:73
    Fingerprint (SHA1):
        75:25:DF:46:73:B5:EA:1B:0B:D0:D6:07:97:2A:6C:A8:E8:58:09:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6924: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6925: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6926: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6927: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6928: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153928 (0x1dee42c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:57 2017
            Not After : Mon May 02 15:39:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:47:22:dc:5f:0c:02:27:89:64:e5:df:98:80:29:8d:
                    6c:fe:17:fb:ec:cf:c6:2a:7b:3f:78:81:bb:d8:0b:3e:
                    00:59:66:9b:7b:05:39:f7:25:c5:9d:9a:68:76:32:3b:
                    bf:15:5d:9b:48:2d:8b:32:ef:09:e7:fa:30:ab:fe:19:
                    c8:20:3a:e5:0e:65:b6:af:b5:61:9b:8a:5d:dd:2a:73:
                    8d:7b:ab:6c:60:b7:a6:e4:e2:e2:29:5f:90:69:d1:c8:
                    fe:97:36:9a:9d:95:9d:c9:48:f8:9f:ab:80:d0:2f:10:
                    9d:c1:d3:21:ba:03:8d:c3:7a:75:08:89:a9:e5:44:0e:
                    bb:90:03:56:2f:49:ca:de:ec:ff:92:4e:a6:8e:45:84:
                    9a:77:17:ae:2b:00:9d:cb:75:0f:c2:4d:74:a5:53:6d:
                    8f:04:70:77:83:88:6f:68:d8:d5:6c:a7:91:94:7a:65:
                    0d:d6:8f:5b:04:9f:57:13:51:32:2a:76:10:19:a3:0d:
                    fd:a7:d4:37:06:66:3e:dc:ec:73:dc:a8:58:24:39:c8:
                    78:dd:c2:d1:e1:db:8f:d4:86:ed:74:ff:ed:de:1e:2b:
                    25:c2:c8:48:9b:2e:0c:6e:ca:c4:a0:d0:51:f0:f5:29:
                    de:13:76:76:4d:6a:44:ae:6b:5f:17:01:ef:11:f0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4d:5e:74:e3:24:59:49:e8:81:8d:9e:51:1c:88:e9:
        e9:2c:bd:b6:8f:8b:3c:2e:01:84:d4:eb:a4:0d:00:6b:
        ef:6a:30:c8:3b:38:1d:41:17:5c:1a:c6:1d:59:66:fc:
        60:e1:4f:7c:34:99:cf:94:c0:1f:90:13:05:df:05:6a:
        9f:aa:e6:80:d9:bd:9b:9f:7a:57:e9:de:34:80:80:58:
        48:61:55:b1:e3:63:30:e3:50:50:52:d2:85:9c:56:cc:
        a6:57:06:e9:ba:a1:cb:4f:52:af:ab:1a:6e:70:1c:d3:
        b0:0b:05:81:ed:84:3e:ad:76:a8:1d:1a:f9:bd:98:e3:
        f5:7a:5f:04:17:b6:19:97:02:76:1a:08:40:e0:6a:26:
        14:d1:6b:cb:cc:5c:9f:31:30:46:d3:6b:04:e0:4e:d9:
        52:8d:28:23:1d:1b:e8:96:12:b7:12:46:24:52:57:b7:
        23:3d:bb:7f:af:82:6b:0c:e5:9d:46:b7:32:e6:8a:a8:
        66:99:5e:87:0a:1f:9e:d2:17:5a:4a:14:fe:a3:de:ef:
        21:cb:df:7a:b6:36:b6:5f:53:f4:06:23:be:ef:86:d5:
        7a:a4:fb:ef:31:05:70:2c:b1:9f:ce:66:30:dd:1e:4a:
        e5:13:00:f6:fc:f0:db:04:14:c2:fd:39:f2:49:f8:06
    Fingerprint (SHA-256):
        B5:08:7D:A0:1C:EE:1E:65:31:99:D2:24:86:72:99:7E:2A:FA:C7:39:00:2E:8C:0C:32:E7:7D:CC:67:EC:D8:C8
    Fingerprint (SHA1):
        85:35:F5:72:03:6D:FD:E5:3B:3B:90:98:85:44:DE:89:C4:69:38:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6929: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6930: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153929 (0x1dee42c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:23:47:99:4a:4b:29:81:da:bb:df:1d:6f:04:e0:7c:
                    0e:09:77:69:30:1f:4a:20:a8:fa:91:ec:5f:1a:23:0c:
                    f6:fc:62:7b:ef:ce:9d:48:57:9c:b4:2e:b1:9b:da:64:
                    3b:6b:5d:b3:42:e2:22:d1:37:5d:4d:55:43:a3:3f:e4:
                    1d:6b:92:5a:64:0e:84:80:20:f1:a8:43:63:98:15:b6:
                    1e:5c:dd:b2:f4:2c:37:cb:4b:fd:65:b8:1f:45:e8:41:
                    61:86:b1:85:6e:22:a0:f7:92:1e:fa:5f:53:c9:40:7d:
                    ce:ea:d6:3c:81:d4:26:42:04:00:00:cb:99:36:ed:66:
                    b6:d9:99:89:09:3a:11:1f:cf:40:37:70:49:7d:49:33:
                    5d:2f:ef:9a:5d:4b:21:11:06:e2:e3:a8:a7:32:16:3d:
                    d3:da:61:94:f9:09:2f:30:f1:68:3f:9d:05:4a:5f:74:
                    99:0f:58:8d:82:ef:a7:5b:b0:03:7a:5e:7c:dd:a4:5a:
                    81:88:f4:d8:a6:fd:c2:60:0e:4a:53:09:49:09:0a:e9:
                    b5:3b:68:70:d8:b3:2f:ad:be:c9:11:57:32:10:aa:11:
                    60:1a:ac:19:33:0b:af:34:a0:b5:73:63:a7:8e:3a:78:
                    bc:0c:8d:4f:7b:2c:68:6c:c3:9e:60:99:c5:8b:d9:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:73:7a:a1:d2:2c:b7:64:f7:02:3c:9b:aa:ad:23:5f:
        18:83:1d:37:38:bb:41:f9:8a:6e:71:07:36:ea:44:dd:
        3e:5e:a0:18:1a:a1:29:ee:32:b5:d5:a0:11:9a:7f:b5:
        5c:ad:f5:32:42:0c:12:37:8e:6c:ea:91:ae:9a:06:21:
        75:f9:f7:51:07:a3:63:a7:3c:82:83:93:cc:ca:b5:b3:
        c1:0f:8e:6e:a4:6b:69:b7:40:21:26:52:c7:8b:7b:36:
        42:04:b0:e7:57:eb:ae:93:99:a3:c3:a6:b9:47:13:ce:
        aa:c7:be:58:25:6c:d9:0b:03:cd:27:de:b4:7d:30:34:
        30:1e:dc:fd:d8:6d:f3:f9:54:e6:8a:ae:54:19:61:70:
        2b:7e:b3:50:ed:a1:4f:5d:de:44:fa:4c:91:3a:54:2c:
        c2:a5:bf:1d:88:fd:3a:9e:b6:99:e9:7d:61:32:4e:2e:
        d0:8c:c4:37:bc:67:bc:6c:24:0c:64:55:66:27:24:c1:
        12:d8:ea:50:c1:eb:7a:ef:7e:e5:9d:41:27:4a:9c:41:
        a3:4d:2b:a7:e8:91:3b:3e:1a:f0:cb:ac:72:75:14:13:
        93:a2:a7:a5:a8:72:26:4a:3d:dd:63:a4:b4:64:5b:af:
        3c:d5:4d:88:f9:c5:6e:3e:0d:07:fe:92:77:57:a5:48
    Fingerprint (SHA-256):
        8C:60:74:A3:5F:14:AE:44:3F:15:DF:83:DA:7E:98:B9:86:73:4A:F3:58:D8:6A:2D:61:A6:27:B5:53:36:64:84
    Fingerprint (SHA1):
        1B:24:47:F2:7D:CD:80:C0:25:09:E0:81:8B:54:C3:EE:43:30:9E:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6931: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6932: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153930 (0x1dee42ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f8:16:40:09:b4:ec:3f:6b:89:b5:79:89:bb:0b:d5:
                    ea:74:0b:2c:cd:c6:cf:fa:a1:d1:8c:9f:bc:2b:18:4c:
                    84:00:b4:c4:16:74:28:aa:38:b0:93:66:51:dd:70:9c:
                    ae:84:2a:05:3b:d0:5a:f8:49:1f:5c:cc:7c:b0:94:35:
                    7a:eb:d4:44:41:3f:00:99:b6:5b:e4:6f:af:88:c1:1a:
                    f5:a4:12:66:cb:1a:e6:9e:8b:e6:2c:8a:cd:2c:fa:55:
                    56:b4:4a:dc:59:c5:61:69:bf:99:4c:2d:ac:2b:de:4e:
                    b5:93:01:45:13:65:0f:fc:87:2b:58:e6:1f:de:67:92:
                    51:82:3a:cf:cc:d7:b5:79:36:66:2f:d6:2c:87:02:90:
                    d9:5a:66:f1:ed:54:90:29:e8:73:55:68:ee:80:52:88:
                    be:d1:2b:24:7f:ad:83:9e:b8:78:e1:1d:77:2c:16:63:
                    23:4c:cb:51:21:0d:28:de:63:d3:b4:ae:97:15:5f:36:
                    5d:87:6e:6c:60:c8:44:4b:52:e0:56:58:05:88:ac:a3:
                    75:4d:90:bd:de:9f:3e:42:d6:0b:6e:9f:52:12:e7:6b:
                    1e:f4:f9:69:e0:4f:3d:e2:f5:1a:6a:14:51:09:5c:64:
                    f2:9b:0e:6f:6f:a5:5b:73:6a:91:99:23:52:9f:0f:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:6b:24:fe:fb:4b:a6:14:71:8f:ee:d2:62:0f:26:a8:
        2a:ff:d1:2a:34:9a:bd:d9:91:78:1c:2a:56:2e:44:71:
        70:87:e5:3b:62:99:6f:fc:e6:07:71:0a:00:68:9a:f0:
        17:8e:b8:47:10:0c:c4:39:05:05:48:f7:29:e3:bd:9d:
        d0:96:6e:87:3f:63:41:b9:57:ea:5d:1a:52:f9:82:94:
        8b:1c:f1:80:7b:5b:37:74:ed:c3:d2:e7:1f:d5:86:3a:
        f9:10:f1:f5:14:a4:5b:87:29:e8:66:74:d8:15:f3:bb:
        e9:c5:17:af:d4:f5:46:01:e7:a4:6b:97:2a:94:42:38:
        18:5c:60:13:89:99:5c:e3:55:fd:a9:e1:c6:1e:7c:01:
        82:90:84:63:fa:8c:52:6a:40:2e:e4:eb:1d:4e:6a:12:
        69:77:a0:7b:99:90:93:ec:80:22:fe:21:11:98:40:d3:
        3d:d0:98:67:7b:6e:2e:ec:14:c1:76:03:20:2e:b4:44:
        90:e2:51:b5:1e:b3:24:12:86:59:3d:c9:2d:38:6a:e8:
        ab:0f:3e:85:5f:7c:b4:b9:bc:04:c7:da:9e:1b:dc:6c:
        ef:e1:c6:1b:e2:52:09:8a:17:d7:9b:02:74:41:39:3a:
        0b:1b:8f:08:aa:2f:93:b0:3a:a9:b9:80:a1:a7:b9:25
    Fingerprint (SHA-256):
        BB:87:E8:21:00:2C:BE:5E:1C:E6:67:73:2E:80:AE:E7:3B:31:6A:C8:59:38:26:4E:F2:96:54:AA:2D:1F:70:73
    Fingerprint (SHA1):
        75:25:DF:46:73:B5:EA:1B:0B:D0:D6:07:97:2A:6C:A8:E8:58:09:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6933: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6934: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153928 (0x1dee42c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:57 2017
            Not After : Mon May 02 15:39:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:47:22:dc:5f:0c:02:27:89:64:e5:df:98:80:29:8d:
                    6c:fe:17:fb:ec:cf:c6:2a:7b:3f:78:81:bb:d8:0b:3e:
                    00:59:66:9b:7b:05:39:f7:25:c5:9d:9a:68:76:32:3b:
                    bf:15:5d:9b:48:2d:8b:32:ef:09:e7:fa:30:ab:fe:19:
                    c8:20:3a:e5:0e:65:b6:af:b5:61:9b:8a:5d:dd:2a:73:
                    8d:7b:ab:6c:60:b7:a6:e4:e2:e2:29:5f:90:69:d1:c8:
                    fe:97:36:9a:9d:95:9d:c9:48:f8:9f:ab:80:d0:2f:10:
                    9d:c1:d3:21:ba:03:8d:c3:7a:75:08:89:a9:e5:44:0e:
                    bb:90:03:56:2f:49:ca:de:ec:ff:92:4e:a6:8e:45:84:
                    9a:77:17:ae:2b:00:9d:cb:75:0f:c2:4d:74:a5:53:6d:
                    8f:04:70:77:83:88:6f:68:d8:d5:6c:a7:91:94:7a:65:
                    0d:d6:8f:5b:04:9f:57:13:51:32:2a:76:10:19:a3:0d:
                    fd:a7:d4:37:06:66:3e:dc:ec:73:dc:a8:58:24:39:c8:
                    78:dd:c2:d1:e1:db:8f:d4:86:ed:74:ff:ed:de:1e:2b:
                    25:c2:c8:48:9b:2e:0c:6e:ca:c4:a0:d0:51:f0:f5:29:
                    de:13:76:76:4d:6a:44:ae:6b:5f:17:01:ef:11:f0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4d:5e:74:e3:24:59:49:e8:81:8d:9e:51:1c:88:e9:
        e9:2c:bd:b6:8f:8b:3c:2e:01:84:d4:eb:a4:0d:00:6b:
        ef:6a:30:c8:3b:38:1d:41:17:5c:1a:c6:1d:59:66:fc:
        60:e1:4f:7c:34:99:cf:94:c0:1f:90:13:05:df:05:6a:
        9f:aa:e6:80:d9:bd:9b:9f:7a:57:e9:de:34:80:80:58:
        48:61:55:b1:e3:63:30:e3:50:50:52:d2:85:9c:56:cc:
        a6:57:06:e9:ba:a1:cb:4f:52:af:ab:1a:6e:70:1c:d3:
        b0:0b:05:81:ed:84:3e:ad:76:a8:1d:1a:f9:bd:98:e3:
        f5:7a:5f:04:17:b6:19:97:02:76:1a:08:40:e0:6a:26:
        14:d1:6b:cb:cc:5c:9f:31:30:46:d3:6b:04:e0:4e:d9:
        52:8d:28:23:1d:1b:e8:96:12:b7:12:46:24:52:57:b7:
        23:3d:bb:7f:af:82:6b:0c:e5:9d:46:b7:32:e6:8a:a8:
        66:99:5e:87:0a:1f:9e:d2:17:5a:4a:14:fe:a3:de:ef:
        21:cb:df:7a:b6:36:b6:5f:53:f4:06:23:be:ef:86:d5:
        7a:a4:fb:ef:31:05:70:2c:b1:9f:ce:66:30:dd:1e:4a:
        e5:13:00:f6:fc:f0:db:04:14:c2:fd:39:f2:49:f8:06
    Fingerprint (SHA-256):
        B5:08:7D:A0:1C:EE:1E:65:31:99:D2:24:86:72:99:7E:2A:FA:C7:39:00:2E:8C:0C:32:E7:7D:CC:67:EC:D8:C8
    Fingerprint (SHA1):
        85:35:F5:72:03:6D:FD:E5:3B:3B:90:98:85:44:DE:89:C4:69:38:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6935: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153928 (0x1dee42c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:57 2017
            Not After : Mon May 02 15:39:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:47:22:dc:5f:0c:02:27:89:64:e5:df:98:80:29:8d:
                    6c:fe:17:fb:ec:cf:c6:2a:7b:3f:78:81:bb:d8:0b:3e:
                    00:59:66:9b:7b:05:39:f7:25:c5:9d:9a:68:76:32:3b:
                    bf:15:5d:9b:48:2d:8b:32:ef:09:e7:fa:30:ab:fe:19:
                    c8:20:3a:e5:0e:65:b6:af:b5:61:9b:8a:5d:dd:2a:73:
                    8d:7b:ab:6c:60:b7:a6:e4:e2:e2:29:5f:90:69:d1:c8:
                    fe:97:36:9a:9d:95:9d:c9:48:f8:9f:ab:80:d0:2f:10:
                    9d:c1:d3:21:ba:03:8d:c3:7a:75:08:89:a9:e5:44:0e:
                    bb:90:03:56:2f:49:ca:de:ec:ff:92:4e:a6:8e:45:84:
                    9a:77:17:ae:2b:00:9d:cb:75:0f:c2:4d:74:a5:53:6d:
                    8f:04:70:77:83:88:6f:68:d8:d5:6c:a7:91:94:7a:65:
                    0d:d6:8f:5b:04:9f:57:13:51:32:2a:76:10:19:a3:0d:
                    fd:a7:d4:37:06:66:3e:dc:ec:73:dc:a8:58:24:39:c8:
                    78:dd:c2:d1:e1:db:8f:d4:86:ed:74:ff:ed:de:1e:2b:
                    25:c2:c8:48:9b:2e:0c:6e:ca:c4:a0:d0:51:f0:f5:29:
                    de:13:76:76:4d:6a:44:ae:6b:5f:17:01:ef:11:f0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:4d:5e:74:e3:24:59:49:e8:81:8d:9e:51:1c:88:e9:
        e9:2c:bd:b6:8f:8b:3c:2e:01:84:d4:eb:a4:0d:00:6b:
        ef:6a:30:c8:3b:38:1d:41:17:5c:1a:c6:1d:59:66:fc:
        60:e1:4f:7c:34:99:cf:94:c0:1f:90:13:05:df:05:6a:
        9f:aa:e6:80:d9:bd:9b:9f:7a:57:e9:de:34:80:80:58:
        48:61:55:b1:e3:63:30:e3:50:50:52:d2:85:9c:56:cc:
        a6:57:06:e9:ba:a1:cb:4f:52:af:ab:1a:6e:70:1c:d3:
        b0:0b:05:81:ed:84:3e:ad:76:a8:1d:1a:f9:bd:98:e3:
        f5:7a:5f:04:17:b6:19:97:02:76:1a:08:40:e0:6a:26:
        14:d1:6b:cb:cc:5c:9f:31:30:46:d3:6b:04:e0:4e:d9:
        52:8d:28:23:1d:1b:e8:96:12:b7:12:46:24:52:57:b7:
        23:3d:bb:7f:af:82:6b:0c:e5:9d:46:b7:32:e6:8a:a8:
        66:99:5e:87:0a:1f:9e:d2:17:5a:4a:14:fe:a3:de:ef:
        21:cb:df:7a:b6:36:b6:5f:53:f4:06:23:be:ef:86:d5:
        7a:a4:fb:ef:31:05:70:2c:b1:9f:ce:66:30:dd:1e:4a:
        e5:13:00:f6:fc:f0:db:04:14:c2:fd:39:f2:49:f8:06
    Fingerprint (SHA-256):
        B5:08:7D:A0:1C:EE:1E:65:31:99:D2:24:86:72:99:7E:2A:FA:C7:39:00:2E:8C:0C:32:E7:7D:CC:67:EC:D8:C8
    Fingerprint (SHA1):
        85:35:F5:72:03:6D:FD:E5:3B:3B:90:98:85:44:DE:89:C4:69:38:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6936: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153929 (0x1dee42c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:23:47:99:4a:4b:29:81:da:bb:df:1d:6f:04:e0:7c:
                    0e:09:77:69:30:1f:4a:20:a8:fa:91:ec:5f:1a:23:0c:
                    f6:fc:62:7b:ef:ce:9d:48:57:9c:b4:2e:b1:9b:da:64:
                    3b:6b:5d:b3:42:e2:22:d1:37:5d:4d:55:43:a3:3f:e4:
                    1d:6b:92:5a:64:0e:84:80:20:f1:a8:43:63:98:15:b6:
                    1e:5c:dd:b2:f4:2c:37:cb:4b:fd:65:b8:1f:45:e8:41:
                    61:86:b1:85:6e:22:a0:f7:92:1e:fa:5f:53:c9:40:7d:
                    ce:ea:d6:3c:81:d4:26:42:04:00:00:cb:99:36:ed:66:
                    b6:d9:99:89:09:3a:11:1f:cf:40:37:70:49:7d:49:33:
                    5d:2f:ef:9a:5d:4b:21:11:06:e2:e3:a8:a7:32:16:3d:
                    d3:da:61:94:f9:09:2f:30:f1:68:3f:9d:05:4a:5f:74:
                    99:0f:58:8d:82:ef:a7:5b:b0:03:7a:5e:7c:dd:a4:5a:
                    81:88:f4:d8:a6:fd:c2:60:0e:4a:53:09:49:09:0a:e9:
                    b5:3b:68:70:d8:b3:2f:ad:be:c9:11:57:32:10:aa:11:
                    60:1a:ac:19:33:0b:af:34:a0:b5:73:63:a7:8e:3a:78:
                    bc:0c:8d:4f:7b:2c:68:6c:c3:9e:60:99:c5:8b:d9:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:73:7a:a1:d2:2c:b7:64:f7:02:3c:9b:aa:ad:23:5f:
        18:83:1d:37:38:bb:41:f9:8a:6e:71:07:36:ea:44:dd:
        3e:5e:a0:18:1a:a1:29:ee:32:b5:d5:a0:11:9a:7f:b5:
        5c:ad:f5:32:42:0c:12:37:8e:6c:ea:91:ae:9a:06:21:
        75:f9:f7:51:07:a3:63:a7:3c:82:83:93:cc:ca:b5:b3:
        c1:0f:8e:6e:a4:6b:69:b7:40:21:26:52:c7:8b:7b:36:
        42:04:b0:e7:57:eb:ae:93:99:a3:c3:a6:b9:47:13:ce:
        aa:c7:be:58:25:6c:d9:0b:03:cd:27:de:b4:7d:30:34:
        30:1e:dc:fd:d8:6d:f3:f9:54:e6:8a:ae:54:19:61:70:
        2b:7e:b3:50:ed:a1:4f:5d:de:44:fa:4c:91:3a:54:2c:
        c2:a5:bf:1d:88:fd:3a:9e:b6:99:e9:7d:61:32:4e:2e:
        d0:8c:c4:37:bc:67:bc:6c:24:0c:64:55:66:27:24:c1:
        12:d8:ea:50:c1:eb:7a:ef:7e:e5:9d:41:27:4a:9c:41:
        a3:4d:2b:a7:e8:91:3b:3e:1a:f0:cb:ac:72:75:14:13:
        93:a2:a7:a5:a8:72:26:4a:3d:dd:63:a4:b4:64:5b:af:
        3c:d5:4d:88:f9:c5:6e:3e:0d:07:fe:92:77:57:a5:48
    Fingerprint (SHA-256):
        8C:60:74:A3:5F:14:AE:44:3F:15:DF:83:DA:7E:98:B9:86:73:4A:F3:58:D8:6A:2D:61:A6:27:B5:53:36:64:84
    Fingerprint (SHA1):
        1B:24:47:F2:7D:CD:80:C0:25:09:E0:81:8B:54:C3:EE:43:30:9E:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6937: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153929 (0x1dee42c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:23:47:99:4a:4b:29:81:da:bb:df:1d:6f:04:e0:7c:
                    0e:09:77:69:30:1f:4a:20:a8:fa:91:ec:5f:1a:23:0c:
                    f6:fc:62:7b:ef:ce:9d:48:57:9c:b4:2e:b1:9b:da:64:
                    3b:6b:5d:b3:42:e2:22:d1:37:5d:4d:55:43:a3:3f:e4:
                    1d:6b:92:5a:64:0e:84:80:20:f1:a8:43:63:98:15:b6:
                    1e:5c:dd:b2:f4:2c:37:cb:4b:fd:65:b8:1f:45:e8:41:
                    61:86:b1:85:6e:22:a0:f7:92:1e:fa:5f:53:c9:40:7d:
                    ce:ea:d6:3c:81:d4:26:42:04:00:00:cb:99:36:ed:66:
                    b6:d9:99:89:09:3a:11:1f:cf:40:37:70:49:7d:49:33:
                    5d:2f:ef:9a:5d:4b:21:11:06:e2:e3:a8:a7:32:16:3d:
                    d3:da:61:94:f9:09:2f:30:f1:68:3f:9d:05:4a:5f:74:
                    99:0f:58:8d:82:ef:a7:5b:b0:03:7a:5e:7c:dd:a4:5a:
                    81:88:f4:d8:a6:fd:c2:60:0e:4a:53:09:49:09:0a:e9:
                    b5:3b:68:70:d8:b3:2f:ad:be:c9:11:57:32:10:aa:11:
                    60:1a:ac:19:33:0b:af:34:a0:b5:73:63:a7:8e:3a:78:
                    bc:0c:8d:4f:7b:2c:68:6c:c3:9e:60:99:c5:8b:d9:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:73:7a:a1:d2:2c:b7:64:f7:02:3c:9b:aa:ad:23:5f:
        18:83:1d:37:38:bb:41:f9:8a:6e:71:07:36:ea:44:dd:
        3e:5e:a0:18:1a:a1:29:ee:32:b5:d5:a0:11:9a:7f:b5:
        5c:ad:f5:32:42:0c:12:37:8e:6c:ea:91:ae:9a:06:21:
        75:f9:f7:51:07:a3:63:a7:3c:82:83:93:cc:ca:b5:b3:
        c1:0f:8e:6e:a4:6b:69:b7:40:21:26:52:c7:8b:7b:36:
        42:04:b0:e7:57:eb:ae:93:99:a3:c3:a6:b9:47:13:ce:
        aa:c7:be:58:25:6c:d9:0b:03:cd:27:de:b4:7d:30:34:
        30:1e:dc:fd:d8:6d:f3:f9:54:e6:8a:ae:54:19:61:70:
        2b:7e:b3:50:ed:a1:4f:5d:de:44:fa:4c:91:3a:54:2c:
        c2:a5:bf:1d:88:fd:3a:9e:b6:99:e9:7d:61:32:4e:2e:
        d0:8c:c4:37:bc:67:bc:6c:24:0c:64:55:66:27:24:c1:
        12:d8:ea:50:c1:eb:7a:ef:7e:e5:9d:41:27:4a:9c:41:
        a3:4d:2b:a7:e8:91:3b:3e:1a:f0:cb:ac:72:75:14:13:
        93:a2:a7:a5:a8:72:26:4a:3d:dd:63:a4:b4:64:5b:af:
        3c:d5:4d:88:f9:c5:6e:3e:0d:07:fe:92:77:57:a5:48
    Fingerprint (SHA-256):
        8C:60:74:A3:5F:14:AE:44:3F:15:DF:83:DA:7E:98:B9:86:73:4A:F3:58:D8:6A:2D:61:A6:27:B5:53:36:64:84
    Fingerprint (SHA1):
        1B:24:47:F2:7D:CD:80:C0:25:09:E0:81:8B:54:C3:EE:43:30:9E:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6938: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153930 (0x1dee42ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f8:16:40:09:b4:ec:3f:6b:89:b5:79:89:bb:0b:d5:
                    ea:74:0b:2c:cd:c6:cf:fa:a1:d1:8c:9f:bc:2b:18:4c:
                    84:00:b4:c4:16:74:28:aa:38:b0:93:66:51:dd:70:9c:
                    ae:84:2a:05:3b:d0:5a:f8:49:1f:5c:cc:7c:b0:94:35:
                    7a:eb:d4:44:41:3f:00:99:b6:5b:e4:6f:af:88:c1:1a:
                    f5:a4:12:66:cb:1a:e6:9e:8b:e6:2c:8a:cd:2c:fa:55:
                    56:b4:4a:dc:59:c5:61:69:bf:99:4c:2d:ac:2b:de:4e:
                    b5:93:01:45:13:65:0f:fc:87:2b:58:e6:1f:de:67:92:
                    51:82:3a:cf:cc:d7:b5:79:36:66:2f:d6:2c:87:02:90:
                    d9:5a:66:f1:ed:54:90:29:e8:73:55:68:ee:80:52:88:
                    be:d1:2b:24:7f:ad:83:9e:b8:78:e1:1d:77:2c:16:63:
                    23:4c:cb:51:21:0d:28:de:63:d3:b4:ae:97:15:5f:36:
                    5d:87:6e:6c:60:c8:44:4b:52:e0:56:58:05:88:ac:a3:
                    75:4d:90:bd:de:9f:3e:42:d6:0b:6e:9f:52:12:e7:6b:
                    1e:f4:f9:69:e0:4f:3d:e2:f5:1a:6a:14:51:09:5c:64:
                    f2:9b:0e:6f:6f:a5:5b:73:6a:91:99:23:52:9f:0f:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:6b:24:fe:fb:4b:a6:14:71:8f:ee:d2:62:0f:26:a8:
        2a:ff:d1:2a:34:9a:bd:d9:91:78:1c:2a:56:2e:44:71:
        70:87:e5:3b:62:99:6f:fc:e6:07:71:0a:00:68:9a:f0:
        17:8e:b8:47:10:0c:c4:39:05:05:48:f7:29:e3:bd:9d:
        d0:96:6e:87:3f:63:41:b9:57:ea:5d:1a:52:f9:82:94:
        8b:1c:f1:80:7b:5b:37:74:ed:c3:d2:e7:1f:d5:86:3a:
        f9:10:f1:f5:14:a4:5b:87:29:e8:66:74:d8:15:f3:bb:
        e9:c5:17:af:d4:f5:46:01:e7:a4:6b:97:2a:94:42:38:
        18:5c:60:13:89:99:5c:e3:55:fd:a9:e1:c6:1e:7c:01:
        82:90:84:63:fa:8c:52:6a:40:2e:e4:eb:1d:4e:6a:12:
        69:77:a0:7b:99:90:93:ec:80:22:fe:21:11:98:40:d3:
        3d:d0:98:67:7b:6e:2e:ec:14:c1:76:03:20:2e:b4:44:
        90:e2:51:b5:1e:b3:24:12:86:59:3d:c9:2d:38:6a:e8:
        ab:0f:3e:85:5f:7c:b4:b9:bc:04:c7:da:9e:1b:dc:6c:
        ef:e1:c6:1b:e2:52:09:8a:17:d7:9b:02:74:41:39:3a:
        0b:1b:8f:08:aa:2f:93:b0:3a:a9:b9:80:a1:a7:b9:25
    Fingerprint (SHA-256):
        BB:87:E8:21:00:2C:BE:5E:1C:E6:67:73:2E:80:AE:E7:3B:31:6A:C8:59:38:26:4E:F2:96:54:AA:2D:1F:70:73
    Fingerprint (SHA1):
        75:25:DF:46:73:B5:EA:1B:0B:D0:D6:07:97:2A:6C:A8:E8:58:09:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6939: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153930 (0x1dee42ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:39:58 2017
            Not After : Mon May 02 15:39:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f8:16:40:09:b4:ec:3f:6b:89:b5:79:89:bb:0b:d5:
                    ea:74:0b:2c:cd:c6:cf:fa:a1:d1:8c:9f:bc:2b:18:4c:
                    84:00:b4:c4:16:74:28:aa:38:b0:93:66:51:dd:70:9c:
                    ae:84:2a:05:3b:d0:5a:f8:49:1f:5c:cc:7c:b0:94:35:
                    7a:eb:d4:44:41:3f:00:99:b6:5b:e4:6f:af:88:c1:1a:
                    f5:a4:12:66:cb:1a:e6:9e:8b:e6:2c:8a:cd:2c:fa:55:
                    56:b4:4a:dc:59:c5:61:69:bf:99:4c:2d:ac:2b:de:4e:
                    b5:93:01:45:13:65:0f:fc:87:2b:58:e6:1f:de:67:92:
                    51:82:3a:cf:cc:d7:b5:79:36:66:2f:d6:2c:87:02:90:
                    d9:5a:66:f1:ed:54:90:29:e8:73:55:68:ee:80:52:88:
                    be:d1:2b:24:7f:ad:83:9e:b8:78:e1:1d:77:2c:16:63:
                    23:4c:cb:51:21:0d:28:de:63:d3:b4:ae:97:15:5f:36:
                    5d:87:6e:6c:60:c8:44:4b:52:e0:56:58:05:88:ac:a3:
                    75:4d:90:bd:de:9f:3e:42:d6:0b:6e:9f:52:12:e7:6b:
                    1e:f4:f9:69:e0:4f:3d:e2:f5:1a:6a:14:51:09:5c:64:
                    f2:9b:0e:6f:6f:a5:5b:73:6a:91:99:23:52:9f:0f:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:6b:24:fe:fb:4b:a6:14:71:8f:ee:d2:62:0f:26:a8:
        2a:ff:d1:2a:34:9a:bd:d9:91:78:1c:2a:56:2e:44:71:
        70:87:e5:3b:62:99:6f:fc:e6:07:71:0a:00:68:9a:f0:
        17:8e:b8:47:10:0c:c4:39:05:05:48:f7:29:e3:bd:9d:
        d0:96:6e:87:3f:63:41:b9:57:ea:5d:1a:52:f9:82:94:
        8b:1c:f1:80:7b:5b:37:74:ed:c3:d2:e7:1f:d5:86:3a:
        f9:10:f1:f5:14:a4:5b:87:29:e8:66:74:d8:15:f3:bb:
        e9:c5:17:af:d4:f5:46:01:e7:a4:6b:97:2a:94:42:38:
        18:5c:60:13:89:99:5c:e3:55:fd:a9:e1:c6:1e:7c:01:
        82:90:84:63:fa:8c:52:6a:40:2e:e4:eb:1d:4e:6a:12:
        69:77:a0:7b:99:90:93:ec:80:22:fe:21:11:98:40:d3:
        3d:d0:98:67:7b:6e:2e:ec:14:c1:76:03:20:2e:b4:44:
        90:e2:51:b5:1e:b3:24:12:86:59:3d:c9:2d:38:6a:e8:
        ab:0f:3e:85:5f:7c:b4:b9:bc:04:c7:da:9e:1b:dc:6c:
        ef:e1:c6:1b:e2:52:09:8a:17:d7:9b:02:74:41:39:3a:
        0b:1b:8f:08:aa:2f:93:b0:3a:a9:b9:80:a1:a7:b9:25
    Fingerprint (SHA-256):
        BB:87:E8:21:00:2C:BE:5E:1C:E6:67:73:2E:80:AE:E7:3B:31:6A:C8:59:38:26:4E:F2:96:54:AA:2D:1F:70:73
    Fingerprint (SHA1):
        75:25:DF:46:73:B5:EA:1B:0B:D0:D6:07:97:2A:6C:A8:E8:58:09:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6940: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6941: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153933 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6942: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6943: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6944: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6945: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153934   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6946: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6947: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6948: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6949: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153935   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6950: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6951: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6952: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6953: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502153936   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6954: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6955: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6956: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6957: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502153937   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6958: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6959: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6960: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6961: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502153938   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6962: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6963: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6964: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6965: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502153939   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6966: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6967: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6968: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6969: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6970: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6971: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6972: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153933 (0x1dee42cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:02 2017
            Not After : Mon May 02 15:40:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:55:2d:3f:a7:70:d1:d7:33:47:89:d0:34:1a:d7:05:
                    1d:1c:94:cb:6f:ae:3e:9c:ec:f7:ae:2d:c1:e7:71:6a:
                    46:66:5c:9d:08:a4:b4:68:58:82:db:ac:bc:0a:83:fe:
                    65:ff:1e:c8:90:11:bf:46:7d:04:06:e6:06:19:a4:3b:
                    ae:bf:9f:7a:e8:e8:5e:44:46:c6:13:18:ad:4e:9b:68:
                    b9:08:28:90:f6:15:4e:d4:05:e0:6c:ae:57:c5:6e:9f:
                    bb:15:1e:13:0a:63:4e:a4:11:75:8f:a8:68:88:d9:9f:
                    f8:45:0f:76:92:72:fc:8a:13:8a:74:3f:0d:35:57:c3:
                    5f:6f:8c:c1:77:14:af:36:15:28:8c:e6:ac:fe:39:38:
                    f3:a5:64:2c:77:ff:81:b9:5d:a1:c4:0e:32:a7:54:72:
                    07:3e:43:8d:a4:eb:77:26:44:e8:2b:6e:09:c2:29:10:
                    33:e5:34:ab:b0:f8:f4:c1:51:34:73:78:d7:42:b8:af:
                    c5:de:c8:1e:6b:61:b1:50:3a:50:30:e8:23:bf:33:3b:
                    a6:72:e5:94:7b:7c:0c:0d:a8:d2:47:24:88:c2:c3:7f:
                    86:e9:32:37:2a:e4:ab:6a:70:c2:60:e5:8e:70:27:37:
                    61:88:a2:d8:9f:e7:2c:0e:f7:e4:64:fa:9d:e2:01:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:9e:c4:5e:34:aa:14:07:cf:3d:48:f3:0f:36:69:3a:
        89:64:e8:fb:f4:17:2c:b2:b1:00:c9:24:d4:41:e5:ab:
        85:12:b4:df:dd:e8:5d:5b:6d:0f:9b:95:e6:ba:7d:21:
        47:ba:f0:8f:03:3a:6e:17:6d:6a:38:29:c3:9b:11:36:
        6e:b5:16:78:73:62:e9:57:00:ac:cc:1c:ec:89:21:dd:
        7e:d5:1b:5e:cf:81:3c:6b:c0:ef:dc:37:6d:0f:4e:95:
        56:67:9b:0d:b5:77:4d:4d:83:3d:d6:c6:07:2f:e3:91:
        b1:88:a1:ff:f9:ae:e0:db:08:03:9b:ed:ba:00:c1:ca:
        8e:7b:3d:c1:2b:eb:ca:cf:97:97:40:06:8b:49:12:be:
        80:46:ba:3c:a2:0e:c3:dd:6a:86:77:d5:56:20:f2:d1:
        14:b1:08:e1:bb:e3:e7:e7:64:45:72:0c:8c:71:21:0a:
        d3:25:d9:cd:e5:e4:b6:0d:64:33:e2:84:eb:61:2c:04:
        d7:6e:74:c7:01:40:c4:a1:06:b5:cb:8c:c9:b6:b7:94:
        65:18:e3:11:1e:f0:05:7e:d6:2e:79:79:31:22:e0:3a:
        b8:65:98:3d:88:23:c6:9d:38:a7:b2:cd:6e:49:4f:bf:
        f3:17:3f:52:40:d4:80:24:59:e2:65:76:cd:b0:d6:70
    Fingerprint (SHA-256):
        A5:C6:31:C6:16:29:90:4A:65:7E:C0:2C:52:3A:8D:E7:F4:0C:A7:35:FF:9C:21:17:B2:35:7D:DB:9A:83:77:52
    Fingerprint (SHA1):
        B3:06:90:4F:43:79:D0:B7:F0:4D:33:93:01:BB:99:7C:04:69:13:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6973: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6974: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6975: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6976: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153933 (0x1dee42cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:02 2017
            Not After : Mon May 02 15:40:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:55:2d:3f:a7:70:d1:d7:33:47:89:d0:34:1a:d7:05:
                    1d:1c:94:cb:6f:ae:3e:9c:ec:f7:ae:2d:c1:e7:71:6a:
                    46:66:5c:9d:08:a4:b4:68:58:82:db:ac:bc:0a:83:fe:
                    65:ff:1e:c8:90:11:bf:46:7d:04:06:e6:06:19:a4:3b:
                    ae:bf:9f:7a:e8:e8:5e:44:46:c6:13:18:ad:4e:9b:68:
                    b9:08:28:90:f6:15:4e:d4:05:e0:6c:ae:57:c5:6e:9f:
                    bb:15:1e:13:0a:63:4e:a4:11:75:8f:a8:68:88:d9:9f:
                    f8:45:0f:76:92:72:fc:8a:13:8a:74:3f:0d:35:57:c3:
                    5f:6f:8c:c1:77:14:af:36:15:28:8c:e6:ac:fe:39:38:
                    f3:a5:64:2c:77:ff:81:b9:5d:a1:c4:0e:32:a7:54:72:
                    07:3e:43:8d:a4:eb:77:26:44:e8:2b:6e:09:c2:29:10:
                    33:e5:34:ab:b0:f8:f4:c1:51:34:73:78:d7:42:b8:af:
                    c5:de:c8:1e:6b:61:b1:50:3a:50:30:e8:23:bf:33:3b:
                    a6:72:e5:94:7b:7c:0c:0d:a8:d2:47:24:88:c2:c3:7f:
                    86:e9:32:37:2a:e4:ab:6a:70:c2:60:e5:8e:70:27:37:
                    61:88:a2:d8:9f:e7:2c:0e:f7:e4:64:fa:9d:e2:01:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:9e:c4:5e:34:aa:14:07:cf:3d:48:f3:0f:36:69:3a:
        89:64:e8:fb:f4:17:2c:b2:b1:00:c9:24:d4:41:e5:ab:
        85:12:b4:df:dd:e8:5d:5b:6d:0f:9b:95:e6:ba:7d:21:
        47:ba:f0:8f:03:3a:6e:17:6d:6a:38:29:c3:9b:11:36:
        6e:b5:16:78:73:62:e9:57:00:ac:cc:1c:ec:89:21:dd:
        7e:d5:1b:5e:cf:81:3c:6b:c0:ef:dc:37:6d:0f:4e:95:
        56:67:9b:0d:b5:77:4d:4d:83:3d:d6:c6:07:2f:e3:91:
        b1:88:a1:ff:f9:ae:e0:db:08:03:9b:ed:ba:00:c1:ca:
        8e:7b:3d:c1:2b:eb:ca:cf:97:97:40:06:8b:49:12:be:
        80:46:ba:3c:a2:0e:c3:dd:6a:86:77:d5:56:20:f2:d1:
        14:b1:08:e1:bb:e3:e7:e7:64:45:72:0c:8c:71:21:0a:
        d3:25:d9:cd:e5:e4:b6:0d:64:33:e2:84:eb:61:2c:04:
        d7:6e:74:c7:01:40:c4:a1:06:b5:cb:8c:c9:b6:b7:94:
        65:18:e3:11:1e:f0:05:7e:d6:2e:79:79:31:22:e0:3a:
        b8:65:98:3d:88:23:c6:9d:38:a7:b2:cd:6e:49:4f:bf:
        f3:17:3f:52:40:d4:80:24:59:e2:65:76:cd:b0:d6:70
    Fingerprint (SHA-256):
        A5:C6:31:C6:16:29:90:4A:65:7E:C0:2C:52:3A:8D:E7:F4:0C:A7:35:FF:9C:21:17:B2:35:7D:DB:9A:83:77:52
    Fingerprint (SHA1):
        B3:06:90:4F:43:79:D0:B7:F0:4D:33:93:01:BB:99:7C:04:69:13:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6977: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6978: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6979: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153940 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6980: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6981: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6982: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502153941   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6984: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6985: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6986: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6987: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502153942   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6988: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6989: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6990: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502153943   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6992: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6993: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6994: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6995: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502153944   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6996: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6997: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6998: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6999: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502153945   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7000: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7002: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7003: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502153946   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7004: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7005: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7006: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7007: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502153947   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7008: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7009: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7010: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7011: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502153948   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7012: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7013: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7014: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7015: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502153949   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7016: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7017: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7018: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7019: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502153950   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7020: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7022: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7023: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502153951   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7024: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7025: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7026: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7027: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502153952   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7028: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7029: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7030: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7031: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502153953   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7032: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7033: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7034: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7035: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502153954   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7036: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7037: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7038: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7039: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502153955   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7040: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7041: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7042: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7043: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502153956   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7044: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7045: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7046: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7047: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502153957   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7048: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7049: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7050: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7051: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502153958   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7052: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7053: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7054: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7055: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502153959   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7056: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7057: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7058: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7059: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502153960   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7060: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7061: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7062: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7063: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502153961   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7064: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7065: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7066: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7067: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502153962   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7068: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7069: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7070: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7071: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502153963   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7072: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7073: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7074: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7075: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502153964   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7076: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7077: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7078: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7079: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502153965   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7080: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7081: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7082: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7083: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502153966   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7084: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7085: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7086: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7087: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502153967   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7088: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7089: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7090: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7091: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502153968   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7092: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7093: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7094: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7095: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502153969   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7096: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7097: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7098: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7099: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7100: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7101: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7102: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7104: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7105: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7106: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7107: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7108: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7111: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7112: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7113: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7114: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7115: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7116: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7117: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7118: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7119: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7120: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153940 (0x1dee42d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:40:06 2017
            Not After : Mon May 02 15:40:06 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1f:d4:04:25:88:6c:aa:74:f0:58:1a:80:fd:26:30:
                    6e:ef:72:9b:60:6b:9f:c7:d2:ca:35:55:f2:27:bd:35:
                    09:9c:6b:14:89:0b:86:ee:01:65:c0:71:d5:2e:92:7f:
                    47:a1:93:e3:a2:35:ef:3d:79:60:d3:07:75:69:99:4b:
                    44:9e:25:b0:db:c0:b7:77:dd:b2:73:8d:45:57:d5:37:
                    74:1a:4a:e9:42:12:50:2c:3e:cc:2e:fa:ad:7f:28:b0:
                    09:97:91:43:5b:b4:ff:8c:7f:94:c9:b9:67:03:9a:ae:
                    f1:9d:b6:2d:e3:dd:fb:07:95:3c:33:03:d1:a8:7c:78:
                    5b:c1:22:93:eb:b1:79:88:b9:f9:d7:74:8e:cf:38:ab:
                    bc:80:2a:f3:6b:c0:04:ca:e3:2e:77:59:ff:1c:ea:74:
                    70:a1:e1:df:63:d5:2c:5b:e2:51:9b:23:1e:61:96:f1:
                    1d:1b:fe:8a:41:00:d3:31:d1:ea:9a:47:53:92:2e:6a:
                    c6:8e:b3:f5:ca:b6:c9:75:e8:d9:af:10:14:e8:48:54:
                    ea:44:d9:0a:0d:33:d4:4b:29:ca:c3:c6:e3:f8:78:e9:
                    a5:78:29:8d:4a:e7:24:4b:6e:64:cd:72:08:5b:5e:ec:
                    6a:bc:18:c6:ea:9b:dd:63:79:93:36:8a:5e:a5:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:be:9f:bc:70:81:79:db:7a:e0:54:2c:32:f5:48:48:
        bf:dd:de:77:30:0a:4f:d4:ce:36:c7:f7:31:db:c5:ef:
        02:03:9e:65:b5:0c:d4:09:24:2e:27:67:7d:3e:44:44:
        d5:28:ab:ce:4c:75:2f:9f:8c:e8:0d:8c:28:b2:c5:c2:
        83:21:4c:70:b1:d5:f2:1c:4d:48:31:9b:b4:91:d5:de:
        6b:5e:e6:86:40:df:f8:53:bd:04:c1:bb:f9:90:75:b3:
        46:3a:ad:a5:17:4e:e5:7c:8a:a1:54:02:15:b2:33:15:
        5a:7b:cf:95:65:a7:da:c9:5d:09:09:e8:e4:2a:95:7e:
        13:71:82:05:f9:ee:26:ae:15:12:71:1d:5b:96:14:e4:
        c7:31:12:df:eb:7b:a4:b3:0b:66:bc:93:e5:03:88:27:
        8d:78:77:6b:a6:c5:7b:03:11:0a:9c:84:a9:b0:53:5a:
        2e:91:ca:d6:e4:23:e7:d1:b0:7d:7c:15:07:61:57:18:
        14:a1:77:d6:92:04:0e:48:b0:22:76:3a:6c:12:64:aa:
        3b:a9:b0:99:59:47:3a:5f:cf:22:2c:ed:a1:39:9d:bd:
        97:e1:97:f6:16:35:89:f6:8f:8e:84:51:ad:8b:27:2b:
        bd:94:86:95:ee:97:64:a3:10:ae:69:f5:42:96:b6:b1
    Fingerprint (SHA-256):
        6F:C2:B8:1C:E3:20:18:83:4F:1E:76:5C:8D:9F:C7:F6:7B:7E:92:8B:6A:00:C5:27:8F:27:AD:C7:35:87:71:38
    Fingerprint (SHA1):
        96:1B:62:A2:7A:49:35:DA:19:4A:0F:08:1D:EB:72:93:85:5A:91:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7121: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7122: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7123: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153970 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7124: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7125: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7126: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7127: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502153971   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7128: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7129: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7130: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7131: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502153972   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7132: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7133: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7134: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7135: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502153973   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7136: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7137: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7138: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7139: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502153974   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7140: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7141: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7142: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7143: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502153975   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7144: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7145: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7146: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7147: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502153976   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7148: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7149: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7150: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153970 (0x1dee42f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:25 2017
            Not After : Mon May 02 15:40:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:0c:7c:70:c2:bb:b2:59:33:e3:38:c7:70:89:b3:5e:
                    f2:5b:f3:8f:67:01:9f:cb:e9:5b:21:fd:23:a7:fb:5c:
                    ee:f7:dc:25:95:65:8e:a9:f9:dd:b4:1a:14:79:ee:4a:
                    1f:31:fc:b3:f8:44:f8:3b:b1:8b:2c:a2:8f:92:7b:8b:
                    6b:ab:82:4f:29:da:90:b0:46:8f:c4:86:82:b8:43:23:
                    4b:a0:ad:4f:96:79:3e:5a:e4:7c:12:da:18:02:da:33:
                    11:96:ab:5a:3d:5f:2f:90:e6:7b:e9:03:1a:75:da:a3:
                    b9:2b:e9:14:fe:f1:30:22:50:27:65:f1:5e:a6:0e:5d:
                    46:0f:5c:47:4b:24:ad:94:d4:53:87:95:c4:f1:b9:31:
                    a6:70:b3:37:65:d6:53:5a:d7:8d:27:73:58:83:94:b6:
                    e1:73:a9:db:05:7e:88:c9:b7:fb:5a:61:a2:62:64:e8:
                    1e:95:b2:fc:9b:c4:40:eb:6b:81:dc:0e:8d:bc:29:24:
                    2e:1e:52:14:13:fb:ff:0a:0e:e9:08:0e:2b:2a:e9:89:
                    93:a9:c7:81:58:07:dc:bd:3d:e7:f6:60:9a:d8:a1:53:
                    67:41:08:9c:8e:b5:6f:a3:bb:25:88:37:9b:99:4f:8c:
                    d4:59:3b:6b:9c:de:e8:a3:56:c6:52:5b:91:cc:42:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:69:df:ca:61:f0:71:06:51:2c:03:b5:f0:6b:63:63:
        87:67:c1:75:9f:3c:20:90:ab:a4:48:8c:a4:b8:2c:b6:
        94:8d:a6:83:6b:86:a5:da:1b:73:78:ee:6e:cf:9d:c4:
        af:23:3a:fd:44:80:fc:1c:d4:d8:0f:8d:9a:33:a5:72:
        b6:b4:73:88:9a:dd:e5:4d:31:af:16:9d:e5:95:53:83:
        90:2f:b5:9e:3e:6d:69:51:d8:af:95:49:4d:07:7d:2d:
        65:a6:93:89:ec:a8:04:a2:bb:a1:93:a8:ca:a3:b5:21:
        e1:06:ba:9f:34:e4:a7:c4:a7:6c:08:4a:f0:6b:e3:d6:
        0a:79:b0:0c:7f:ea:15:d1:ef:72:e0:2f:33:a7:ab:98:
        05:82:a3:3d:7f:f8:b4:44:b9:5c:84:cf:3f:3e:29:83:
        17:b1:82:45:b7:b6:f4:72:25:e0:b1:c6:eb:70:85:f3:
        c4:16:29:d1:34:2f:12:6b:e9:d4:7c:25:15:08:1f:12:
        de:49:0c:bc:af:32:df:4e:96:46:2e:02:6d:62:72:92:
        e5:19:30:2c:64:6f:c7:63:65:2f:ff:63:9d:63:95:f2:
        e3:ca:c2:46:7a:6d:1d:a7:2a:a2:16:eb:b4:dc:b2:4d:
        a5:42:d5:a1:a5:b2:32:dc:86:2e:85:0d:30:ac:78:07
    Fingerprint (SHA-256):
        3E:BE:AD:46:A3:3E:11:8E:A4:3B:F6:66:AD:B6:74:8E:73:CA:06:7E:60:3C:0B:55:7F:43:52:48:48:43:78:DE
    Fingerprint (SHA1):
        27:66:1D:3A:4E:92:38:0C:58:F1:01:7D:E6:CE:BE:D0:3D:CC:66:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7151: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7152: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7153: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7154: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153970 (0x1dee42f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:25 2017
            Not After : Mon May 02 15:40:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:0c:7c:70:c2:bb:b2:59:33:e3:38:c7:70:89:b3:5e:
                    f2:5b:f3:8f:67:01:9f:cb:e9:5b:21:fd:23:a7:fb:5c:
                    ee:f7:dc:25:95:65:8e:a9:f9:dd:b4:1a:14:79:ee:4a:
                    1f:31:fc:b3:f8:44:f8:3b:b1:8b:2c:a2:8f:92:7b:8b:
                    6b:ab:82:4f:29:da:90:b0:46:8f:c4:86:82:b8:43:23:
                    4b:a0:ad:4f:96:79:3e:5a:e4:7c:12:da:18:02:da:33:
                    11:96:ab:5a:3d:5f:2f:90:e6:7b:e9:03:1a:75:da:a3:
                    b9:2b:e9:14:fe:f1:30:22:50:27:65:f1:5e:a6:0e:5d:
                    46:0f:5c:47:4b:24:ad:94:d4:53:87:95:c4:f1:b9:31:
                    a6:70:b3:37:65:d6:53:5a:d7:8d:27:73:58:83:94:b6:
                    e1:73:a9:db:05:7e:88:c9:b7:fb:5a:61:a2:62:64:e8:
                    1e:95:b2:fc:9b:c4:40:eb:6b:81:dc:0e:8d:bc:29:24:
                    2e:1e:52:14:13:fb:ff:0a:0e:e9:08:0e:2b:2a:e9:89:
                    93:a9:c7:81:58:07:dc:bd:3d:e7:f6:60:9a:d8:a1:53:
                    67:41:08:9c:8e:b5:6f:a3:bb:25:88:37:9b:99:4f:8c:
                    d4:59:3b:6b:9c:de:e8:a3:56:c6:52:5b:91:cc:42:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:69:df:ca:61:f0:71:06:51:2c:03:b5:f0:6b:63:63:
        87:67:c1:75:9f:3c:20:90:ab:a4:48:8c:a4:b8:2c:b6:
        94:8d:a6:83:6b:86:a5:da:1b:73:78:ee:6e:cf:9d:c4:
        af:23:3a:fd:44:80:fc:1c:d4:d8:0f:8d:9a:33:a5:72:
        b6:b4:73:88:9a:dd:e5:4d:31:af:16:9d:e5:95:53:83:
        90:2f:b5:9e:3e:6d:69:51:d8:af:95:49:4d:07:7d:2d:
        65:a6:93:89:ec:a8:04:a2:bb:a1:93:a8:ca:a3:b5:21:
        e1:06:ba:9f:34:e4:a7:c4:a7:6c:08:4a:f0:6b:e3:d6:
        0a:79:b0:0c:7f:ea:15:d1:ef:72:e0:2f:33:a7:ab:98:
        05:82:a3:3d:7f:f8:b4:44:b9:5c:84:cf:3f:3e:29:83:
        17:b1:82:45:b7:b6:f4:72:25:e0:b1:c6:eb:70:85:f3:
        c4:16:29:d1:34:2f:12:6b:e9:d4:7c:25:15:08:1f:12:
        de:49:0c:bc:af:32:df:4e:96:46:2e:02:6d:62:72:92:
        e5:19:30:2c:64:6f:c7:63:65:2f:ff:63:9d:63:95:f2:
        e3:ca:c2:46:7a:6d:1d:a7:2a:a2:16:eb:b4:dc:b2:4d:
        a5:42:d5:a1:a5:b2:32:dc:86:2e:85:0d:30:ac:78:07
    Fingerprint (SHA-256):
        3E:BE:AD:46:A3:3E:11:8E:A4:3B:F6:66:AD:B6:74:8E:73:CA:06:7E:60:3C:0B:55:7F:43:52:48:48:43:78:DE
    Fingerprint (SHA1):
        27:66:1D:3A:4E:92:38:0C:58:F1:01:7D:E6:CE:BE:D0:3D:CC:66:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7155: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7156: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7157: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7158: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153977 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7159: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7160: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7161: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7162: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153978   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7163: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7164: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7165: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7166: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153979   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7167: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7168: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7169: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7170: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153980   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7171: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7172: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7173: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7174: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7175: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7176: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153977 (0x1dee42f9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:30 2017
            Not After : Mon May 02 15:40:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:0d:88:b8:a0:92:53:76:52:81:ce:4f:d5:71:e1:19:
                    2f:6c:bb:6b:b3:06:b9:81:e0:af:0a:81:4f:4c:9b:c2:
                    58:18:ef:87:d4:ff:c8:bb:6c:e9:32:8b:61:c3:f3:22:
                    af:ac:09:b8:c2:9f:27:08:e6:88:53:24:1b:87:a9:09:
                    3f:23:35:fe:fe:13:15:a6:d5:dd:52:a7:27:07:46:4a:
                    cc:19:34:10:67:4f:06:89:87:69:34:66:81:0d:10:97:
                    f7:2d:bf:2a:42:b7:b9:2c:83:e6:b6:dc:e1:82:16:24:
                    3c:ef:83:7b:5e:55:b6:dc:fe:c5:b4:7d:85:6f:90:ec:
                    cc:95:6f:1c:29:58:1b:c1:e4:e6:6e:67:44:e7:36:e6:
                    8d:69:19:1b:a2:af:b0:df:39:ca:70:03:8e:e4:1e:a0:
                    82:65:11:c8:66:90:60:36:67:ba:e2:4f:66:35:72:1e:
                    28:b8:11:10:1f:bc:47:c3:52:d0:8b:b0:db:3c:96:31:
                    b1:cf:cb:b5:d0:52:57:a4:38:f0:4b:c4:34:9b:f0:df:
                    cd:fb:f6:89:55:2c:2e:77:a1:0a:02:fc:bf:05:cb:be:
                    92:c1:c3:cb:b1:5e:c1:d8:f9:eb:07:5e:7c:e5:0e:6d:
                    50:90:fb:cf:f5:79:f5:c5:19:71:1b:bb:a5:54:9d:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:ba:ea:3f:4b:79:03:80:4a:70:8a:11:79:53:80:85:
        93:4a:a1:d5:d4:86:17:e7:d6:53:47:67:9c:cb:83:c3:
        f2:80:99:20:d8:e7:44:de:b1:9f:a3:7e:cd:5b:74:83:
        75:c0:9a:57:c1:2d:dc:eb:eb:67:f5:b0:16:4b:9a:fc:
        d0:0e:41:4b:b1:6e:5f:a7:22:d3:23:94:26:57:0d:e2:
        dc:97:ad:4f:a6:ce:bf:c7:38:1b:90:eb:7e:49:69:66:
        bb:3e:52:21:a2:3a:b6:82:77:1c:df:a3:63:dc:e2:a5:
        9e:61:68:cc:31:04:b1:4c:74:89:b6:ff:bc:69:7d:ee:
        dd:6a:bf:d5:17:5d:61:1b:87:39:ca:22:f4:5e:6a:a7:
        bc:06:cb:28:36:01:d3:70:9d:dd:bd:83:79:42:9f:41:
        79:99:a8:02:08:01:08:96:86:5b:73:3b:cb:dd:d0:cf:
        6a:59:61:17:dd:6d:53:6a:8d:52:55:3f:32:d6:33:0b:
        e7:53:d7:00:e1:e2:55:ad:1b:ab:1c:1f:9c:c3:21:86:
        33:94:87:58:bc:ba:64:3b:50:9a:91:be:15:d2:84:ba:
        25:6d:c3:67:6b:12:ca:46:37:b3:8f:85:05:46:33:14:
        1b:de:77:ca:f3:70:f4:66:1e:fa:4b:0f:27:8a:b1:05
    Fingerprint (SHA-256):
        C1:35:80:03:C1:F1:20:2F:DD:80:DF:52:FE:4B:FF:29:F1:E2:7A:A8:AB:F3:AB:80:F4:CA:6D:45:2C:7D:77:59
    Fingerprint (SHA1):
        E9:60:9E:D6:43:38:E3:05:55:9A:11:5E:F9:0A:7D:D6:05:FB:18:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7177: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7178: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7179: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153978 (0x1dee42fa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:31 2017
            Not After : Mon May 02 15:40:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:d9:b0:0f:21:f9:db:c9:f6:80:68:d1:0e:a8:02:33:
                    71:31:a3:12:db:e2:f9:08:45:2a:92:e7:30:d8:6d:b1:
                    33:44:ea:4a:7f:5e:9a:ca:16:10:e7:2e:1d:2b:0e:4f:
                    9c:fe:2d:d0:51:51:6c:32:ee:57:c0:27:16:89:c8:f8:
                    9d:db:b0:77:bc:7d:d5:ec:5b:6a:b3:8b:8b:dd:b9:fa:
                    cc:31:98:b3:16:7c:98:37:e9:4b:e5:4d:f8:2e:d7:f0:
                    04:43:5d:a8:76:fb:03:a7:47:b6:2c:a0:b6:06:a4:7e:
                    77:23:65:fe:49:a8:81:cb:56:45:e6:98:e8:5b:6f:bc:
                    c7:29:8f:53:9a:6f:55:e2:ae:2d:89:43:21:52:f2:81:
                    a2:ec:9b:14:ca:5d:a5:09:40:24:9c:d6:43:b8:59:5d:
                    5c:c4:5a:9a:67:f8:2a:70:3c:25:d3:5d:fa:6c:50:de:
                    ab:bd:6a:bd:e1:19:ab:5b:0f:50:1b:db:41:89:4d:af:
                    53:57:7d:fe:2f:9f:08:9e:6e:fc:ea:f1:11:2e:fa:99:
                    fd:e3:a8:2a:af:59:73:dd:e6:6c:e6:fd:8a:c5:03:2b:
                    d7:9c:7e:81:60:bf:08:ff:6a:73:70:2b:84:55:48:9c:
                    3d:b2:a9:30:7a:d8:0c:28:71:9b:ea:98:cf:ed:93:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:14:39:44:45:a1:30:4a:7e:f6:97:d3:dc:80:7b:3f:
        20:5b:2e:74:9d:31:77:85:f5:a2:ea:7f:40:70:f7:d6:
        9d:7a:9f:8e:bd:52:8b:01:c2:ee:bc:52:be:5e:4d:f4:
        01:9b:83:5c:fb:e0:11:5f:03:53:f7:24:e8:18:9c:f7:
        93:ed:00:2d:8e:99:c9:4e:bd:2d:e7:ff:a1:a0:38:80:
        8f:49:95:d1:61:d9:4a:86:99:21:eb:61:5b:b8:d7:07:
        fe:64:46:06:a7:91:e6:41:61:49:e3:65:24:94:27:5d:
        e6:c9:0a:b3:e9:7b:e0:c9:9c:6b:22:c1:fb:61:57:7b:
        25:c6:b7:25:28:ef:6f:3a:d1:4f:54:b0:3c:23:eb:fc:
        ed:7a:8a:c8:c5:89:cd:ae:07:31:2f:86:9a:0a:54:8e:
        d8:85:61:bf:5c:ed:cc:df:02:c2:ce:55:4f:ad:3d:5e:
        76:e4:97:84:44:d8:00:db:bb:f5:55:cf:73:cf:db:10:
        40:b1:90:aa:db:a9:4b:6d:84:e6:de:7f:3c:34:e5:8d:
        35:27:76:a5:cc:f7:1b:8e:b3:0a:52:2d:55:63:fc:c5:
        a6:9e:da:2c:c4:bb:0b:da:9f:13:f2:46:ae:2c:55:e3:
        7b:34:76:83:be:86:8c:74:cc:5b:21:bd:39:fc:54:0a
    Fingerprint (SHA-256):
        6F:A1:92:49:43:2E:62:79:E5:90:AF:AC:67:82:11:96:C8:08:F0:CA:4D:2C:9A:F0:97:A8:BA:4D:E7:F3:E5:9E
    Fingerprint (SHA1):
        89:EF:80:41:F2:F0:97:32:05:6D:72:E9:5C:48:73:18:02:C5:43:5D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7180: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7181: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153979 (0x1dee42fb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:40:31 2017
            Not After : Mon May 02 15:40:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:72:b0:6c:0b:80:17:08:5c:88:cf:1a:54:45:27:2d:
                    d8:67:10:20:6d:ef:3e:42:25:07:ee:ff:fd:a8:79:45:
                    d6:ce:1d:5b:91:b9:b2:8f:a5:eb:86:e0:84:3a:61:40:
                    5e:c0:10:1f:8b:1c:f9:9a:f3:4b:5b:29:ff:bd:57:b1:
                    db:ab:65:37:05:21:a2:7c:bb:3d:b9:48:b8:1d:66:ae:
                    0a:2c:20:9c:b6:7c:09:a9:15:6f:e7:a0:24:e6:2e:c8:
                    37:69:04:12:b4:78:6c:be:65:a2:95:2a:bd:fc:90:ec:
                    9d:d0:6b:42:a0:74:0f:b0:c2:4d:f1:fc:bf:75:48:78:
                    e8:d8:6a:5d:f9:09:f8:6e:f8:37:24:d2:dc:b3:c9:3f:
                    3a:c8:c0:ff:1b:55:71:85:ba:93:44:64:f7:0e:4b:f1:
                    00:a2:0f:1a:fe:5d:cb:c7:97:72:f2:23:1a:6e:27:25:
                    67:7f:fc:8d:fc:27:c0:61:03:3a:a9:e7:4f:49:80:3a:
                    d1:3e:49:fe:68:b1:f0:83:49:fc:ee:f9:66:59:87:2f:
                    93:10:21:ba:f3:5e:70:04:12:b5:c8:d2:e1:90:16:d1:
                    d1:ad:a4:fb:2a:95:d6:79:07:29:d5:af:b7:50:4e:49:
                    a4:63:40:00:63:aa:78:36:d2:54:06:7a:23:7f:99:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:53:69:9f:6d:7d:6c:00:2a:70:14:e3:78:82:88:28:
        c5:e6:07:c8:38:18:1d:5f:9b:f3:bd:f9:ed:42:28:d0:
        31:17:58:cb:5b:00:f1:ab:dd:7f:f2:7f:ad:32:ce:44:
        64:bb:e0:fc:8b:f7:b8:9f:8f:e0:03:10:85:88:7e:0e:
        c8:07:df:4b:7b:50:e6:b6:3c:a3:50:b4:3a:e8:e7:68:
        11:23:ef:ae:56:04:69:c9:9b:82:05:63:09:14:e1:49:
        2d:16:91:d1:53:8a:6c:6e:2b:d8:69:98:ce:a2:17:61:
        d1:e3:3c:55:d6:78:80:8a:8f:9b:bf:0a:e6:bb:a2:4b:
        a6:5d:e8:a0:12:6d:c4:6c:2c:46:dc:e5:9d:75:8e:71:
        05:9f:a9:05:40:e4:c8:d6:52:75:81:48:f0:65:55:95:
        5d:d9:d6:e6:6f:82:e2:85:c7:b9:2f:58:11:66:b0:1c:
        77:ff:ed:b0:af:2e:be:b0:ae:65:b1:76:4a:4c:a0:6e:
        8a:b2:32:47:e8:63:22:6e:d1:91:41:90:b5:dc:56:88:
        bd:9d:a0:69:66:91:8c:69:48:cb:7b:28:6b:5a:a5:22:
        ef:45:14:f8:33:06:92:59:5e:25:d7:93:0d:76:f3:ed:
        3f:79:2c:35:ad:42:a8:03:bd:93:a1:d5:3d:e9:ea:9f
    Fingerprint (SHA-256):
        86:53:CD:AB:F1:EF:A1:47:8C:95:9B:AB:97:88:79:1C:FE:4F:2C:3B:5C:86:24:63:24:85:CA:B5:FB:65:07:DD
    Fingerprint (SHA1):
        3B:62:CB:C8:AF:6E:61:9F:81:BD:0F:5B:81:50:BF:F7:13:27:8A:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7182: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7183: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153981 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7184: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7185: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7186: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7187: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153982   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7188: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7189: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7190: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7191: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153983   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7192: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7193: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7194: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7195: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502153984   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7196: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7197: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7198: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7199: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502153985   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7200: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7201: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7202: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7203: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7204: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7205: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7206: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153981 (0x1dee42fd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:32 2017
            Not After : Mon May 02 15:40:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:0f:46:47:60:38:de:0b:a4:aa:b2:1c:f6:ad:a2:37:
                    c4:8c:ea:0f:68:f0:b3:40:39:04:71:9f:83:47:ce:68:
                    d1:e1:bb:57:01:8a:41:9d:37:e7:cb:a2:79:91:3c:33:
                    61:58:3b:0f:62:4c:32:89:d5:3b:22:ab:2a:91:45:a4:
                    37:f8:c9:af:71:3a:67:3e:b2:6e:6d:82:ab:03:5d:f4:
                    a5:0b:9f:e3:bd:2a:c4:bf:17:33:72:f2:1c:1e:1b:af:
                    d8:90:a7:7a:a4:b0:28:0d:c5:34:27:00:83:63:ed:ba:
                    47:18:71:22:1e:fc:80:f2:95:ea:8e:b1:f8:0a:7c:4e:
                    21:35:ce:6e:28:c8:5a:78:f5:d4:61:ec:cd:72:e9:e8:
                    5e:0d:4f:f5:ad:f9:2e:cb:4f:23:71:19:47:55:39:67:
                    fa:7d:d0:ce:fc:7d:bb:d4:ad:dc:88:53:d2:ef:68:58:
                    6e:07:c9:7a:84:6d:2c:35:a8:6d:a2:ef:41:c3:f1:2b:
                    69:ba:0f:9a:6e:be:2e:64:96:43:a2:6f:de:c9:c3:fb:
                    14:b7:f6:7b:a6:9c:12:d0:e3:db:0d:93:23:fc:c6:fb:
                    0f:a9:62:8f:3a:52:aa:e2:de:0a:04:c1:e9:19:cb:d3:
                    f5:c9:5c:b6:d3:10:59:c6:0d:a0:bc:0d:06:92:80:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:80:f6:6c:86:91:e8:75:50:f7:7a:cc:9f:bd:da:02:
        a7:06:20:b6:4e:ff:21:6f:b2:32:69:d3:78:58:40:24:
        52:50:3e:d3:2e:c8:17:fc:b2:a6:5d:3a:63:95:82:b1:
        dd:a0:b0:7c:86:0e:3c:47:4c:a3:0e:96:40:bb:ec:1e:
        30:df:7e:bf:de:98:86:6a:de:58:02:d8:12:c7:94:b7:
        cb:f7:97:d6:1b:7c:79:04:f4:76:77:8c:ad:b4:50:78:
        34:6a:64:4b:12:01:c8:8a:dd:fe:b8:07:1c:2c:65:2f:
        23:7c:fc:9b:e8:ce:9b:7d:fa:49:9c:03:74:68:ea:cd:
        f6:cd:7a:9a:33:c9:45:e6:15:d9:fd:26:70:eb:fa:ea:
        bd:84:ae:6d:22:7d:06:b0:3d:e8:1c:04:f3:7f:89:3b:
        b8:76:ef:48:0b:2f:7b:b6:99:b8:41:39:a3:3e:e4:2e:
        31:96:20:29:c5:b7:01:2e:5b:c2:ce:ce:25:f5:3a:28:
        42:51:a2:d4:c5:3b:2a:1c:cd:ae:5d:6e:3f:19:7a:f0:
        3d:e9:e7:ef:c8:be:9b:9f:f5:93:ea:5b:fd:92:13:9a:
        d6:86:8c:83:94:07:30:ef:ec:5e:0d:5b:46:e1:a9:0c:
        26:ce:fd:66:fb:8d:3d:28:11:79:9e:a4:d0:11:11:fe
    Fingerprint (SHA-256):
        47:0A:41:24:9D:AA:2E:B2:D7:8A:CB:87:7D:4E:FE:33:35:38:9A:21:F0:A4:5D:3D:08:3E:CC:FB:31:49:29:03
    Fingerprint (SHA1):
        84:90:AA:1B:DE:76:01:8F:58:02:BE:52:CC:17:FD:AA:6D:88:ED:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7207: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7208: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153982 (0x1dee42fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:33 2017
            Not After : Mon May 02 15:40:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b6:b6:c8:13:e9:8e:35:2c:ad:25:71:09:df:81:b9:
                    1a:2c:50:1c:bf:36:cd:91:52:da:c9:51:40:07:49:2f:
                    5a:ce:02:84:4b:a9:bb:8f:b9:54:55:20:09:e4:c3:81:
                    12:4d:47:cc:6a:26:14:6e:66:6c:9b:42:73:e7:e5:4a:
                    d6:ea:99:75:65:2c:c0:ea:36:a9:f1:06:ae:3f:d8:64:
                    2e:82:c4:4e:82:e6:84:2b:a0:51:1f:0a:bd:4d:33:2c:
                    a2:4d:c0:6b:ed:10:a5:53:b6:66:11:be:d7:7d:b2:c9:
                    6e:05:af:b1:71:c3:5d:ac:dd:89:95:9a:84:59:36:95:
                    7b:0d:d1:8c:0b:91:62:3b:40:a7:ad:2c:de:49:97:90:
                    57:a6:2e:95:c0:b5:db:80:12:ac:a9:27:de:bb:02:50:
                    a2:0b:64:46:8d:e1:45:bb:82:a0:8b:43:0c:18:83:70:
                    54:c4:8d:b3:19:38:03:bf:39:be:6f:95:74:0d:95:c1:
                    1c:ba:5d:cc:28:aa:d0:c8:3e:cd:a5:43:82:59:1e:81:
                    ab:f0:ac:2e:99:55:bd:7f:33:3b:d2:18:23:ac:99:ca:
                    01:7f:d6:0b:1e:a6:a9:06:f7:29:ae:05:8f:b5:40:d8:
                    98:77:cd:d1:7b:92:87:55:34:94:38:26:53:0f:93:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:11:7d:e9:7b:a5:0f:b4:4a:4b:6e:8f:25:78:ee:66:
        0a:c3:d8:a0:9c:8b:b7:c9:fb:a6:3d:64:4c:69:dc:58:
        58:64:fe:ea:cf:b4:40:06:59:05:ec:fc:6a:07:bd:65:
        eb:02:69:22:d2:0d:12:74:3d:cb:a7:40:1b:82:ad:18:
        b2:4f:8f:fd:ec:83:94:8b:9f:bd:fa:0e:88:0a:66:ad:
        15:6e:68:e7:2d:83:96:32:45:e9:39:9a:01:04:6e:0c:
        1e:7e:48:a6:0f:2e:e2:1e:72:e2:e0:e5:db:d2:35:9c:
        48:b9:c2:c9:18:46:1a:42:c6:69:51:0a:fd:c9:a0:5f:
        70:40:bf:fd:3a:e1:2e:40:85:39:69:46:57:0c:23:98:
        a0:70:3e:19:09:4e:01:b7:40:62:5b:ff:12:76:9c:29:
        03:9f:a4:8c:45:cf:c3:86:bb:44:74:e2:b7:87:16:86:
        5c:4e:1e:1c:9b:2c:76:fb:b1:6f:18:f1:fc:41:10:1b:
        8f:d0:a2:85:38:60:6e:f5:c6:66:3c:90:4a:8f:51:5a:
        fa:19:ba:a2:ff:4e:52:9e:1f:19:24:21:c5:2b:52:91:
        63:87:24:7f:e1:60:35:36:74:71:12:f9:e6:5c:a9:09:
        b7:c1:82:1f:44:2c:40:29:ab:15:02:22:c6:ea:5b:c8
    Fingerprint (SHA-256):
        1A:B1:50:F2:D9:2A:DA:AC:FB:2C:CE:8B:33:B7:1E:2E:6B:52:CC:56:65:EA:C0:EB:5C:68:66:9A:8D:FA:F2:75
    Fingerprint (SHA1):
        9C:C0:D7:84:B2:8F:2C:30:F6:89:A6:3A:70:23:4A:07:CD:77:8C:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7209: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7210: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7211: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153983 (0x1dee42ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:40:34 2017
            Not After : Mon May 02 15:40:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:c3:c9:b0:f0:12:df:e0:6b:3f:d2:36:e0:99:1d:4b:
                    c5:31:a9:80:5d:e3:e7:0d:b3:44:81:7a:fb:9c:80:ca:
                    96:56:5c:31:db:27:fd:05:4a:d6:5e:91:08:ea:b9:ee:
                    17:5c:1f:30:1e:d8:8d:4f:58:84:a4:3f:ab:d4:43:eb:
                    e1:88:b7:8e:fc:09:2e:ce:3a:d1:df:11:19:6f:c2:29:
                    31:b1:4c:e9:b5:e7:57:b9:d3:9c:a0:ed:f6:e6:b9:0e:
                    ea:25:7c:3e:f8:fe:b1:57:fc:b2:7b:48:29:86:f2:86:
                    12:2f:4d:96:a4:45:0c:77:40:69:97:84:ac:c3:32:1c:
                    a7:aa:40:2c:46:0c:88:40:96:a6:4b:2d:93:59:3a:bb:
                    55:59:4d:bb:7a:ee:0f:67:09:ab:c8:2e:ab:8b:2f:5a:
                    98:cd:81:04:5e:42:c4:50:cb:50:0d:c3:be:59:c0:f0:
                    7b:39:d1:4d:95:49:eb:c9:a5:36:6c:c0:98:5c:24:3d:
                    8c:78:31:b5:bb:77:e4:9c:ce:e6:66:c7:57:f4:c9:be:
                    72:f9:70:26:22:b4:95:33:27:4e:28:5e:aa:78:31:c1:
                    a0:bc:cd:bb:70:20:02:28:e9:31:9d:26:79:42:2f:18:
                    50:c8:1c:59:f6:80:bb:7a:1e:d8:e0:6c:dd:93:58:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:98:2f:e5:ba:74:87:3e:08:4e:50:b8:d0:7b:e7:70:
        2c:6f:7b:ca:a2:4e:e2:ec:eb:89:a4:58:aa:1c:38:b9:
        29:9a:eb:1b:39:43:15:bb:9e:95:1e:fa:d4:4a:bb:88:
        aa:ed:6c:fb:b4:6b:2f:1b:b2:8d:73:02:ec:fc:85:b5:
        6d:07:a3:88:ce:b3:56:70:7d:fb:03:d0:c3:fc:ee:5f:
        10:fa:19:cc:73:a9:53:40:ed:f4:bc:b0:9b:7a:a9:a7:
        68:a6:70:85:d9:f8:d1:0a:38:ec:66:a2:8d:f4:fc:f5:
        0a:ed:24:7e:0f:50:c8:2f:43:3a:f0:54:15:4a:47:2c:
        2f:20:7c:00:89:52:15:73:8c:28:f7:04:97:67:70:b3:
        2b:0c:aa:79:4e:c5:ff:18:6d:ce:c5:6b:be:fd:fc:e7:
        42:2b:1f:79:32:05:e0:0f:86:88:a2:cb:12:43:0f:39:
        95:32:84:2f:78:9a:3c:8b:db:a2:b5:e8:23:69:c0:a2:
        38:a6:8a:98:43:1f:fe:6e:9b:5a:c1:32:fa:1c:c4:d6:
        21:4d:9d:81:6f:e1:a9:44:bd:5e:6e:e7:36:07:ff:73:
        42:1c:35:b0:8a:9d:70:6b:79:dd:be:0a:3f:c0:d0:d0:
        28:94:39:97:c4:41:26:95:56:7a:1b:10:4a:8c:12:3a
    Fingerprint (SHA-256):
        B4:B2:E7:3B:C7:08:4E:88:11:AB:1F:18:61:76:BC:BD:B1:23:63:86:9B:59:C9:97:D1:EB:BB:C8:51:80:62:88
    Fingerprint (SHA1):
        76:B3:CB:E0:A3:5B:BB:DC:A2:F4:7C:92:21:E8:EA:AE:B7:D4:FE:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7212: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7213: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153986 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7214: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7215: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7216: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7217: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502153987   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7218: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7219: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7220: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7221: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502153988   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502153765.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7222: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7223: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7224: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7225: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502153989   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7226: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7227: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7228: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153986 (0x1dee4302)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:35 2017
            Not After : Mon May 02 15:40:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c5:6e:38:9a:3c:7b:3c:be:c3:1e:bf:27:ac:8d:a9:
                    c5:b0:45:03:64:06:44:5d:7c:dd:71:d5:04:5b:43:49:
                    fd:21:98:78:dc:8d:03:02:f6:8d:cb:8e:35:f0:a2:2b:
                    4f:1b:f9:9c:ef:43:02:b7:da:51:cc:2c:67:ce:11:dc:
                    7a:b3:33:b2:18:e2:1a:d3:27:6e:e4:7c:5a:d9:74:a5:
                    d1:a9:b8:4a:0f:4c:79:1d:5c:e3:49:54:86:39:31:4c:
                    b6:06:e8:db:8a:82:c5:5a:de:5a:8c:3e:65:05:e3:a7:
                    a4:eb:44:09:ef:f4:48:4a:be:e4:2e:27:92:ed:d1:c0:
                    2b:9d:f6:32:58:24:60:b8:5d:98:d0:00:89:02:b8:6f:
                    50:b7:ec:ed:bc:f6:ba:a3:61:a5:1c:e6:bb:4f:67:fc:
                    cb:b3:de:23:4e:7d:14:76:78:35:37:e8:79:25:a1:15:
                    a5:a3:f6:19:c1:f7:5c:8b:a0:82:1e:65:8b:da:ae:cc:
                    0c:1c:25:94:ee:cb:d7:ae:01:21:88:c3:6a:4c:a9:b1:
                    03:90:94:a2:4a:ee:b7:52:c8:8c:46:38:d0:d0:c3:9c:
                    34:ea:eb:c5:21:ca:7f:f5:b9:1e:08:17:2d:6e:28:f1:
                    a9:fc:79:ed:1a:54:24:9e:c0:74:9f:a9:7c:f4:83:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:9e:d1:ba:78:a6:7b:e6:29:01:bd:f0:85:4b:17:14:
        4e:c6:39:cf:52:2a:2a:74:fc:d5:28:ff:46:6f:06:4a:
        54:7d:7f:55:df:d8:da:da:a7:d6:11:58:8f:13:70:06:
        89:c8:3d:30:fb:03:11:5c:97:a1:f1:ba:fb:f0:49:69:
        37:8c:60:18:6f:76:de:41:7f:8c:81:a7:8a:7e:62:27:
        da:c6:5d:80:c3:f1:f4:57:a1:c7:a3:81:83:09:4e:e0:
        27:5a:36:02:92:9c:56:f6:a3:28:e2:07:96:d7:0e:8d:
        d9:90:b6:92:66:b0:a9:f5:9d:e1:e1:62:1a:da:fd:dd:
        26:7d:98:e6:c7:13:1a:69:71:66:b9:8d:b3:f8:da:2b:
        28:41:cb:5d:be:5f:de:1e:92:64:21:cf:70:11:c0:8f:
        86:ad:fe:4b:b7:e5:1c:20:3d:6c:39:8d:8c:e6:1f:33:
        2f:f8:b9:98:83:89:63:83:68:be:bd:da:ab:9e:63:37:
        b4:fc:b0:79:74:ee:a4:04:30:1d:46:a7:6a:ee:89:52:
        cb:1e:85:20:e7:70:cb:f0:41:98:d2:4f:a0:0a:b2:0f:
        03:95:16:64:55:78:8b:28:2b:92:cd:bf:08:96:5a:9e:
        ce:34:ae:53:12:32:ba:d8:cd:ec:c5:c7:63:50:3c:67
    Fingerprint (SHA-256):
        AC:5B:7B:B3:7A:32:8A:D2:B7:FF:8E:06:21:A6:9A:2B:A8:00:3D:89:3A:05:9A:7C:F1:03:3E:43:27:D7:A8:74
    Fingerprint (SHA1):
        2A:28:65:5F:DA:11:1F:F6:B9:C8:B0:16:3A:2F:E1:EA:50:F1:B2:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7229: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7230: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153990 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7231: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7232: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7233: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153991 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7234: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7235: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7236: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7237: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153992 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7238: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7239: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153993 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7240: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7241: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7242: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7243: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7244: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502153994   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153766.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7245: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7246: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7247: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7248: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502153995   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7249: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7250: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7251: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7252: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153991 (0x1dee4307)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:40 2017
            Not After : Mon May 02 15:40:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:7c:7f:b3:4e:33:01:e3:a9:f4:62:c5:dd:b0:31:4b:
                    cf:8d:42:80:a4:33:46:c9:13:e8:ab:0f:94:6a:9e:55:
                    2f:49:4c:13:b3:e4:7b:98:26:ef:48:a9:ee:59:06:d4:
                    a4:9a:2b:4e:b5:e8:b7:69:27:5d:96:c1:de:4a:f0:2a:
                    d2:53:de:66:1f:f8:9a:65:88:06:b3:89:f3:7c:c9:9b:
                    72:e7:2a:2c:7a:8e:a3:e9:ad:6d:8e:79:b2:82:c6:0f:
                    96:a2:e4:74:7c:65:e1:b1:f8:43:cb:30:a1:13:d9:5a:
                    c5:52:c0:fa:6c:d4:35:f5:7b:26:76:75:e9:7d:d8:c8:
                    5c:ab:91:12:b4:84:0d:c4:b7:59:d9:77:61:05:67:28:
                    3d:a1:1e:55:b2:b5:b8:5a:23:ad:d2:ac:ec:e1:ee:cd:
                    1b:3f:e1:1b:a5:2f:5c:aa:89:10:c3:3f:c8:f7:2d:17:
                    20:b0:d2:86:15:9a:bb:f7:2b:c7:0f:02:0f:6b:0e:a0:
                    46:98:67:5b:62:d1:c1:f8:02:0a:a4:67:8e:c7:87:c2:
                    5c:40:29:b3:aa:87:01:99:29:b2:83:5d:e2:7c:09:2e:
                    fd:3e:86:77:e1:c9:8f:c3:f8:bc:59:a8:7e:48:20:70:
                    35:ae:d6:f8:46:dd:3a:43:b2:89:d7:89:34:98:e7:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:cb:7a:bb:b5:95:3c:8d:54:34:7c:23:ba:ab:1a:c3:
        c0:06:ea:62:c4:ba:9e:26:3d:e7:d9:d4:c7:9c:1e:38:
        6a:b4:10:9e:c9:76:5b:b8:34:13:97:51:8a:8c:f8:99:
        f2:77:1f:1c:7c:12:0e:75:a7:63:fa:44:24:d8:74:5d:
        6e:b7:a5:13:b1:90:10:62:1c:44:ee:f9:e1:6b:aa:42:
        88:d7:dd:07:a7:c6:92:0a:86:17:7f:6c:c7:02:6d:da:
        12:46:89:a2:5c:13:9d:4e:2e:d8:99:91:56:61:2d:67:
        9b:21:fd:72:1e:50:ee:88:4b:48:db:85:a3:67:14:22:
        c0:dc:cf:ae:fd:2e:16:07:f6:9f:27:ad:db:76:4d:a3:
        1d:1c:b1:5d:6b:d5:05:37:e8:01:c6:ee:b8:6e:29:da:
        aa:ce:f2:b9:a4:1f:1c:61:13:0a:d2:8a:a9:f2:7a:9d:
        e5:5f:b0:dd:19:98:67:90:3f:be:58:22:16:84:98:82:
        2f:45:ec:b2:23:7c:53:10:f7:47:ed:3a:5d:6e:4d:d5:
        04:57:20:3e:08:ab:e9:83:11:2a:68:0e:57:eb:88:7b:
        91:57:fe:ef:c1:2b:2e:03:fe:d2:db:34:7b:5e:a5:c6:
        3d:92:82:8d:1c:8b:a9:0b:5d:e2:d7:a2:14:7d:20:ba
    Fingerprint (SHA-256):
        96:83:C2:49:B4:A6:66:E0:D1:0B:E5:94:15:0A:76:3D:F7:3C:2D:36:88:54:CF:FF:3D:45:94:74:82:88:90:7A
    Fingerprint (SHA1):
        95:7A:8C:99:C1:C5:92:78:EF:6F:FF:C4:30:F8:A7:EB:5B:9D:9B:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7253: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153991 (0x1dee4307)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:40 2017
            Not After : Mon May 02 15:40:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:7c:7f:b3:4e:33:01:e3:a9:f4:62:c5:dd:b0:31:4b:
                    cf:8d:42:80:a4:33:46:c9:13:e8:ab:0f:94:6a:9e:55:
                    2f:49:4c:13:b3:e4:7b:98:26:ef:48:a9:ee:59:06:d4:
                    a4:9a:2b:4e:b5:e8:b7:69:27:5d:96:c1:de:4a:f0:2a:
                    d2:53:de:66:1f:f8:9a:65:88:06:b3:89:f3:7c:c9:9b:
                    72:e7:2a:2c:7a:8e:a3:e9:ad:6d:8e:79:b2:82:c6:0f:
                    96:a2:e4:74:7c:65:e1:b1:f8:43:cb:30:a1:13:d9:5a:
                    c5:52:c0:fa:6c:d4:35:f5:7b:26:76:75:e9:7d:d8:c8:
                    5c:ab:91:12:b4:84:0d:c4:b7:59:d9:77:61:05:67:28:
                    3d:a1:1e:55:b2:b5:b8:5a:23:ad:d2:ac:ec:e1:ee:cd:
                    1b:3f:e1:1b:a5:2f:5c:aa:89:10:c3:3f:c8:f7:2d:17:
                    20:b0:d2:86:15:9a:bb:f7:2b:c7:0f:02:0f:6b:0e:a0:
                    46:98:67:5b:62:d1:c1:f8:02:0a:a4:67:8e:c7:87:c2:
                    5c:40:29:b3:aa:87:01:99:29:b2:83:5d:e2:7c:09:2e:
                    fd:3e:86:77:e1:c9:8f:c3:f8:bc:59:a8:7e:48:20:70:
                    35:ae:d6:f8:46:dd:3a:43:b2:89:d7:89:34:98:e7:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:cb:7a:bb:b5:95:3c:8d:54:34:7c:23:ba:ab:1a:c3:
        c0:06:ea:62:c4:ba:9e:26:3d:e7:d9:d4:c7:9c:1e:38:
        6a:b4:10:9e:c9:76:5b:b8:34:13:97:51:8a:8c:f8:99:
        f2:77:1f:1c:7c:12:0e:75:a7:63:fa:44:24:d8:74:5d:
        6e:b7:a5:13:b1:90:10:62:1c:44:ee:f9:e1:6b:aa:42:
        88:d7:dd:07:a7:c6:92:0a:86:17:7f:6c:c7:02:6d:da:
        12:46:89:a2:5c:13:9d:4e:2e:d8:99:91:56:61:2d:67:
        9b:21:fd:72:1e:50:ee:88:4b:48:db:85:a3:67:14:22:
        c0:dc:cf:ae:fd:2e:16:07:f6:9f:27:ad:db:76:4d:a3:
        1d:1c:b1:5d:6b:d5:05:37:e8:01:c6:ee:b8:6e:29:da:
        aa:ce:f2:b9:a4:1f:1c:61:13:0a:d2:8a:a9:f2:7a:9d:
        e5:5f:b0:dd:19:98:67:90:3f:be:58:22:16:84:98:82:
        2f:45:ec:b2:23:7c:53:10:f7:47:ed:3a:5d:6e:4d:d5:
        04:57:20:3e:08:ab:e9:83:11:2a:68:0e:57:eb:88:7b:
        91:57:fe:ef:c1:2b:2e:03:fe:d2:db:34:7b:5e:a5:c6:
        3d:92:82:8d:1c:8b:a9:0b:5d:e2:d7:a2:14:7d:20:ba
    Fingerprint (SHA-256):
        96:83:C2:49:B4:A6:66:E0:D1:0B:E5:94:15:0A:76:3D:F7:3C:2D:36:88:54:CF:FF:3D:45:94:74:82:88:90:7A
    Fingerprint (SHA1):
        95:7A:8C:99:C1:C5:92:78:EF:6F:FF:C4:30:F8:A7:EB:5B:9D:9B:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7254: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7255: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153996 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7256: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7257: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7258: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502153997 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7259: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7260: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7261: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7262: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502153998 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7263: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7264: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502153999 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7265: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7266: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7267: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7268: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7269: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154000   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502153767.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7270: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7271: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7272: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7273: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154001   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7274: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7275: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7276: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7277: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154002   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502153768.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7278: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7279: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7280: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7281: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154003   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7282: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7283: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7284: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7285: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153997 (0x1dee430d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:42 2017
            Not After : Mon May 02 15:40:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:c5:58:ac:92:bd:68:c3:7c:40:07:c6:b7:e4:90:a7:
                    a6:17:2a:0e:41:dd:83:bd:f8:69:64:50:7a:17:d2:65:
                    c6:99:85:13:21:94:2f:c9:7b:81:74:8b:7e:c9:df:12:
                    0d:05:e5:ad:e7:6e:df:de:d0:7a:93:51:a4:d6:ed:ea:
                    d0:f6:55:68:33:41:a9:f0:69:a3:66:c1:80:a1:08:68:
                    29:57:d7:ea:b7:b4:e4:85:c5:da:54:1c:3e:c8:c4:f0:
                    d5:f5:9c:f1:58:ad:42:49:84:93:a4:1a:57:71:a7:f6:
                    8e:5b:94:50:6b:6d:80:0f:e4:87:04:93:d6:6f:92:cb:
                    50:76:b5:83:b5:e4:d4:6c:bf:1f:f3:73:35:c6:b5:5e:
                    0c:92:33:a4:aa:31:cd:48:2d:3b:b6:98:cc:dc:fd:97:
                    e0:cb:f8:8c:53:08:fc:fb:bf:6d:cb:12:25:8c:39:ac:
                    9f:ff:81:e2:d2:9c:83:24:d5:3e:c7:7d:7a:ab:8e:cd:
                    84:a9:6d:45:34:65:50:01:d0:ea:0c:c6:6d:c6:f2:c1:
                    ca:d4:af:f8:5f:0d:a2:b6:09:0c:92:ab:84:51:9d:73:
                    9e:9d:ba:15:01:9c:41:cb:4b:c9:31:7c:53:28:cc:a1:
                    13:ee:57:04:06:3a:1e:25:dd:56:82:0e:6b:11:83:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:1a:57:49:e2:cd:b1:90:d5:b9:82:0a:76:d4:e5:43:
        7f:ea:46:4a:f5:5b:d0:91:80:ef:1c:81:08:25:63:15:
        e0:4c:65:da:fc:ca:52:33:16:da:7e:82:b8:aa:f0:0b:
        59:9c:ed:93:97:e9:8b:db:81:5a:e7:19:20:dc:e4:e5:
        b8:c4:82:5c:0a:e9:6a:2c:5d:42:27:7e:72:9b:55:87:
        b0:0c:19:75:7c:d9:b7:6f:c6:67:ea:8a:16:a5:d3:0a:
        2f:43:4b:b4:73:5b:54:f8:34:0a:3d:c2:f7:dc:bd:d6:
        47:20:81:40:76:16:21:7d:c6:4b:b7:fc:9b:3b:d4:c8:
        24:c5:3e:6f:b9:92:b5:7e:ea:2b:74:b1:53:44:3e:d8:
        cd:27:47:18:3d:7d:8e:68:5e:7e:bf:24:8b:5d:20:58:
        c1:bd:fa:ec:d9:9a:9e:7e:76:8e:44:cc:eb:03:1f:ae:
        15:a2:3e:40:3d:e3:32:c2:e2:e1:3c:71:93:a4:0e:47:
        25:e7:36:73:50:78:c4:0c:32:e1:3c:04:a5:98:40:04:
        81:20:93:bf:bb:ba:39:f3:9b:51:32:c9:8e:db:b4:3f:
        2a:3a:7c:0a:f7:99:c5:01:50:a6:3e:65:1e:81:9a:fc:
        cb:21:a4:be:eb:fa:6d:95:75:39:0b:44:08:2e:95:44
    Fingerprint (SHA-256):
        56:9C:6F:C7:B6:D6:58:92:39:27:80:5E:CA:AB:39:06:FB:BE:68:E4:B1:46:98:05:98:0C:FE:60:28:F3:FE:6A
    Fingerprint (SHA1):
        7B:BA:1D:18:D4:B1:39:F9:BA:DF:45:85:4C:27:11:50:8B:97:3C:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7286: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153997 (0x1dee430d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:42 2017
            Not After : Mon May 02 15:40:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:c5:58:ac:92:bd:68:c3:7c:40:07:c6:b7:e4:90:a7:
                    a6:17:2a:0e:41:dd:83:bd:f8:69:64:50:7a:17:d2:65:
                    c6:99:85:13:21:94:2f:c9:7b:81:74:8b:7e:c9:df:12:
                    0d:05:e5:ad:e7:6e:df:de:d0:7a:93:51:a4:d6:ed:ea:
                    d0:f6:55:68:33:41:a9:f0:69:a3:66:c1:80:a1:08:68:
                    29:57:d7:ea:b7:b4:e4:85:c5:da:54:1c:3e:c8:c4:f0:
                    d5:f5:9c:f1:58:ad:42:49:84:93:a4:1a:57:71:a7:f6:
                    8e:5b:94:50:6b:6d:80:0f:e4:87:04:93:d6:6f:92:cb:
                    50:76:b5:83:b5:e4:d4:6c:bf:1f:f3:73:35:c6:b5:5e:
                    0c:92:33:a4:aa:31:cd:48:2d:3b:b6:98:cc:dc:fd:97:
                    e0:cb:f8:8c:53:08:fc:fb:bf:6d:cb:12:25:8c:39:ac:
                    9f:ff:81:e2:d2:9c:83:24:d5:3e:c7:7d:7a:ab:8e:cd:
                    84:a9:6d:45:34:65:50:01:d0:ea:0c:c6:6d:c6:f2:c1:
                    ca:d4:af:f8:5f:0d:a2:b6:09:0c:92:ab:84:51:9d:73:
                    9e:9d:ba:15:01:9c:41:cb:4b:c9:31:7c:53:28:cc:a1:
                    13:ee:57:04:06:3a:1e:25:dd:56:82:0e:6b:11:83:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:1a:57:49:e2:cd:b1:90:d5:b9:82:0a:76:d4:e5:43:
        7f:ea:46:4a:f5:5b:d0:91:80:ef:1c:81:08:25:63:15:
        e0:4c:65:da:fc:ca:52:33:16:da:7e:82:b8:aa:f0:0b:
        59:9c:ed:93:97:e9:8b:db:81:5a:e7:19:20:dc:e4:e5:
        b8:c4:82:5c:0a:e9:6a:2c:5d:42:27:7e:72:9b:55:87:
        b0:0c:19:75:7c:d9:b7:6f:c6:67:ea:8a:16:a5:d3:0a:
        2f:43:4b:b4:73:5b:54:f8:34:0a:3d:c2:f7:dc:bd:d6:
        47:20:81:40:76:16:21:7d:c6:4b:b7:fc:9b:3b:d4:c8:
        24:c5:3e:6f:b9:92:b5:7e:ea:2b:74:b1:53:44:3e:d8:
        cd:27:47:18:3d:7d:8e:68:5e:7e:bf:24:8b:5d:20:58:
        c1:bd:fa:ec:d9:9a:9e:7e:76:8e:44:cc:eb:03:1f:ae:
        15:a2:3e:40:3d:e3:32:c2:e2:e1:3c:71:93:a4:0e:47:
        25:e7:36:73:50:78:c4:0c:32:e1:3c:04:a5:98:40:04:
        81:20:93:bf:bb:ba:39:f3:9b:51:32:c9:8e:db:b4:3f:
        2a:3a:7c:0a:f7:99:c5:01:50:a6:3e:65:1e:81:9a:fc:
        cb:21:a4:be:eb:fa:6d:95:75:39:0b:44:08:2e:95:44
    Fingerprint (SHA-256):
        56:9C:6F:C7:B6:D6:58:92:39:27:80:5E:CA:AB:39:06:FB:BE:68:E4:B1:46:98:05:98:0C:FE:60:28:F3:FE:6A
    Fingerprint (SHA1):
        7B:BA:1D:18:D4:B1:39:F9:BA:DF:45:85:4C:27:11:50:8B:97:3C:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7287: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7288: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153996 (0x1dee430c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:40:42 2017
            Not After : Mon May 02 15:40:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:78:36:d0:7f:bb:a7:61:6f:d6:b1:f6:5e:fa:68:f1:
                    92:dd:0f:ef:6a:1c:4d:65:48:20:69:4b:c5:17:8f:12:
                    64:19:b8:89:3d:a4:24:ba:c3:a0:06:1b:96:cc:78:ee:
                    ed:5d:97:d4:58:b5:82:51:39:f6:04:cb:66:55:24:b0:
                    4b:ed:43:ae:1b:86:24:5e:a0:54:73:c1:e4:68:60:8a:
                    18:3d:08:90:a5:09:fd:6d:c7:9d:7c:39:56:56:98:c4:
                    48:56:df:48:6b:9c:aa:44:42:b1:74:db:b6:56:8b:d6:
                    47:72:13:5e:99:ae:24:d1:4f:e6:4f:26:71:46:e9:39:
                    ec:49:fb:a1:a7:b8:c3:67:0a:25:ac:c4:4f:a8:0c:ca:
                    05:26:5a:ec:af:59:10:3a:a9:1c:66:9f:7c:15:fe:db:
                    b1:70:d0:03:8f:08:07:45:85:2b:6d:31:d5:32:8d:7e:
                    e4:75:af:89:c1:85:22:c6:a6:4f:e9:90:d6:72:b4:15:
                    01:b0:29:4c:17:50:60:41:27:49:5e:0d:53:7b:1e:ed:
                    8d:74:29:a0:db:64:e6:f2:7d:25:69:af:34:ad:ce:5a:
                    9e:94:0d:b3:e9:70:ca:39:a3:f8:9e:1e:6a:04:b1:6c:
                    c8:1e:8e:c7:5a:e8:9d:13:89:62:b8:8e:a7:7c:ce:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:b6:fb:7f:58:ea:ac:f3:4e:b2:8e:a7:25:65:c9:0b:
        c1:2a:34:5b:d2:d5:b9:40:b8:9e:8b:9c:0b:d3:a1:66:
        47:ab:4f:18:1e:64:61:bc:c3:fe:ef:1b:34:36:52:f0:
        49:86:ea:6f:ca:83:c7:bc:a9:c5:0f:d5:9e:fe:8b:c3:
        f1:df:94:2e:68:df:4c:82:f9:c1:8a:a4:a1:7c:2b:07:
        c1:c2:1f:3c:86:b2:f8:38:3b:e3:b1:5f:11:de:22:19:
        21:09:89:df:47:dd:21:45:0d:4b:14:24:48:4d:88:2d:
        a9:95:5a:1e:70:5a:10:7f:b4:65:0c:4b:94:fe:4b:2b:
        63:be:3c:83:a8:01:bd:80:50:a0:31:e6:62:a5:ad:8f:
        f3:7a:42:bd:46:a1:6d:66:bd:d9:7f:c7:6a:88:a4:44:
        e6:8e:87:96:9e:37:ba:59:57:79:93:59:a9:1c:f7:66:
        42:1f:05:8e:b2:2c:03:d7:33:9c:37:0a:a1:78:82:4f:
        fb:a3:54:46:13:34:5a:04:6d:8e:be:f7:48:b1:d2:c1:
        19:87:5b:80:00:00:c8:a9:dc:e7:a2:7b:91:b6:9d:2f:
        49:86:57:9a:98:b1:ec:66:3c:4a:d1:64:f4:ad:6f:24:
        5d:91:84:9a:1e:c6:69:cf:50:60:b7:4f:c2:78:08:2e
    Fingerprint (SHA-256):
        DD:E9:56:99:D4:CE:77:E0:FD:6D:F1:C7:C9:88:1B:80:E1:A8:91:A0:3E:41:86:68:C3:2D:9A:DA:B7:7E:B4:83
    Fingerprint (SHA1):
        C0:B1:F4:68:AE:02:28:10:DB:56:4C:ED:11:24:85:17:3E:F0:43:61
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153997 (0x1dee430d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:42 2017
            Not After : Mon May 02 15:40:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:c5:58:ac:92:bd:68:c3:7c:40:07:c6:b7:e4:90:a7:
                    a6:17:2a:0e:41:dd:83:bd:f8:69:64:50:7a:17:d2:65:
                    c6:99:85:13:21:94:2f:c9:7b:81:74:8b:7e:c9:df:12:
                    0d:05:e5:ad:e7:6e:df:de:d0:7a:93:51:a4:d6:ed:ea:
                    d0:f6:55:68:33:41:a9:f0:69:a3:66:c1:80:a1:08:68:
                    29:57:d7:ea:b7:b4:e4:85:c5:da:54:1c:3e:c8:c4:f0:
                    d5:f5:9c:f1:58:ad:42:49:84:93:a4:1a:57:71:a7:f6:
                    8e:5b:94:50:6b:6d:80:0f:e4:87:04:93:d6:6f:92:cb:
                    50:76:b5:83:b5:e4:d4:6c:bf:1f:f3:73:35:c6:b5:5e:
                    0c:92:33:a4:aa:31:cd:48:2d:3b:b6:98:cc:dc:fd:97:
                    e0:cb:f8:8c:53:08:fc:fb:bf:6d:cb:12:25:8c:39:ac:
                    9f:ff:81:e2:d2:9c:83:24:d5:3e:c7:7d:7a:ab:8e:cd:
                    84:a9:6d:45:34:65:50:01:d0:ea:0c:c6:6d:c6:f2:c1:
                    ca:d4:af:f8:5f:0d:a2:b6:09:0c:92:ab:84:51:9d:73:
                    9e:9d:ba:15:01:9c:41:cb:4b:c9:31:7c:53:28:cc:a1:
                    13:ee:57:04:06:3a:1e:25:dd:56:82:0e:6b:11:83:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:1a:57:49:e2:cd:b1:90:d5:b9:82:0a:76:d4:e5:43:
        7f:ea:46:4a:f5:5b:d0:91:80:ef:1c:81:08:25:63:15:
        e0:4c:65:da:fc:ca:52:33:16:da:7e:82:b8:aa:f0:0b:
        59:9c:ed:93:97:e9:8b:db:81:5a:e7:19:20:dc:e4:e5:
        b8:c4:82:5c:0a:e9:6a:2c:5d:42:27:7e:72:9b:55:87:
        b0:0c:19:75:7c:d9:b7:6f:c6:67:ea:8a:16:a5:d3:0a:
        2f:43:4b:b4:73:5b:54:f8:34:0a:3d:c2:f7:dc:bd:d6:
        47:20:81:40:76:16:21:7d:c6:4b:b7:fc:9b:3b:d4:c8:
        24:c5:3e:6f:b9:92:b5:7e:ea:2b:74:b1:53:44:3e:d8:
        cd:27:47:18:3d:7d:8e:68:5e:7e:bf:24:8b:5d:20:58:
        c1:bd:fa:ec:d9:9a:9e:7e:76:8e:44:cc:eb:03:1f:ae:
        15:a2:3e:40:3d:e3:32:c2:e2:e1:3c:71:93:a4:0e:47:
        25:e7:36:73:50:78:c4:0c:32:e1:3c:04:a5:98:40:04:
        81:20:93:bf:bb:ba:39:f3:9b:51:32:c9:8e:db:b4:3f:
        2a:3a:7c:0a:f7:99:c5:01:50:a6:3e:65:1e:81:9a:fc:
        cb:21:a4:be:eb:fa:6d:95:75:39:0b:44:08:2e:95:44
    Fingerprint (SHA-256):
        56:9C:6F:C7:B6:D6:58:92:39:27:80:5E:CA:AB:39:06:FB:BE:68:E4:B1:46:98:05:98:0C:FE:60:28:F3:FE:6A
    Fingerprint (SHA1):
        7B:BA:1D:18:D4:B1:39:F9:BA:DF:45:85:4C:27:11:50:8B:97:3C:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502153997 (0x1dee430d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:42 2017
            Not After : Mon May 02 15:40:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:c5:58:ac:92:bd:68:c3:7c:40:07:c6:b7:e4:90:a7:
                    a6:17:2a:0e:41:dd:83:bd:f8:69:64:50:7a:17:d2:65:
                    c6:99:85:13:21:94:2f:c9:7b:81:74:8b:7e:c9:df:12:
                    0d:05:e5:ad:e7:6e:df:de:d0:7a:93:51:a4:d6:ed:ea:
                    d0:f6:55:68:33:41:a9:f0:69:a3:66:c1:80:a1:08:68:
                    29:57:d7:ea:b7:b4:e4:85:c5:da:54:1c:3e:c8:c4:f0:
                    d5:f5:9c:f1:58:ad:42:49:84:93:a4:1a:57:71:a7:f6:
                    8e:5b:94:50:6b:6d:80:0f:e4:87:04:93:d6:6f:92:cb:
                    50:76:b5:83:b5:e4:d4:6c:bf:1f:f3:73:35:c6:b5:5e:
                    0c:92:33:a4:aa:31:cd:48:2d:3b:b6:98:cc:dc:fd:97:
                    e0:cb:f8:8c:53:08:fc:fb:bf:6d:cb:12:25:8c:39:ac:
                    9f:ff:81:e2:d2:9c:83:24:d5:3e:c7:7d:7a:ab:8e:cd:
                    84:a9:6d:45:34:65:50:01:d0:ea:0c:c6:6d:c6:f2:c1:
                    ca:d4:af:f8:5f:0d:a2:b6:09:0c:92:ab:84:51:9d:73:
                    9e:9d:ba:15:01:9c:41:cb:4b:c9:31:7c:53:28:cc:a1:
                    13:ee:57:04:06:3a:1e:25:dd:56:82:0e:6b:11:83:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:1a:57:49:e2:cd:b1:90:d5:b9:82:0a:76:d4:e5:43:
        7f:ea:46:4a:f5:5b:d0:91:80:ef:1c:81:08:25:63:15:
        e0:4c:65:da:fc:ca:52:33:16:da:7e:82:b8:aa:f0:0b:
        59:9c:ed:93:97:e9:8b:db:81:5a:e7:19:20:dc:e4:e5:
        b8:c4:82:5c:0a:e9:6a:2c:5d:42:27:7e:72:9b:55:87:
        b0:0c:19:75:7c:d9:b7:6f:c6:67:ea:8a:16:a5:d3:0a:
        2f:43:4b:b4:73:5b:54:f8:34:0a:3d:c2:f7:dc:bd:d6:
        47:20:81:40:76:16:21:7d:c6:4b:b7:fc:9b:3b:d4:c8:
        24:c5:3e:6f:b9:92:b5:7e:ea:2b:74:b1:53:44:3e:d8:
        cd:27:47:18:3d:7d:8e:68:5e:7e:bf:24:8b:5d:20:58:
        c1:bd:fa:ec:d9:9a:9e:7e:76:8e:44:cc:eb:03:1f:ae:
        15:a2:3e:40:3d:e3:32:c2:e2:e1:3c:71:93:a4:0e:47:
        25:e7:36:73:50:78:c4:0c:32:e1:3c:04:a5:98:40:04:
        81:20:93:bf:bb:ba:39:f3:9b:51:32:c9:8e:db:b4:3f:
        2a:3a:7c:0a:f7:99:c5:01:50:a6:3e:65:1e:81:9a:fc:
        cb:21:a4:be:eb:fa:6d:95:75:39:0b:44:08:2e:95:44
    Fingerprint (SHA-256):
        56:9C:6F:C7:B6:D6:58:92:39:27:80:5E:CA:AB:39:06:FB:BE:68:E4:B1:46:98:05:98:0C:FE:60:28:F3:FE:6A
    Fingerprint (SHA1):
        7B:BA:1D:18:D4:B1:39:F9:BA:DF:45:85:4C:27:11:50:8B:97:3C:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7292: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154004 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7293: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7294: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7295: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154005 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7296: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7297: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7298: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7299: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502154006   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7300: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7301: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7302: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7303: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502154007   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7304: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7305: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7306: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7307: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502154008 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7308: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7309: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502154009 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7310: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7311: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7312: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7313: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7314: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154010   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7315: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7316: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7317: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7318: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154011   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7319: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7320: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7321: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7322: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154012   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7323: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7324: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7325: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7326: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154013   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7327: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7328: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7329: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154004 (0x1dee4314)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:40:47 2017
            Not After : Mon May 02 15:40:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:a4:da:25:45:11:bf:1c:0a:c4:7e:20:79:32:5b:e2:
                    96:53:b5:c0:2d:06:2c:7d:fc:f2:d6:97:a9:69:ac:6a:
                    9a:3b:5c:27:aa:f8:3e:a5:38:df:43:9b:5b:39:4f:cb:
                    f1:a1:c2:a4:8d:94:66:91:4e:2a:95:e3:05:ad:fd:84:
                    33:32:42:ad:34:b8:f4:91:0c:f3:da:22:18:38:3d:0c:
                    94:72:50:04:6f:2c:65:27:a9:eb:ad:22:22:0d:e8:06:
                    a5:f4:4a:28:39:aa:c9:a0:49:ca:54:31:0a:09:f2:f8:
                    44:ca:ab:ff:ff:83:5c:9c:63:03:0e:bf:56:a3:b8:78:
                    3e:36:88:55:a1:49:83:42:bd:3e:cd:cb:ac:38:b2:99:
                    79:5e:b8:5b:a9:bb:2b:77:7e:d2:0a:0d:5b:46:1c:e2:
                    10:68:17:d5:4d:d9:fc:fe:69:23:ae:bd:40:a1:68:58:
                    a7:09:68:d1:e8:a6:51:40:4d:d0:29:c5:12:8a:b1:c2:
                    75:88:6b:d8:2f:53:a5:fb:5a:09:57:a2:68:ee:13:da:
                    a5:cd:d0:c1:47:1a:e0:24:da:4a:a7:9b:8c:bc:a6:4f:
                    15:88:f4:37:c4:9d:cc:52:d7:5d:65:fa:e6:b6:b3:4f:
                    8d:e8:c0:d1:07:ee:20:21:2c:8f:9c:a9:9b:ea:b0:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b8:43:cb:03:2d:a3:99:eb:2e:2a:e2:4a:dc:cd:2d:
        e6:fa:a8:67:64:14:63:71:6f:a3:ff:4b:79:82:05:ea:
        9c:30:cb:85:f6:47:5f:5b:9e:c5:a4:a5:13:72:15:de:
        de:9b:6c:69:0f:80:bc:d9:7c:01:57:65:74:72:e8:ca:
        82:1a:47:48:c0:e8:97:42:f6:2c:7b:10:89:b1:40:4f:
        90:7e:af:c3:60:60:43:cc:cc:51:a7:58:0d:aa:bd:2a:
        bb:77:ac:da:07:a7:28:2f:85:69:19:2b:fd:da:36:c4:
        30:58:39:4b:4e:fb:0d:47:98:eb:f8:94:8c:57:10:e7:
        a9:06:76:21:80:9a:55:9d:12:9d:ec:26:b3:d2:e5:66:
        b9:6b:2d:e2:4f:12:b3:34:e8:df:b2:0a:6d:dc:f9:1a:
        56:09:df:56:38:39:79:04:67:3b:99:17:0c:97:46:ad:
        a7:32:ac:76:7b:48:0a:de:a3:de:06:94:bf:a9:60:d0:
        c7:7a:59:43:07:e3:50:e4:70:00:a8:36:2b:b9:2c:bf:
        d3:0a:d8:a0:d9:64:4a:47:08:c6:c7:b1:2e:c9:da:71:
        f4:ce:5b:6d:17:94:42:f3:73:fc:de:6b:f9:de:1b:a7:
        f7:45:79:a7:bd:ac:0e:22:d8:9c:48:f1:a1:1e:4b:23
    Fingerprint (SHA-256):
        74:99:76:ED:36:4B:D2:CC:E5:5C:EE:EA:8C:45:5A:9E:79:8D:5D:A8:D3:E3:D5:91:F9:60:DB:3B:DD:C3:2F:31
    Fingerprint (SHA1):
        93:A7:B3:66:41:16:79:CB:C2:02:29:68:AC:79:84:0B:D9:16:48:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7330: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7331: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7332: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7333: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7334: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7335: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7336: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7337: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7338: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154005 (0x1dee4315)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:40:48 2017
            Not After : Mon May 02 15:40:48 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:37:1b:7a:e2:fe:c5:b1:6c:24:95:af:b3:c8:61:4c:
                    81:c6:31:54:4b:1c:e1:8a:bc:a7:f9:d9:e0:1a:e6:35:
                    30:08:70:54:89:5e:a0:41:13:75:3c:13:fa:e0:17:3d:
                    cd:4b:97:99:e5:50:e4:db:8f:15:09:02:a3:8c:6c:ab:
                    8a:76:8a:17:e3:bb:4f:7e:b9:8c:15:44:05:06:b9:af:
                    b3:ec:ff:35:67:52:d6:17:de:f3:a9:1c:2a:9d:e1:91:
                    5f:a7:29:8f:55:9a:78:00:e7:f9:f7:09:8e:d5:b6:34:
                    ac:cd:f9:8b:ad:ef:ea:35:97:90:71:30:75:d5:bb:a2:
                    cc:04:19:92:02:9b:af:f5:8c:52:bb:af:cc:24:67:8f:
                    7c:d6:92:2c:70:fb:2c:4f:3f:3e:7e:a6:dc:98:48:be:
                    d1:7f:e1:de:92:4f:60:24:2f:87:31:58:f5:d8:6c:df:
                    21:20:f7:d9:04:8a:47:2a:9a:34:4a:6c:06:c1:3c:93:
                    c0:1a:00:3a:f8:ec:55:70:81:62:8e:51:62:74:d7:a4:
                    78:64:8c:91:c6:d0:8e:09:16:f1:14:ff:be:a1:5a:d7:
                    92:76:bd:aa:2c:80:c2:70:d0:0f:5c:48:72:17:92:2c:
                    38:e5:8d:d3:8f:a2:c5:f3:6b:52:94:8e:cc:6b:3d:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:b7:fd:7b:ec:1d:cb:86:5f:31:8c:19:60:c5:7c:b1:
        dc:22:77:de:76:42:88:99:ca:a4:1a:55:76:fd:8f:3c:
        1f:88:8c:c6:5d:d7:fb:98:67:80:e0:a9:50:51:99:80:
        36:6d:d6:71:86:21:13:d8:2a:d6:1b:37:64:48:07:2f:
        25:a7:58:8b:67:4c:e3:fc:84:b8:05:95:e6:8e:1a:4b:
        29:ca:22:4c:ca:2a:32:19:a4:ea:d3:ad:25:ab:ba:7f:
        57:1b:ab:e7:8b:fc:a3:b6:59:72:2b:9a:f9:0c:8f:78:
        b5:0b:3f:b3:79:47:26:d3:3a:45:95:00:1e:f5:57:77:
        e6:e3:e0:ee:c9:82:b3:d8:24:76:70:df:e1:13:4b:d5:
        46:d2:0f:a4:a8:24:0c:bf:95:b7:30:46:5c:71:a0:98:
        c5:36:8f:ec:5e:ce:fd:fc:7a:7b:aa:f0:63:9e:a9:14:
        4b:08:22:0a:ff:46:23:0b:56:0d:24:b3:7b:39:2e:d6:
        c9:f3:e1:15:4d:6d:c4:4e:ab:19:48:71:c2:7b:ed:37:
        32:86:7a:6f:05:d4:3d:f5:76:3c:04:2f:8f:d4:fd:57:
        0e:59:89:dd:72:aa:75:c1:64:9b:48:bf:93:61:82:fd:
        b7:f6:70:da:7a:0f:df:a7:46:02:dd:29:ec:4d:2e:17
    Fingerprint (SHA-256):
        43:2E:F9:63:EA:47:30:86:C8:72:74:56:85:9E:AF:20:F8:8A:2B:3E:52:03:C8:F4:AD:FB:22:2E:D4:FA:48:65
    Fingerprint (SHA1):
        BF:3B:1B:65:85:CD:21:E2:A3:1B:0E:D6:5A:B2:AF:71:AD:43:8E:03
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7339: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7340: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7341: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7342: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7343: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7344: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7345: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7346: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7347: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7348: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7349: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7350: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7351: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7352: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7354: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7355: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7356: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7357: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154014 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7358: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7359: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7360: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7361: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154015   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7362: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7363: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7364: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7365: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154016   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7366: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7367: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7368: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7369: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502154017   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7370: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7371: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7372: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7373: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154018   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7374: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7375: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7376: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7377: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502154019   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7378: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7379: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7380: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7381: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502154020   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7382: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7383: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7384: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7385: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502154021   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7386: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7387: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7388: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7389: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502154022   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7390: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7391: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7392: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154014 (0x1dee431e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:53 2017
            Not After : Mon May 02 15:40:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bb:0b:60:92:a7:fd:6a:58:6c:b4:e2:ec:e5:9c:42:26:
                    8f:2b:cd:13:ca:1b:37:02:54:d3:82:43:3f:ac:9a:5d:
                    d7:62:e6:7e:9c:11:17:ed:34:8d:25:e0:47:c5:ef:00:
                    ef:4e:77:df:2a:3f:86:96:0b:91:6e:33:da:09:0c:cb:
                    db:e4:69:41:06:a6:9a:e9:ab:f8:d0:cc:b7:27:ca:87:
                    68:d2:22:36:ae:be:56:11:5b:5b:04:a5:9c:dc:1d:e2:
                    84:3b:f5:95:65:92:0c:91:82:ef:6e:b1:d0:40:3f:21:
                    d7:99:c3:f2:b3:90:d8:34:e7:99:ad:aa:1a:cc:f7:06:
                    dc:4c:9a:9f:81:c7:e8:7b:4a:c7:1f:d1:e3:74:da:76:
                    8e:2c:7b:91:88:79:94:38:39:9b:0a:da:ab:29:98:bd:
                    d1:dc:38:18:d1:af:9d:15:23:e7:b0:4c:1d:5d:3a:c1:
                    70:fe:16:3e:20:50:9c:64:ba:ed:f1:61:65:f3:71:74:
                    54:2d:cc:67:46:21:55:23:e8:df:cb:92:2e:7a:9e:75:
                    ab:45:0c:53:f4:dc:26:c3:27:0f:cb:8b:cc:6d:86:c8:
                    99:e2:ad:ad:87:cb:f0:ac:67:fc:4d:45:b6:ca:f8:89:
                    df:0d:2f:11:48:b3:ac:15:b6:75:b7:15:9a:e1:f8:15
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:05:dd:48:fb:63:bb:fb:b4:e1:f3:d3:b4:
        d1:31:4d:71:f2:62:83:6d:95:d6:2d:ad:e1:f0:55:fc:
        02:1c:01:0b:af:05:8c:de:c9:3e:dc:e9:c8:2b:e5:b2:
        3d:0c:6e:47:66:c3:7a:df:09:7e:cf:9f:40:84
    Fingerprint (SHA-256):
        A9:B8:3A:93:46:48:A4:59:2B:89:FD:3F:24:A6:67:AB:61:5A:33:19:E0:42:AC:65:1E:1C:8A:73:68:95:35:76
    Fingerprint (SHA1):
        14:83:AF:71:90:E6:B8:D9:93:BE:FB:14:84:05:38:5E:05:06:8C:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7393: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154014 (0x1dee431e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:53 2017
            Not After : Mon May 02 15:40:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bb:0b:60:92:a7:fd:6a:58:6c:b4:e2:ec:e5:9c:42:26:
                    8f:2b:cd:13:ca:1b:37:02:54:d3:82:43:3f:ac:9a:5d:
                    d7:62:e6:7e:9c:11:17:ed:34:8d:25:e0:47:c5:ef:00:
                    ef:4e:77:df:2a:3f:86:96:0b:91:6e:33:da:09:0c:cb:
                    db:e4:69:41:06:a6:9a:e9:ab:f8:d0:cc:b7:27:ca:87:
                    68:d2:22:36:ae:be:56:11:5b:5b:04:a5:9c:dc:1d:e2:
                    84:3b:f5:95:65:92:0c:91:82:ef:6e:b1:d0:40:3f:21:
                    d7:99:c3:f2:b3:90:d8:34:e7:99:ad:aa:1a:cc:f7:06:
                    dc:4c:9a:9f:81:c7:e8:7b:4a:c7:1f:d1:e3:74:da:76:
                    8e:2c:7b:91:88:79:94:38:39:9b:0a:da:ab:29:98:bd:
                    d1:dc:38:18:d1:af:9d:15:23:e7:b0:4c:1d:5d:3a:c1:
                    70:fe:16:3e:20:50:9c:64:ba:ed:f1:61:65:f3:71:74:
                    54:2d:cc:67:46:21:55:23:e8:df:cb:92:2e:7a:9e:75:
                    ab:45:0c:53:f4:dc:26:c3:27:0f:cb:8b:cc:6d:86:c8:
                    99:e2:ad:ad:87:cb:f0:ac:67:fc:4d:45:b6:ca:f8:89:
                    df:0d:2f:11:48:b3:ac:15:b6:75:b7:15:9a:e1:f8:15
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:05:dd:48:fb:63:bb:fb:b4:e1:f3:d3:b4:
        d1:31:4d:71:f2:62:83:6d:95:d6:2d:ad:e1:f0:55:fc:
        02:1c:01:0b:af:05:8c:de:c9:3e:dc:e9:c8:2b:e5:b2:
        3d:0c:6e:47:66:c3:7a:df:09:7e:cf:9f:40:84
    Fingerprint (SHA-256):
        A9:B8:3A:93:46:48:A4:59:2B:89:FD:3F:24:A6:67:AB:61:5A:33:19:E0:42:AC:65:1E:1C:8A:73:68:95:35:76
    Fingerprint (SHA1):
        14:83:AF:71:90:E6:B8:D9:93:BE:FB:14:84:05:38:5E:05:06:8C:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7394: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154014 (0x1dee431e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:53 2017
            Not After : Mon May 02 15:40:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bb:0b:60:92:a7:fd:6a:58:6c:b4:e2:ec:e5:9c:42:26:
                    8f:2b:cd:13:ca:1b:37:02:54:d3:82:43:3f:ac:9a:5d:
                    d7:62:e6:7e:9c:11:17:ed:34:8d:25:e0:47:c5:ef:00:
                    ef:4e:77:df:2a:3f:86:96:0b:91:6e:33:da:09:0c:cb:
                    db:e4:69:41:06:a6:9a:e9:ab:f8:d0:cc:b7:27:ca:87:
                    68:d2:22:36:ae:be:56:11:5b:5b:04:a5:9c:dc:1d:e2:
                    84:3b:f5:95:65:92:0c:91:82:ef:6e:b1:d0:40:3f:21:
                    d7:99:c3:f2:b3:90:d8:34:e7:99:ad:aa:1a:cc:f7:06:
                    dc:4c:9a:9f:81:c7:e8:7b:4a:c7:1f:d1:e3:74:da:76:
                    8e:2c:7b:91:88:79:94:38:39:9b:0a:da:ab:29:98:bd:
                    d1:dc:38:18:d1:af:9d:15:23:e7:b0:4c:1d:5d:3a:c1:
                    70:fe:16:3e:20:50:9c:64:ba:ed:f1:61:65:f3:71:74:
                    54:2d:cc:67:46:21:55:23:e8:df:cb:92:2e:7a:9e:75:
                    ab:45:0c:53:f4:dc:26:c3:27:0f:cb:8b:cc:6d:86:c8:
                    99:e2:ad:ad:87:cb:f0:ac:67:fc:4d:45:b6:ca:f8:89:
                    df:0d:2f:11:48:b3:ac:15:b6:75:b7:15:9a:e1:f8:15
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:05:dd:48:fb:63:bb:fb:b4:e1:f3:d3:b4:
        d1:31:4d:71:f2:62:83:6d:95:d6:2d:ad:e1:f0:55:fc:
        02:1c:01:0b:af:05:8c:de:c9:3e:dc:e9:c8:2b:e5:b2:
        3d:0c:6e:47:66:c3:7a:df:09:7e:cf:9f:40:84
    Fingerprint (SHA-256):
        A9:B8:3A:93:46:48:A4:59:2B:89:FD:3F:24:A6:67:AB:61:5A:33:19:E0:42:AC:65:1E:1C:8A:73:68:95:35:76
    Fingerprint (SHA1):
        14:83:AF:71:90:E6:B8:D9:93:BE:FB:14:84:05:38:5E:05:06:8C:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7395: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154014 (0x1dee431e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:53 2017
            Not After : Mon May 02 15:40:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bb:0b:60:92:a7:fd:6a:58:6c:b4:e2:ec:e5:9c:42:26:
                    8f:2b:cd:13:ca:1b:37:02:54:d3:82:43:3f:ac:9a:5d:
                    d7:62:e6:7e:9c:11:17:ed:34:8d:25:e0:47:c5:ef:00:
                    ef:4e:77:df:2a:3f:86:96:0b:91:6e:33:da:09:0c:cb:
                    db:e4:69:41:06:a6:9a:e9:ab:f8:d0:cc:b7:27:ca:87:
                    68:d2:22:36:ae:be:56:11:5b:5b:04:a5:9c:dc:1d:e2:
                    84:3b:f5:95:65:92:0c:91:82:ef:6e:b1:d0:40:3f:21:
                    d7:99:c3:f2:b3:90:d8:34:e7:99:ad:aa:1a:cc:f7:06:
                    dc:4c:9a:9f:81:c7:e8:7b:4a:c7:1f:d1:e3:74:da:76:
                    8e:2c:7b:91:88:79:94:38:39:9b:0a:da:ab:29:98:bd:
                    d1:dc:38:18:d1:af:9d:15:23:e7:b0:4c:1d:5d:3a:c1:
                    70:fe:16:3e:20:50:9c:64:ba:ed:f1:61:65:f3:71:74:
                    54:2d:cc:67:46:21:55:23:e8:df:cb:92:2e:7a:9e:75:
                    ab:45:0c:53:f4:dc:26:c3:27:0f:cb:8b:cc:6d:86:c8:
                    99:e2:ad:ad:87:cb:f0:ac:67:fc:4d:45:b6:ca:f8:89:
                    df:0d:2f:11:48:b3:ac:15:b6:75:b7:15:9a:e1:f8:15
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:05:dd:48:fb:63:bb:fb:b4:e1:f3:d3:b4:
        d1:31:4d:71:f2:62:83:6d:95:d6:2d:ad:e1:f0:55:fc:
        02:1c:01:0b:af:05:8c:de:c9:3e:dc:e9:c8:2b:e5:b2:
        3d:0c:6e:47:66:c3:7a:df:09:7e:cf:9f:40:84
    Fingerprint (SHA-256):
        A9:B8:3A:93:46:48:A4:59:2B:89:FD:3F:24:A6:67:AB:61:5A:33:19:E0:42:AC:65:1E:1C:8A:73:68:95:35:76
    Fingerprint (SHA1):
        14:83:AF:71:90:E6:B8:D9:93:BE:FB:14:84:05:38:5E:05:06:8C:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7396: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7397: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7398: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7399: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7400: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7401: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7402: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7403: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7404: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7405: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7406: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7407: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7408: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7409: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7410: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7411: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7412: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7413: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7414: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7415: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7416: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7417: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7418: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7419: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7420: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7421: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7422: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7423: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154100Z
nextupdate=20180502154100Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:41:00 2017
    Next Update: Wed May 02 15:41:00 2018
    CRL Extensions:
chains.sh: #7424: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154100Z
nextupdate=20180502154100Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:41:00 2017
    Next Update: Wed May 02 15:41:00 2018
    CRL Extensions:
chains.sh: #7425: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154100Z
nextupdate=20180502154100Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:41:00 2017
    Next Update: Wed May 02 15:41:00 2018
    CRL Extensions:
chains.sh: #7426: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154100Z
nextupdate=20180502154100Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:41:00 2017
    Next Update: Wed May 02 15:41:00 2018
    CRL Extensions:
chains.sh: #7427: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154101Z
addcert 14 20170502154101Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:41:01 2017
    Next Update: Wed May 02 15:41:00 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:41:01 2017
    CRL Extensions:
chains.sh: #7428: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154102Z
addcert 15 20170502154102Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:41:02 2017
    Next Update: Wed May 02 15:41:00 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:41:02 2017
    CRL Extensions:
chains.sh: #7429: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7430: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7431: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7432: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7433: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7434: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7435: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7436: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7437: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7438: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:56 2017
            Not After : Mon May 02 15:40:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bb:3f:56:a8:39:29:c9:72:55:92:90:88:6b:28:b0:
                    94:a5:ba:8c:d5:bf:52:93:98:a3:d0:4b:ea:6c:d5:69:
                    15:fc:2e:f2:89:d1:5b:dc:84:26:c0:a6:7f:38:b1:0f:
                    ec:98:45:d6:9a:60:b0:24:66:0a:8b:84:c3:7c:0c:df:
                    b9:9f:99:04:70:6d:4c:ec:53:90:7f:0c:a4:12:e2:46:
                    f1:3a:ec:4f:f8:f1:46:1b:f1:51:f6:67:70:96:3a:f7:
                    85:6e:da:24:64:52:34:69:31:7e:b3:52:87:90:e2:e2:
                    24:be:b7:8e:1c:22:25:e9:71:00:6f:29:d2:3b:ab:86:
                    9d:71:f7:b9:82:d6:cc:2f:81:41:07:6d:7e:d9:78:93:
                    76:2c:83:d5:df:e9:bb:76:cf:1f:a6:72:eb:10:8b:88:
                    ac:03:ce:0a:92:e0:68:ae:04:d1:65:f0:40:52:1a:fc:
                    77:86:22:7b:da:46:cb:a4:02:b0:c9:41:69:04:1b:54:
                    a5:b5:e0:e6:13:50:ee:33:bf:33:81:6e:d5:b6:53:08:
                    4a:dd:55:2b:bd:18:02:c8:77:5b:5b:dc:8b:d1:be:a4:
                    48:f1:8c:06:2d:b6:75:b7:0d:5f:5b:d4:a2:45:85:af:
                    a5:f0:67:ae:59:c0:3c:47:e8:ef:38:b6:a0:39:a4:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:80:dc:47:e3:c4:90:40:f6:89:ca:0e:38:4b:27:d8:
        1b:31:64:0e:f5:06:05:9a:a1:90:86:b5:ac:3c:03:77:
        5f:e7:f1:9b:35:a6:51:a3:be:c5:97:73:79:4e:49:75:
        37:b3:a4:98:a2:bf:28:00:d2:dc:42:18:d6:a8:4d:27:
        41:e9:20:1c:a9:3d:38:e0:6c:09:74:83:9c:8f:63:ff:
        28:41:de:29:a0:e7:af:d7:46:21:7f:e9:f0:da:7b:5a:
        c3:f8:bf:a2:1b:01:bb:4f:21:7e:7e:c7:20:2c:1c:18:
        aa:2f:53:94:1d:59:cb:47:15:4e:51:02:83:fe:6e:a2:
        1a:66:75:77:5d:b3:77:06:13:d6:1a:bf:59:be:37:33:
        92:e6:68:2d:ce:4e:a1:7d:39:b2:09:53:32:eb:81:de:
        f1:a4:5b:3e:15:ce:24:bd:ac:39:1f:81:f2:98:4f:00:
        f0:ee:7b:87:95:68:c7:59:b7:14:36:56:0a:cd:f2:db:
        39:55:ba:3d:ee:36:8a:72:79:02:a2:76:48:12:e0:fc:
        bf:ef:7c:b2:b8:c5:4b:61:b0:31:98:6d:4e:d8:c2:45:
        48:01:17:ad:6b:d1:44:ea:1f:c0:53:7b:20:ea:5f:9c:
        b7:1d:62:82:b8:79:7d:f6:f1:02:e9:de:80:43:61:12
    Fingerprint (SHA-256):
        0F:22:75:13:93:DF:67:5D:86:58:B4:A7:9D:17:63:39:26:F3:35:77:8A:D7:85:38:09:0B:F4:FC:93:09:3F:CA
    Fingerprint (SHA1):
        AB:A2:E2:4E:89:E5:F0:20:96:55:2A:41:14:1A:3D:DC:E5:79:7A:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7439: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7440: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:40:56 2017
            Not After : Mon May 02 15:40:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bb:3f:56:a8:39:29:c9:72:55:92:90:88:6b:28:b0:
                    94:a5:ba:8c:d5:bf:52:93:98:a3:d0:4b:ea:6c:d5:69:
                    15:fc:2e:f2:89:d1:5b:dc:84:26:c0:a6:7f:38:b1:0f:
                    ec:98:45:d6:9a:60:b0:24:66:0a:8b:84:c3:7c:0c:df:
                    b9:9f:99:04:70:6d:4c:ec:53:90:7f:0c:a4:12:e2:46:
                    f1:3a:ec:4f:f8:f1:46:1b:f1:51:f6:67:70:96:3a:f7:
                    85:6e:da:24:64:52:34:69:31:7e:b3:52:87:90:e2:e2:
                    24:be:b7:8e:1c:22:25:e9:71:00:6f:29:d2:3b:ab:86:
                    9d:71:f7:b9:82:d6:cc:2f:81:41:07:6d:7e:d9:78:93:
                    76:2c:83:d5:df:e9:bb:76:cf:1f:a6:72:eb:10:8b:88:
                    ac:03:ce:0a:92:e0:68:ae:04:d1:65:f0:40:52:1a:fc:
                    77:86:22:7b:da:46:cb:a4:02:b0:c9:41:69:04:1b:54:
                    a5:b5:e0:e6:13:50:ee:33:bf:33:81:6e:d5:b6:53:08:
                    4a:dd:55:2b:bd:18:02:c8:77:5b:5b:dc:8b:d1:be:a4:
                    48:f1:8c:06:2d:b6:75:b7:0d:5f:5b:d4:a2:45:85:af:
                    a5:f0:67:ae:59:c0:3c:47:e8:ef:38:b6:a0:39:a4:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:80:dc:47:e3:c4:90:40:f6:89:ca:0e:38:4b:27:d8:
        1b:31:64:0e:f5:06:05:9a:a1:90:86:b5:ac:3c:03:77:
        5f:e7:f1:9b:35:a6:51:a3:be:c5:97:73:79:4e:49:75:
        37:b3:a4:98:a2:bf:28:00:d2:dc:42:18:d6:a8:4d:27:
        41:e9:20:1c:a9:3d:38:e0:6c:09:74:83:9c:8f:63:ff:
        28:41:de:29:a0:e7:af:d7:46:21:7f:e9:f0:da:7b:5a:
        c3:f8:bf:a2:1b:01:bb:4f:21:7e:7e:c7:20:2c:1c:18:
        aa:2f:53:94:1d:59:cb:47:15:4e:51:02:83:fe:6e:a2:
        1a:66:75:77:5d:b3:77:06:13:d6:1a:bf:59:be:37:33:
        92:e6:68:2d:ce:4e:a1:7d:39:b2:09:53:32:eb:81:de:
        f1:a4:5b:3e:15:ce:24:bd:ac:39:1f:81:f2:98:4f:00:
        f0:ee:7b:87:95:68:c7:59:b7:14:36:56:0a:cd:f2:db:
        39:55:ba:3d:ee:36:8a:72:79:02:a2:76:48:12:e0:fc:
        bf:ef:7c:b2:b8:c5:4b:61:b0:31:98:6d:4e:d8:c2:45:
        48:01:17:ad:6b:d1:44:ea:1f:c0:53:7b:20:ea:5f:9c:
        b7:1d:62:82:b8:79:7d:f6:f1:02:e9:de:80:43:61:12
    Fingerprint (SHA-256):
        0F:22:75:13:93:DF:67:5D:86:58:B4:A7:9D:17:63:39:26:F3:35:77:8A:D7:85:38:09:0B:F4:FC:93:09:3F:CA
    Fingerprint (SHA1):
        AB:A2:E2:4E:89:E5:F0:20:96:55:2A:41:14:1A:3D:DC:E5:79:7A:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7441: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7442: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7443: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154023 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7444: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7445: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7446: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7447: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502154024   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7448: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7449: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7450: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153795.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7451: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153769.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7452: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7453: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7454: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153795.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7455: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502154025   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7456: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7457: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7458: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153795.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7459: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153770.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7460: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7461: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7462: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7463: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502154026   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7464: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7465: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7466: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153795.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7467: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153771.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7468: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7469: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7470: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502153795.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7471: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502153772.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7472: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7473: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154120Z
nextupdate=20180502154120Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:41:20 2017
    Next Update: Wed May 02 15:41:20 2018
    CRL Extensions:
chains.sh: #7474: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154120Z
nextupdate=20180502154120Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:41:20 2017
    Next Update: Wed May 02 15:41:20 2018
    CRL Extensions:
chains.sh: #7475: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154120Z
nextupdate=20180502154120Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:41:20 2017
    Next Update: Wed May 02 15:41:20 2018
    CRL Extensions:
chains.sh: #7476: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154120Z
nextupdate=20180502154120Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:41:20 2017
    Next Update: Wed May 02 15:41:20 2018
    CRL Extensions:
chains.sh: #7477: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154121Z
addcert 20 20170502154121Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:41:21 2017
    Next Update: Wed May 02 15:41:20 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:41:21 2017
    CRL Extensions:
chains.sh: #7478: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154122Z
addcert 40 20170502154122Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:41:22 2017
    Next Update: Wed May 02 15:41:20 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:41:21 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:41:22 2017
    CRL Extensions:
chains.sh: #7479: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7480: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7481: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7482: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154023 (0x1dee4327)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:03 2017
            Not After : Mon May 02 15:41:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:5b:af:16:79:44:25:d0:d5:a7:0b:97:e8:a4:b1:a0:
                    04:d0:36:c5:7b:38:5e:4a:be:a7:62:fc:9a:e1:41:9b:
                    be:6b:45:c6:e2:85:1a:5d:1b:ca:cb:c3:00:01:73:f1:
                    bb:a0:71:01:5c:33:0d:9c:c2:11:41:c6:e4:aa:0a:c6:
                    56:83:47:30:c5:ec:4c:93:1e:97:ba:09:e5:8a:e3:17:
                    05:35:a7:9a:d1:9f:43:c3:a6:d6:78:55:50:e9:97:c0:
                    cc:72:3f:a7:3e:9c:1c:f9:c0:7c:0a:27:40:82:0b:bc:
                    91:98:68:d3:3c:e6:f5:b3:cb:c4:89:80:61:7b:4f:63:
                    4a:d7:c2:02:22:be:de:fe:76:f3:98:e2:8f:33:51:00:
                    b1:57:e7:67:28:b0:7e:ed:4a:df:55:99:8a:f6:90:e1:
                    1c:19:e6:6c:f2:3f:1c:c5:6d:96:b2:6b:86:7f:13:a7:
                    94:0d:33:22:4b:f7:16:9e:66:23:ad:bf:b3:a7:ae:1e:
                    99:07:91:21:0b:3c:38:c8:ab:51:6a:37:79:bb:d7:59:
                    15:6b:43:9c:32:af:d7:d4:6b:32:b9:43:07:f0:d3:cb:
                    1d:30:4f:62:c1:33:78:f7:54:f2:79:8b:61:c8:7c:45:
                    46:4a:f4:fb:36:5e:d5:ea:10:c9:5a:9f:a4:85:ef:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:bd:c2:c6:a9:d7:a7:0c:e8:88:da:41:6f:79:f4:75:
        f5:3d:4a:62:ea:9e:3a:af:3b:e5:db:e5:a2:f8:d9:0b:
        c2:4f:8c:bc:b1:fc:2f:a2:d4:f9:25:08:16:9d:70:6c:
        d8:63:f4:1b:76:92:15:bc:08:79:d4:2c:b4:79:d2:87:
        8d:c4:cf:27:8e:29:5c:11:d9:b9:c4:c1:ad:20:ad:a2:
        95:1d:43:74:94:3f:f6:71:f7:fd:96:2d:fd:b1:56:fe:
        e0:bb:ea:6f:8b:a5:46:10:62:5c:44:62:07:72:8b:98:
        dd:6b:92:1c:76:87:55:a2:58:16:92:22:f0:bd:0f:a6:
        0e:e5:76:3d:0e:1a:89:e8:94:e3:42:17:1d:09:d4:bc:
        94:bd:e4:6f:2d:63:97:68:88:ea:14:6b:d1:bd:03:4b:
        14:26:6d:a9:ea:e4:a5:78:b4:25:dc:e9:09:1f:18:9d:
        d2:d1:42:71:3c:7c:23:73:46:ef:07:f1:fb:7a:99:6a:
        16:54:a4:5e:43:16:b9:38:80:fe:e1:c2:71:df:35:8e:
        6b:43:e7:76:04:aa:e7:88:0a:7c:a9:16:88:33:99:be:
        6c:49:ea:16:b2:ed:25:d6:3a:6a:33:39:63:1b:d7:69:
        11:d7:18:17:00:35:d8:9b:8b:a2:dc:ac:74:76:aa:df
    Fingerprint (SHA-256):
        BC:DC:3E:06:09:DA:A7:7C:62:C3:05:97:81:01:12:64:FB:0C:F6:03:4B:2B:A2:2E:28:56:51:D7:58:24:4B:31
    Fingerprint (SHA1):
        BB:70:CC:A5:9A:51:A7:16:F3:18:02:FC:4A:E1:97:46:4B:56:74:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7483: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7484: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154023 (0x1dee4327)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:03 2017
            Not After : Mon May 02 15:41:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:5b:af:16:79:44:25:d0:d5:a7:0b:97:e8:a4:b1:a0:
                    04:d0:36:c5:7b:38:5e:4a:be:a7:62:fc:9a:e1:41:9b:
                    be:6b:45:c6:e2:85:1a:5d:1b:ca:cb:c3:00:01:73:f1:
                    bb:a0:71:01:5c:33:0d:9c:c2:11:41:c6:e4:aa:0a:c6:
                    56:83:47:30:c5:ec:4c:93:1e:97:ba:09:e5:8a:e3:17:
                    05:35:a7:9a:d1:9f:43:c3:a6:d6:78:55:50:e9:97:c0:
                    cc:72:3f:a7:3e:9c:1c:f9:c0:7c:0a:27:40:82:0b:bc:
                    91:98:68:d3:3c:e6:f5:b3:cb:c4:89:80:61:7b:4f:63:
                    4a:d7:c2:02:22:be:de:fe:76:f3:98:e2:8f:33:51:00:
                    b1:57:e7:67:28:b0:7e:ed:4a:df:55:99:8a:f6:90:e1:
                    1c:19:e6:6c:f2:3f:1c:c5:6d:96:b2:6b:86:7f:13:a7:
                    94:0d:33:22:4b:f7:16:9e:66:23:ad:bf:b3:a7:ae:1e:
                    99:07:91:21:0b:3c:38:c8:ab:51:6a:37:79:bb:d7:59:
                    15:6b:43:9c:32:af:d7:d4:6b:32:b9:43:07:f0:d3:cb:
                    1d:30:4f:62:c1:33:78:f7:54:f2:79:8b:61:c8:7c:45:
                    46:4a:f4:fb:36:5e:d5:ea:10:c9:5a:9f:a4:85:ef:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:bd:c2:c6:a9:d7:a7:0c:e8:88:da:41:6f:79:f4:75:
        f5:3d:4a:62:ea:9e:3a:af:3b:e5:db:e5:a2:f8:d9:0b:
        c2:4f:8c:bc:b1:fc:2f:a2:d4:f9:25:08:16:9d:70:6c:
        d8:63:f4:1b:76:92:15:bc:08:79:d4:2c:b4:79:d2:87:
        8d:c4:cf:27:8e:29:5c:11:d9:b9:c4:c1:ad:20:ad:a2:
        95:1d:43:74:94:3f:f6:71:f7:fd:96:2d:fd:b1:56:fe:
        e0:bb:ea:6f:8b:a5:46:10:62:5c:44:62:07:72:8b:98:
        dd:6b:92:1c:76:87:55:a2:58:16:92:22:f0:bd:0f:a6:
        0e:e5:76:3d:0e:1a:89:e8:94:e3:42:17:1d:09:d4:bc:
        94:bd:e4:6f:2d:63:97:68:88:ea:14:6b:d1:bd:03:4b:
        14:26:6d:a9:ea:e4:a5:78:b4:25:dc:e9:09:1f:18:9d:
        d2:d1:42:71:3c:7c:23:73:46:ef:07:f1:fb:7a:99:6a:
        16:54:a4:5e:43:16:b9:38:80:fe:e1:c2:71:df:35:8e:
        6b:43:e7:76:04:aa:e7:88:0a:7c:a9:16:88:33:99:be:
        6c:49:ea:16:b2:ed:25:d6:3a:6a:33:39:63:1b:d7:69:
        11:d7:18:17:00:35:d8:9b:8b:a2:dc:ac:74:76:aa:df
    Fingerprint (SHA-256):
        BC:DC:3E:06:09:DA:A7:7C:62:C3:05:97:81:01:12:64:FB:0C:F6:03:4B:2B:A2:2E:28:56:51:D7:58:24:4B:31
    Fingerprint (SHA1):
        BB:70:CC:A5:9A:51:A7:16:F3:18:02:FC:4A:E1:97:46:4B:56:74:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7485: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7486: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7487: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154027 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7488: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7489: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7490: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7491: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154028   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7492: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7493: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7494: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7495: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154029   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7496: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7497: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7498: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7499: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502154030   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7500: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7501: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7502: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154031 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7503: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7504: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7505: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7506: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502154032   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7507: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7508: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7509: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7510: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502154033   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7511: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7512: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7513: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7514: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7515: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154027 (0x1dee432b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:90:f3:e3:1e:4f:9d:50:83:63:f0:33:7b:70:fe:4e:
                    3d:fa:1f:7b:26:75:a1:26:7c:a8:99:cf:e2:78:db:ad:
                    8d:5c:bc:09:3c:b3:ef:c6:e5:27:2b:1c:c7:73:b9:82:
                    4f:9d:b7:bb:48:22:01:16:b8:38:bc:43:67:88:e0:1b:
                    e2:37:3c:5c:4a:0d:7a:cd:73:04:37:e6:57:32:ad:4e:
                    32:a9:c4:6e:71:70:fb:35:1a:11:01:42:93:9f:8d:d9:
                    48:3c:78:fb:6f:17:aa:b5:61:37:bc:83:ab:a8:e4:9e:
                    5c:f1:09:5d:c5:64:55:68:5e:73:ab:b3:9c:33:90:14:
                    41:21:a9:93:30:aa:33:f4:65:76:d1:cb:2c:3e:79:ab:
                    f3:df:6a:6e:21:d5:fd:c6:a1:45:66:b6:c8:13:b1:1c:
                    15:b7:a4:46:ed:03:05:9d:31:c2:29:12:e4:a8:4b:43:
                    9a:6e:df:2b:88:ca:a7:53:6f:61:17:36:1b:4e:92:50:
                    74:03:01:54:60:9a:0b:78:a1:af:23:44:c1:d1:b3:ad:
                    38:c6:2f:a3:e7:21:1e:b1:9f:83:49:48:52:b7:7e:48:
                    27:f5:43:7b:96:49:f3:75:46:89:b9:14:77:ac:2a:e4:
                    cc:fc:69:fe:5c:6a:5a:a5:70:4d:a3:ae:56:98:ac:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:20:89:c5:18:eb:0b:c9:09:51:0a:f1:63:73:0c:db:
        22:8e:da:da:d7:ec:54:94:e4:d4:77:55:50:4d:f3:bb:
        2e:cb:72:48:7c:2b:1a:d1:a5:e8:44:57:a8:00:fb:96:
        d9:b9:b6:56:37:98:10:86:21:b8:f1:6d:fe:8a:2d:d3:
        86:65:d4:21:f6:74:23:59:83:b0:d4:e9:71:bb:1b:97:
        99:3c:49:18:24:2c:ce:6f:0f:b2:cd:91:0f:4b:12:91:
        c7:31:fc:ce:40:49:41:42:6f:49:74:68:6b:de:50:a3:
        24:dc:96:69:6c:74:f3:fd:49:d7:0f:6b:24:00:e6:63:
        a9:0c:a1:da:dd:08:6e:d9:4b:8a:6f:7b:a3:cc:5e:86:
        a0:96:2f:7c:85:13:5b:76:78:bf:1d:34:32:d1:95:7e:
        ee:46:a6:00:7a:af:be:e7:17:bd:d7:82:50:88:8a:bc:
        72:cd:bc:8b:80:db:35:5e:e5:af:04:25:9f:fb:04:e7:
        bb:75:72:60:c0:ee:1b:27:3f:f1:b8:45:b1:75:2d:90:
        8c:eb:b6:9c:c3:21:04:65:94:d7:1d:5b:44:ce:9c:b4:
        ea:74:9a:ba:b9:a6:43:48:45:c2:bc:83:d5:d4:c2:c9:
        b2:da:4d:a6:1d:ad:82:11:65:a4:81:74:29:a7:fa:e7
    Fingerprint (SHA-256):
        63:39:B9:62:3B:AC:04:42:10:24:DE:F7:7E:D8:D9:FC:9E:E5:3B:B3:7E:3E:65:39:86:4C:E2:AD:C6:B2:A0:55
    Fingerprint (SHA1):
        64:93:2D:41:24:C8:50:6E:46:EC:72:9D:64:A9:2F:95:EF:26:EF:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7516: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154029 (0x1dee432d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:23 2017
            Not After : Mon May 02 15:41:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ad:63:21:51:6f:94:14:74:6d:c0:b0:0c:28:71:d4:
                    d3:d5:c2:51:2b:f1:e8:2f:12:ea:57:96:2c:0c:22:5c:
                    fe:ee:5e:d5:07:d5:d6:ea:12:14:24:a7:6c:c4:d2:fd:
                    bb:25:2f:f8:5d:f3:3b:72:7c:d2:63:5e:ed:fb:40:7f:
                    2d:d8:29:79:c8:d9:13:8a:b6:6f:71:67:bf:9f:89:ed:
                    95:3a:6a:55:18:b3:09:5b:fa:86:ec:d8:cc:5b:17:05:
                    1e:5e:25:ec:86:e6:ab:fe:c4:b8:f4:cd:1e:00:43:0c:
                    ce:d0:fc:d0:e2:dc:15:dd:59:03:8d:5b:75:54:6b:4f:
                    a9:6b:7f:bf:17:ec:5e:f4:cd:7b:a0:a3:be:3a:fc:8b:
                    6d:b8:26:dc:57:ab:56:9e:22:2a:f9:4d:db:1a:02:c3:
                    87:ec:ea:28:b1:49:9d:46:14:85:0e:8a:18:3c:5d:bc:
                    5f:22:dd:24:82:c6:85:43:1a:fb:a6:6f:b7:3b:7b:f5:
                    43:63:a3:48:00:cb:ae:0f:19:eb:1e:e8:f5:6a:6b:81:
                    47:5e:2a:cc:27:d1:71:dc:60:3a:78:7b:d0:c5:3b:5a:
                    d1:2b:80:a4:73:7a:91:e6:58:c2:5e:2e:fb:ed:0c:c8:
                    0f:df:d6:d7:07:82:11:ce:86:27:ec:56:d1:63:0e:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:d4:39:69:9e:a6:54:0a:a4:c2:b4:e3:d9:6b:c0:81:
        51:b9:50:44:76:67:43:c4:79:2c:6d:93:cc:d3:44:4f:
        be:49:c9:38:3e:b7:bf:f7:c2:f0:36:3f:dd:40:c2:f0:
        e0:01:1f:82:6d:16:a1:f6:d9:6e:46:40:bd:75:f7:fc:
        8a:b1:c7:20:ab:7f:28:5f:9c:78:a0:18:ed:43:45:ce:
        de:17:bc:bd:6f:bf:da:c7:ae:28:37:b7:06:99:ff:de:
        08:10:a4:e3:2a:5d:43:0a:99:84:92:55:2e:27:7f:61:
        58:d3:54:36:15:1e:ed:5b:d3:02:45:96:c8:44:55:91:
        9b:d7:ce:07:17:8a:36:ca:3e:7a:38:9c:ab:73:fc:55:
        bf:72:6d:0a:79:33:38:26:16:87:5e:35:fc:77:a3:a0:
        8a:04:a5:35:d3:36:86:ff:e8:47:8f:17:6a:8f:a9:61:
        35:88:d3:9d:0f:6e:47:2e:dd:05:95:a1:b8:73:d9:db:
        cd:92:56:6e:0e:5c:bc:8e:4e:87:22:65:fc:6a:7c:38:
        90:4a:5d:6d:7a:c5:12:e6:6b:38:0f:2d:77:5b:eb:a5:
        b9:d7:c7:92:87:0e:ed:61:42:74:4f:b3:cc:f3:a1:49:
        51:f2:ca:55:93:7c:6f:46:d5:c8:0d:d7:b2:c4:ce:e6
    Fingerprint (SHA-256):
        1F:2B:F4:FE:64:F9:E4:01:31:68:54:EA:19:65:57:F6:E4:3D:2C:2A:F0:F0:DC:CF:44:EE:0D:4D:AF:C0:92:E0
    Fingerprint (SHA1):
        B6:B3:9E:79:83:CA:B1:DE:39:5F:39:63:30:E0:6C:C7:C6:C5:BC:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7517: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154027 (0x1dee432b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:90:f3:e3:1e:4f:9d:50:83:63:f0:33:7b:70:fe:4e:
                    3d:fa:1f:7b:26:75:a1:26:7c:a8:99:cf:e2:78:db:ad:
                    8d:5c:bc:09:3c:b3:ef:c6:e5:27:2b:1c:c7:73:b9:82:
                    4f:9d:b7:bb:48:22:01:16:b8:38:bc:43:67:88:e0:1b:
                    e2:37:3c:5c:4a:0d:7a:cd:73:04:37:e6:57:32:ad:4e:
                    32:a9:c4:6e:71:70:fb:35:1a:11:01:42:93:9f:8d:d9:
                    48:3c:78:fb:6f:17:aa:b5:61:37:bc:83:ab:a8:e4:9e:
                    5c:f1:09:5d:c5:64:55:68:5e:73:ab:b3:9c:33:90:14:
                    41:21:a9:93:30:aa:33:f4:65:76:d1:cb:2c:3e:79:ab:
                    f3:df:6a:6e:21:d5:fd:c6:a1:45:66:b6:c8:13:b1:1c:
                    15:b7:a4:46:ed:03:05:9d:31:c2:29:12:e4:a8:4b:43:
                    9a:6e:df:2b:88:ca:a7:53:6f:61:17:36:1b:4e:92:50:
                    74:03:01:54:60:9a:0b:78:a1:af:23:44:c1:d1:b3:ad:
                    38:c6:2f:a3:e7:21:1e:b1:9f:83:49:48:52:b7:7e:48:
                    27:f5:43:7b:96:49:f3:75:46:89:b9:14:77:ac:2a:e4:
                    cc:fc:69:fe:5c:6a:5a:a5:70:4d:a3:ae:56:98:ac:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:20:89:c5:18:eb:0b:c9:09:51:0a:f1:63:73:0c:db:
        22:8e:da:da:d7:ec:54:94:e4:d4:77:55:50:4d:f3:bb:
        2e:cb:72:48:7c:2b:1a:d1:a5:e8:44:57:a8:00:fb:96:
        d9:b9:b6:56:37:98:10:86:21:b8:f1:6d:fe:8a:2d:d3:
        86:65:d4:21:f6:74:23:59:83:b0:d4:e9:71:bb:1b:97:
        99:3c:49:18:24:2c:ce:6f:0f:b2:cd:91:0f:4b:12:91:
        c7:31:fc:ce:40:49:41:42:6f:49:74:68:6b:de:50:a3:
        24:dc:96:69:6c:74:f3:fd:49:d7:0f:6b:24:00:e6:63:
        a9:0c:a1:da:dd:08:6e:d9:4b:8a:6f:7b:a3:cc:5e:86:
        a0:96:2f:7c:85:13:5b:76:78:bf:1d:34:32:d1:95:7e:
        ee:46:a6:00:7a:af:be:e7:17:bd:d7:82:50:88:8a:bc:
        72:cd:bc:8b:80:db:35:5e:e5:af:04:25:9f:fb:04:e7:
        bb:75:72:60:c0:ee:1b:27:3f:f1:b8:45:b1:75:2d:90:
        8c:eb:b6:9c:c3:21:04:65:94:d7:1d:5b:44:ce:9c:b4:
        ea:74:9a:ba:b9:a6:43:48:45:c2:bc:83:d5:d4:c2:c9:
        b2:da:4d:a6:1d:ad:82:11:65:a4:81:74:29:a7:fa:e7
    Fingerprint (SHA-256):
        63:39:B9:62:3B:AC:04:42:10:24:DE:F7:7E:D8:D9:FC:9E:E5:3B:B3:7E:3E:65:39:86:4C:E2:AD:C6:B2:A0:55
    Fingerprint (SHA1):
        64:93:2D:41:24:C8:50:6E:46:EC:72:9D:64:A9:2F:95:EF:26:EF:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7518: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7519: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154027 (0x1dee432b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:90:f3:e3:1e:4f:9d:50:83:63:f0:33:7b:70:fe:4e:
                    3d:fa:1f:7b:26:75:a1:26:7c:a8:99:cf:e2:78:db:ad:
                    8d:5c:bc:09:3c:b3:ef:c6:e5:27:2b:1c:c7:73:b9:82:
                    4f:9d:b7:bb:48:22:01:16:b8:38:bc:43:67:88:e0:1b:
                    e2:37:3c:5c:4a:0d:7a:cd:73:04:37:e6:57:32:ad:4e:
                    32:a9:c4:6e:71:70:fb:35:1a:11:01:42:93:9f:8d:d9:
                    48:3c:78:fb:6f:17:aa:b5:61:37:bc:83:ab:a8:e4:9e:
                    5c:f1:09:5d:c5:64:55:68:5e:73:ab:b3:9c:33:90:14:
                    41:21:a9:93:30:aa:33:f4:65:76:d1:cb:2c:3e:79:ab:
                    f3:df:6a:6e:21:d5:fd:c6:a1:45:66:b6:c8:13:b1:1c:
                    15:b7:a4:46:ed:03:05:9d:31:c2:29:12:e4:a8:4b:43:
                    9a:6e:df:2b:88:ca:a7:53:6f:61:17:36:1b:4e:92:50:
                    74:03:01:54:60:9a:0b:78:a1:af:23:44:c1:d1:b3:ad:
                    38:c6:2f:a3:e7:21:1e:b1:9f:83:49:48:52:b7:7e:48:
                    27:f5:43:7b:96:49:f3:75:46:89:b9:14:77:ac:2a:e4:
                    cc:fc:69:fe:5c:6a:5a:a5:70:4d:a3:ae:56:98:ac:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:20:89:c5:18:eb:0b:c9:09:51:0a:f1:63:73:0c:db:
        22:8e:da:da:d7:ec:54:94:e4:d4:77:55:50:4d:f3:bb:
        2e:cb:72:48:7c:2b:1a:d1:a5:e8:44:57:a8:00:fb:96:
        d9:b9:b6:56:37:98:10:86:21:b8:f1:6d:fe:8a:2d:d3:
        86:65:d4:21:f6:74:23:59:83:b0:d4:e9:71:bb:1b:97:
        99:3c:49:18:24:2c:ce:6f:0f:b2:cd:91:0f:4b:12:91:
        c7:31:fc:ce:40:49:41:42:6f:49:74:68:6b:de:50:a3:
        24:dc:96:69:6c:74:f3:fd:49:d7:0f:6b:24:00:e6:63:
        a9:0c:a1:da:dd:08:6e:d9:4b:8a:6f:7b:a3:cc:5e:86:
        a0:96:2f:7c:85:13:5b:76:78:bf:1d:34:32:d1:95:7e:
        ee:46:a6:00:7a:af:be:e7:17:bd:d7:82:50:88:8a:bc:
        72:cd:bc:8b:80:db:35:5e:e5:af:04:25:9f:fb:04:e7:
        bb:75:72:60:c0:ee:1b:27:3f:f1:b8:45:b1:75:2d:90:
        8c:eb:b6:9c:c3:21:04:65:94:d7:1d:5b:44:ce:9c:b4:
        ea:74:9a:ba:b9:a6:43:48:45:c2:bc:83:d5:d4:c2:c9:
        b2:da:4d:a6:1d:ad:82:11:65:a4:81:74:29:a7:fa:e7
    Fingerprint (SHA-256):
        63:39:B9:62:3B:AC:04:42:10:24:DE:F7:7E:D8:D9:FC:9E:E5:3B:B3:7E:3E:65:39:86:4C:E2:AD:C6:B2:A0:55
    Fingerprint (SHA1):
        64:93:2D:41:24:C8:50:6E:46:EC:72:9D:64:A9:2F:95:EF:26:EF:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7520: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154029 (0x1dee432d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:23 2017
            Not After : Mon May 02 15:41:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ad:63:21:51:6f:94:14:74:6d:c0:b0:0c:28:71:d4:
                    d3:d5:c2:51:2b:f1:e8:2f:12:ea:57:96:2c:0c:22:5c:
                    fe:ee:5e:d5:07:d5:d6:ea:12:14:24:a7:6c:c4:d2:fd:
                    bb:25:2f:f8:5d:f3:3b:72:7c:d2:63:5e:ed:fb:40:7f:
                    2d:d8:29:79:c8:d9:13:8a:b6:6f:71:67:bf:9f:89:ed:
                    95:3a:6a:55:18:b3:09:5b:fa:86:ec:d8:cc:5b:17:05:
                    1e:5e:25:ec:86:e6:ab:fe:c4:b8:f4:cd:1e:00:43:0c:
                    ce:d0:fc:d0:e2:dc:15:dd:59:03:8d:5b:75:54:6b:4f:
                    a9:6b:7f:bf:17:ec:5e:f4:cd:7b:a0:a3:be:3a:fc:8b:
                    6d:b8:26:dc:57:ab:56:9e:22:2a:f9:4d:db:1a:02:c3:
                    87:ec:ea:28:b1:49:9d:46:14:85:0e:8a:18:3c:5d:bc:
                    5f:22:dd:24:82:c6:85:43:1a:fb:a6:6f:b7:3b:7b:f5:
                    43:63:a3:48:00:cb:ae:0f:19:eb:1e:e8:f5:6a:6b:81:
                    47:5e:2a:cc:27:d1:71:dc:60:3a:78:7b:d0:c5:3b:5a:
                    d1:2b:80:a4:73:7a:91:e6:58:c2:5e:2e:fb:ed:0c:c8:
                    0f:df:d6:d7:07:82:11:ce:86:27:ec:56:d1:63:0e:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:d4:39:69:9e:a6:54:0a:a4:c2:b4:e3:d9:6b:c0:81:
        51:b9:50:44:76:67:43:c4:79:2c:6d:93:cc:d3:44:4f:
        be:49:c9:38:3e:b7:bf:f7:c2:f0:36:3f:dd:40:c2:f0:
        e0:01:1f:82:6d:16:a1:f6:d9:6e:46:40:bd:75:f7:fc:
        8a:b1:c7:20:ab:7f:28:5f:9c:78:a0:18:ed:43:45:ce:
        de:17:bc:bd:6f:bf:da:c7:ae:28:37:b7:06:99:ff:de:
        08:10:a4:e3:2a:5d:43:0a:99:84:92:55:2e:27:7f:61:
        58:d3:54:36:15:1e:ed:5b:d3:02:45:96:c8:44:55:91:
        9b:d7:ce:07:17:8a:36:ca:3e:7a:38:9c:ab:73:fc:55:
        bf:72:6d:0a:79:33:38:26:16:87:5e:35:fc:77:a3:a0:
        8a:04:a5:35:d3:36:86:ff:e8:47:8f:17:6a:8f:a9:61:
        35:88:d3:9d:0f:6e:47:2e:dd:05:95:a1:b8:73:d9:db:
        cd:92:56:6e:0e:5c:bc:8e:4e:87:22:65:fc:6a:7c:38:
        90:4a:5d:6d:7a:c5:12:e6:6b:38:0f:2d:77:5b:eb:a5:
        b9:d7:c7:92:87:0e:ed:61:42:74:4f:b3:cc:f3:a1:49:
        51:f2:ca:55:93:7c:6f:46:d5:c8:0d:d7:b2:c4:ce:e6
    Fingerprint (SHA-256):
        1F:2B:F4:FE:64:F9:E4:01:31:68:54:EA:19:65:57:F6:E4:3D:2C:2A:F0:F0:DC:CF:44:EE:0D:4D:AF:C0:92:E0
    Fingerprint (SHA1):
        B6:B3:9E:79:83:CA:B1:DE:39:5F:39:63:30:E0:6C:C7:C6:C5:BC:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7521: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7522: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7523: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7524: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154027 (0x1dee432b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:90:f3:e3:1e:4f:9d:50:83:63:f0:33:7b:70:fe:4e:
                    3d:fa:1f:7b:26:75:a1:26:7c:a8:99:cf:e2:78:db:ad:
                    8d:5c:bc:09:3c:b3:ef:c6:e5:27:2b:1c:c7:73:b9:82:
                    4f:9d:b7:bb:48:22:01:16:b8:38:bc:43:67:88:e0:1b:
                    e2:37:3c:5c:4a:0d:7a:cd:73:04:37:e6:57:32:ad:4e:
                    32:a9:c4:6e:71:70:fb:35:1a:11:01:42:93:9f:8d:d9:
                    48:3c:78:fb:6f:17:aa:b5:61:37:bc:83:ab:a8:e4:9e:
                    5c:f1:09:5d:c5:64:55:68:5e:73:ab:b3:9c:33:90:14:
                    41:21:a9:93:30:aa:33:f4:65:76:d1:cb:2c:3e:79:ab:
                    f3:df:6a:6e:21:d5:fd:c6:a1:45:66:b6:c8:13:b1:1c:
                    15:b7:a4:46:ed:03:05:9d:31:c2:29:12:e4:a8:4b:43:
                    9a:6e:df:2b:88:ca:a7:53:6f:61:17:36:1b:4e:92:50:
                    74:03:01:54:60:9a:0b:78:a1:af:23:44:c1:d1:b3:ad:
                    38:c6:2f:a3:e7:21:1e:b1:9f:83:49:48:52:b7:7e:48:
                    27:f5:43:7b:96:49:f3:75:46:89:b9:14:77:ac:2a:e4:
                    cc:fc:69:fe:5c:6a:5a:a5:70:4d:a3:ae:56:98:ac:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:20:89:c5:18:eb:0b:c9:09:51:0a:f1:63:73:0c:db:
        22:8e:da:da:d7:ec:54:94:e4:d4:77:55:50:4d:f3:bb:
        2e:cb:72:48:7c:2b:1a:d1:a5:e8:44:57:a8:00:fb:96:
        d9:b9:b6:56:37:98:10:86:21:b8:f1:6d:fe:8a:2d:d3:
        86:65:d4:21:f6:74:23:59:83:b0:d4:e9:71:bb:1b:97:
        99:3c:49:18:24:2c:ce:6f:0f:b2:cd:91:0f:4b:12:91:
        c7:31:fc:ce:40:49:41:42:6f:49:74:68:6b:de:50:a3:
        24:dc:96:69:6c:74:f3:fd:49:d7:0f:6b:24:00:e6:63:
        a9:0c:a1:da:dd:08:6e:d9:4b:8a:6f:7b:a3:cc:5e:86:
        a0:96:2f:7c:85:13:5b:76:78:bf:1d:34:32:d1:95:7e:
        ee:46:a6:00:7a:af:be:e7:17:bd:d7:82:50:88:8a:bc:
        72:cd:bc:8b:80:db:35:5e:e5:af:04:25:9f:fb:04:e7:
        bb:75:72:60:c0:ee:1b:27:3f:f1:b8:45:b1:75:2d:90:
        8c:eb:b6:9c:c3:21:04:65:94:d7:1d:5b:44:ce:9c:b4:
        ea:74:9a:ba:b9:a6:43:48:45:c2:bc:83:d5:d4:c2:c9:
        b2:da:4d:a6:1d:ad:82:11:65:a4:81:74:29:a7:fa:e7
    Fingerprint (SHA-256):
        63:39:B9:62:3B:AC:04:42:10:24:DE:F7:7E:D8:D9:FC:9E:E5:3B:B3:7E:3E:65:39:86:4C:E2:AD:C6:B2:A0:55
    Fingerprint (SHA1):
        64:93:2D:41:24:C8:50:6E:46:EC:72:9D:64:A9:2F:95:EF:26:EF:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7525: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154031 (0x1dee432f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:41:25 2017
            Not After : Mon May 02 15:41:25 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:dc:21:f8:b0:59:fb:1c:7c:0e:55:98:4d:6e:66:56:
                    df:40:8f:8c:4f:3b:6b:65:f9:a5:65:1c:c4:5f:64:7e:
                    c2:cd:52:4d:e1:e4:f8:ec:c4:ec:6f:f6:3c:30:8b:a3:
                    6d:46:a3:3c:0c:02:ad:3b:ef:b9:24:c4:b0:16:9b:01:
                    41:28:6d:48:16:be:3d:e2:45:eb:dd:51:2c:93:7e:fe:
                    c7:dc:50:a0:20:59:0d:90:cd:71:2b:db:9b:b3:1c:88:
                    fe:e7:d2:89:18:b4:61:68:72:b1:09:63:63:c5:30:9c:
                    08:17:41:73:d1:51:f5:28:57:ae:a9:97:5a:c4:78:7f:
                    79:19:84:4c:79:21:20:25:69:53:77:fb:92:ba:d0:a5:
                    ab:56:34:c3:a8:65:bc:66:ca:ca:2f:56:7b:60:7d:72:
                    de:b7:d4:81:19:c8:86:1e:37:d1:37:8d:f4:43:90:53:
                    e3:4a:94:fb:c5:6a:42:c5:24:d3:c2:65:22:c8:74:31:
                    7a:17:fd:12:5c:af:7c:4d:0a:a7:25:72:35:3c:b1:72:
                    a1:7e:32:93:b0:c9:6d:02:f0:32:c0:84:5d:83:e1:ba:
                    44:3e:49:1c:f0:9a:43:fd:74:5e:07:aa:3d:e0:5c:d2:
                    64:a5:1c:e7:c7:50:1f:3b:5a:7d:ed:65:36:0e:e7:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:97:87:24:82:bd:98:63:9d:19:27:ac:19:dd:71:a6:
        7d:c8:89:5c:8a:0b:07:b7:c9:4d:4c:e8:e8:03:d2:38:
        00:55:a8:e8:ea:58:9d:53:82:e5:37:27:34:0e:6d:fb:
        72:8c:cc:2c:a3:1c:4f:77:6b:eb:47:91:28:a3:6f:4e:
        1b:76:ad:39:0c:0f:2b:4d:82:65:82:fe:b2:0d:87:75:
        32:40:6d:ee:3b:97:9d:48:b5:30:f4:e8:80:58:25:b5:
        f4:f0:0a:db:31:8a:8d:dc:97:42:53:37:43:49:ad:ef:
        99:b6:39:0e:e0:ac:c1:79:99:b3:71:5b:bd:4a:59:fb:
        08:35:e9:db:63:63:94:b4:b1:91:52:ec:93:5f:46:ab:
        6b:f4:6e:0f:93:b3:f5:ea:09:ee:40:ab:bf:c1:e7:ab:
        f6:d6:b4:96:e2:71:13:87:c7:13:fd:63:04:be:32:56:
        47:54:9b:05:e0:90:0e:94:2d:24:f9:2a:8b:26:fb:4f:
        44:72:26:e7:ea:0f:4b:d9:f3:a9:58:b3:9b:15:7e:31:
        53:20:5a:b1:e9:d1:ae:08:ee:04:72:e3:23:bc:f9:54:
        40:5b:7e:b1:e4:54:91:94:cc:99:95:ca:5c:e3:ef:0e:
        b8:54:59:ea:8f:68:03:26:b6:7a:fe:91:f1:06:c6:15
    Fingerprint (SHA-256):
        71:0C:8D:28:85:4E:6A:E9:D5:FE:50:86:DD:3B:7A:40:CB:6E:44:BA:06:FE:F8:70:91:0E:33:04:9B:D4:FB:97
    Fingerprint (SHA1):
        9C:60:6F:41:6F:84:36:A2:87:B2:B9:CE:7C:74:D1:F2:34:01:7C:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154027 (0x1dee432b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:90:f3:e3:1e:4f:9d:50:83:63:f0:33:7b:70:fe:4e:
                    3d:fa:1f:7b:26:75:a1:26:7c:a8:99:cf:e2:78:db:ad:
                    8d:5c:bc:09:3c:b3:ef:c6:e5:27:2b:1c:c7:73:b9:82:
                    4f:9d:b7:bb:48:22:01:16:b8:38:bc:43:67:88:e0:1b:
                    e2:37:3c:5c:4a:0d:7a:cd:73:04:37:e6:57:32:ad:4e:
                    32:a9:c4:6e:71:70:fb:35:1a:11:01:42:93:9f:8d:d9:
                    48:3c:78:fb:6f:17:aa:b5:61:37:bc:83:ab:a8:e4:9e:
                    5c:f1:09:5d:c5:64:55:68:5e:73:ab:b3:9c:33:90:14:
                    41:21:a9:93:30:aa:33:f4:65:76:d1:cb:2c:3e:79:ab:
                    f3:df:6a:6e:21:d5:fd:c6:a1:45:66:b6:c8:13:b1:1c:
                    15:b7:a4:46:ed:03:05:9d:31:c2:29:12:e4:a8:4b:43:
                    9a:6e:df:2b:88:ca:a7:53:6f:61:17:36:1b:4e:92:50:
                    74:03:01:54:60:9a:0b:78:a1:af:23:44:c1:d1:b3:ad:
                    38:c6:2f:a3:e7:21:1e:b1:9f:83:49:48:52:b7:7e:48:
                    27:f5:43:7b:96:49:f3:75:46:89:b9:14:77:ac:2a:e4:
                    cc:fc:69:fe:5c:6a:5a:a5:70:4d:a3:ae:56:98:ac:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:20:89:c5:18:eb:0b:c9:09:51:0a:f1:63:73:0c:db:
        22:8e:da:da:d7:ec:54:94:e4:d4:77:55:50:4d:f3:bb:
        2e:cb:72:48:7c:2b:1a:d1:a5:e8:44:57:a8:00:fb:96:
        d9:b9:b6:56:37:98:10:86:21:b8:f1:6d:fe:8a:2d:d3:
        86:65:d4:21:f6:74:23:59:83:b0:d4:e9:71:bb:1b:97:
        99:3c:49:18:24:2c:ce:6f:0f:b2:cd:91:0f:4b:12:91:
        c7:31:fc:ce:40:49:41:42:6f:49:74:68:6b:de:50:a3:
        24:dc:96:69:6c:74:f3:fd:49:d7:0f:6b:24:00:e6:63:
        a9:0c:a1:da:dd:08:6e:d9:4b:8a:6f:7b:a3:cc:5e:86:
        a0:96:2f:7c:85:13:5b:76:78:bf:1d:34:32:d1:95:7e:
        ee:46:a6:00:7a:af:be:e7:17:bd:d7:82:50:88:8a:bc:
        72:cd:bc:8b:80:db:35:5e:e5:af:04:25:9f:fb:04:e7:
        bb:75:72:60:c0:ee:1b:27:3f:f1:b8:45:b1:75:2d:90:
        8c:eb:b6:9c:c3:21:04:65:94:d7:1d:5b:44:ce:9c:b4:
        ea:74:9a:ba:b9:a6:43:48:45:c2:bc:83:d5:d4:c2:c9:
        b2:da:4d:a6:1d:ad:82:11:65:a4:81:74:29:a7:fa:e7
    Fingerprint (SHA-256):
        63:39:B9:62:3B:AC:04:42:10:24:DE:F7:7E:D8:D9:FC:9E:E5:3B:B3:7E:3E:65:39:86:4C:E2:AD:C6:B2:A0:55
    Fingerprint (SHA1):
        64:93:2D:41:24:C8:50:6E:46:EC:72:9D:64:A9:2F:95:EF:26:EF:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7527: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7528: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7529: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7530: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7531: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7532: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154032 (0x1dee4330)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:41:25 2017
            Not After : Mon May 02 15:41:25 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:e8:8c:d4:c4:cc:16:54:35:38:6f:a7:bc:45:64:c6:
                    39:88:f7:8b:42:ab:88:eb:0e:8d:fb:73:e3:4c:f7:b8:
                    f8:78:35:93:4e:d6:1b:02:c5:0d:5b:29:2c:4c:52:bf:
                    12:08:1f:9d:ad:fb:7b:0d:0c:6b:e3:f7:bd:e4:a0:17:
                    31:3c:ec:7c:3d:d5:b0:ad:cd:d7:cd:fe:ef:06:ba:5d:
                    8f:f8:87:1d:96:35:d8:4a:b0:2d:11:0e:28:5f:43:2a:
                    08:8e:ca:70:c3:53:1d:57:20:0c:a4:47:8b:8d:30:54:
                    2f:65:44:2f:87:66:7a:aa:da:10:06:6a:92:66:e6:40:
                    93:bd:3d:06:8c:fd:47:d5:15:40:61:4a:3c:9c:f9:67:
                    99:00:c0:c2:43:1c:cb:39:7d:f9:59:98:21:66:4b:f6:
                    d8:04:d3:ff:47:5a:04:a9:0b:2b:00:da:85:e8:33:47:
                    b3:aa:2b:b0:92:58:c1:4b:60:04:84:fa:79:a6:0f:3e:
                    1a:82:9a:9c:31:52:5f:64:78:89:03:ea:9c:50:16:93:
                    be:c0:84:5e:9f:59:7e:46:fd:f5:41:6a:36:22:46:fd:
                    2b:5e:a5:58:8a:ba:14:4b:17:63:3d:0f:52:ba:5f:fb:
                    f4:3f:2e:c5:65:1d:d3:c1:cc:96:4d:dc:2f:3c:2f:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:70:32:19:55:d2:71:4b:59:9c:bc:f5:02:67:a2:4c:
        e3:2e:47:52:b0:5a:60:63:7f:d1:62:58:40:df:fe:62:
        5d:a9:40:50:67:7c:51:11:ac:60:50:53:a8:ff:aa:d7:
        85:5e:82:3d:47:48:c5:19:89:d2:99:26:5f:5d:2e:63:
        6e:95:b7:8f:27:a6:69:27:47:b9:f1:49:4c:9c:92:b5:
        00:66:75:71:00:22:db:ea:e8:0c:41:ad:7e:a9:67:8f:
        c7:98:7a:50:54:0e:78:83:b9:9f:9b:21:12:05:ba:04:
        d2:8d:b4:ff:4d:a8:b0:0d:e4:01:d4:30:af:9b:92:53:
        f3:50:04:0d:7d:e0:d7:e7:72:34:cb:a8:68:bb:23:7e:
        c1:a0:62:9b:a7:eb:88:61:be:b5:6a:44:cf:3f:10:32:
        f4:d9:76:d3:a3:f0:36:d5:82:25:4e:aa:f1:ef:30:1d:
        71:e2:24:3c:78:ca:28:12:a4:20:d3:63:25:ff:53:f9:
        22:0c:b1:44:0b:a6:a9:0c:5d:7f:27:5d:97:54:5e:d7:
        0e:e1:29:f8:3c:42:25:f8:fe:4e:c8:ad:5c:b8:84:9f:
        85:38:eb:1b:e8:78:98:53:d3:49:c7:34:de:f1:e7:f3:
        53:74:2d:84:5f:8f:52:b3:96:6c:6a:dd:66:f2:e9:a8
    Fingerprint (SHA-256):
        0C:72:63:1B:55:78:FC:25:FB:35:CD:53:C0:9F:7A:6F:0D:EE:71:B9:BB:D1:40:D1:53:95:74:FF:31:D4:F3:4C
    Fingerprint (SHA1):
        6C:17:B4:EB:07:53:6F:48:35:F7:36:7A:B5:89:E5:F0:CF:89:0C:1D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7533: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7534: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7535: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7536: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7537: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7538: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7539: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7540: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7541: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7542: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7543: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7544: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7545: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7546: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7547: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7548: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7549: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7550: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7551: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7552: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7553: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7554: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7555: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7556: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 13019 at Tue May  2 15:41:27 UTC 2017
kill -USR1 13019
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 13019 killed at Tue May  2 15:41:27 UTC 2017
TIMESTAMP chains END: Tue May  2 15:41:27 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:41:27 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:41:27 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #7557: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:41:28 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:41:28 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7558: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7559: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7560: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7561: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #7562: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #7563: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:41:28 UTC 2017
TIMESTAMP ec END: Tue May  2 15:41:28 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:41:28 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (5 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (6 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #7564: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #7565: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #7566: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #7567: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #7568: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #7569: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #7570: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #7571: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #7572: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #7573: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #7574: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #7575: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #7576: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #7577: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #7578: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #7579: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #7580: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #7581: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #7582: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:41:28 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:41:28 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #7583: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7584: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7585: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7586: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7587: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7588: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7589: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7591: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7593: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7594: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7595: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7596: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7597: create certificate: sign  - PASSED
ssl_gtest.sh: #7598: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:41:29 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Tue May  2 15:41:30 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #7599: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #7600: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #7601: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #7602: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #7603: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7604: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #7605: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #7606: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #7607: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #7608: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #7609: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #7610: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #7611: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7612: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #7613: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #7614: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #7615: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #7616: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Tue May  2 15:41:35 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:41:35 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7617: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a9:ff:a9:1d:c6:b7:49:f6:0e:27:b9:03:95:62:10:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7618: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7619: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7620: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7621: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c0:4f:51:a6:fd:e7:78:b3:25:75:20:59:6e:eb:4f:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:53 2017
            Not After : Mon May 02 15:15:53 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:e3:82:9c:cb:07:86:a5:22:37:13:1a:01:b8:8a:
                    ff:2b:9f:47:91:c4:24:7a:40:d5:bf:8f:d5:0d:7f:88:
                    50:c6:bf:e6:61:6f:f9:3a:38:c1:2a:71:a7:62:d8:30:
                    de:1e:87:76:2e:19:96:8a:3d:38:11:0e:e5:67:56:97:
                    84:bb:b4:01:3e:b7:3b:2a:78:e7:ad:0b:60:c4:38:e9:
                    71:2a:5f:9a:93:b2:7d:c6:02:e5:63:ac:90:be:fc:6f:
                    ac:57:d4:03:a1:c7:25:28:50:ce:c9:bf:eb:44:c1:46:
                    e2:f7:56:be:b7:94:60:2f:68:74:68:d1:be:b7:34:c9:
                    a0:16:5d:86:b7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:4f:6e:d4:30:88:e3:03:65:60:34:86:
        47:14:89:13:3a:52:a9:29:e0:b9:f8:16:16:80:26:18:
        87:fd:9d:c2:31:45:fb:17:55:e4:d4:1a:3a:b6:80:c8:
        c3:33:ed:6f:85:0f:00:d8:fd:8e:e0:4f:61:9b:33:bf:
        c7:46:41:c3:ac:75:02:42:00:b1:c9:8b:b5:c5:9a:b8:
        49:5a:0e:c0:16:e1:80:48:b6:42:a9:f8:e6:b5:49:28:
        f5:5a:eb:ea:c2:de:63:71:a7:1b:53:be:62:18:ef:35:
        92:21:9c:a7:44:27:12:31:37:37:83:80:2f:28:67:92:
        2c:bb:b3:87:93:f5:9b:2b:7e:b3
    Fingerprint (SHA-256):
        1D:14:02:5B:AD:FC:2D:ED:EA:0A:4E:3F:E0:BF:98:54:CE:49:90:59:5B:13:04:03:F3:AC:8D:53:6B:65:98:10
    Fingerprint (SHA1):
        59:D3:80:3A:18:83:7C:A8:45:F0:05:79:42:FD:92:86:4D:0B:90:C7
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:98:98:b5:d1:bc:af:85:ed:37:f4:73:95:97:22:1b:
                    14:17:28:ac:58:19:68:3d:39:4c:b2:f4:7f:6d:09:94:
                    7b:91:d6:89:2d:6d:d4:c6:e1:92:7f:e1:dc:1e:4a:f7:
                    94:0d:28:23:e1:d5:d1:d7:58:83:63:7c:7b:04:12:e6:
                    84:88:7b:af:35:d3:0d:b7:ff:0b:53:6c:de:d9:14:0d:
                    cd:05:eb:20:aa:4d:c0:c8:81:c5:ff:3a:15:e7:ac:16:
                    f3
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:1a:9e:1d:b1:b6:68:1e:d7:bb:ad:a3:
        8b:f1:be:7f:15:6f:53:83:65:af:ca:bd:ac:a8:e6:94:
        61:d7:2e:6a:ef:de:3b:e9:5d:29:17:bf:31:be:7c:0a:
        8d:1a:ea:33:4b:9d:be:11:3e:01:05:67:02:1d:f7:db:
        89:f7:24:8b:30:fe:02:42:00:d5:8d:84:ed:ca:0d:be:
        bc:14:c3:79:39:fa:69:97:c3:fc:51:1a:ff:8a:12:5c:
        c8:14:8e:71:79:e7:6a:68:de:3a:81:8a:a9:71:48:4f:
        ab:0a:6d:0c:5c:1e:31:03:e1:83:ae:87:49:ce:e6:d2:
        d7:2a:28:f4:f5:2b:a0:4e:70:a1
    Fingerprint (SHA-256):
        5E:C5:DE:C0:82:ED:B3:D6:89:56:63:A6:83:5B:C2:32:DD:42:02:A9:8D:A8:91:84:F1:07:29:28:A2:F7:ED:14
    Fingerprint (SHA1):
        0D:8E:4C:7F:3D:CD:D3:F5:C7:C7:74:AB:CC:7A:FE:B0:EE:BA:02:2C
    Friendly Name: Alice-ec
tools.sh: #7622: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7623: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                fb:6f:df:06:dd:d4:00:d9:cd:6e:56:d2:56:76:45:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7624: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7625: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7626: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c5:76:a2:9b:53:a2:7c:a3:12:80:75:13:44:17:d8:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7627: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7628: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7629: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                14:fb:13:08:38:c3:75:93:ea:ca:15:ee:26:27:63:85
            Iteration Count: 2000 (0x7d0)
tools.sh: #7630: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7631: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7632: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                95:90:8a:0a:f9:65:2b:d0:06:cd:84:36:e4:e7:c5:1a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7633: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7634: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7635: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                78:89:2c:5b:b3:4f:f5:4a:06:ee:20:a7:15:dc:81:a3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7636: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7637: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7638: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:06:ca:a7:7c:f2:91:ed:35:da:94:10:94:c6:de:b2
            Iteration Count: 2000 (0x7d0)
tools.sh: #7639: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7640: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7641: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:86:c1:06:10:69:b2:0c:c9:a7:78:f6:70:59:b1:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:71:9a:2a:69:1e:7d:ee:86:1f:cc:47:f0:9a:7b:
                    9f:1e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7642: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7643: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7644: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ae:f4:75:17:53:7e:5e:21:a1:33:43:31:bf:60:5a:e3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:41:77:e0:c9:7f:98:c3:4c:43:9f:50:93:f8:e9:
                    75:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7645: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7646: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7647: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:e1:fe:17:59:01:21:6f:e3:f7:f7:ee:03:ce:5d:7a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:97:84:b8:11:64:2e:a4:23:08:1c:d7:d2:38:fd:
                    55:ce
tools.sh: #7648: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7649: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7650: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        98:5f:c7:c1:f5:97:e8:78:42:d4:76:db:6b:99:ad:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e7:28:ac:80:77:c1:16:5d:9b:1a:81:75:03:42:
                    8c:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7651: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7652: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7653: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        45:e7:b9:ae:00:e3:8d:06:e7:99:4e:13:e2:7a:ba:ab
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c7:2f:c3:eb:d5:53:80:14:73:e0:cd:ba:55:76:
                    24:92
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7654: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7655: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7656: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        01:7f:44:36:a6:e8:1b:07:98:64:7e:70:34:89:df:3b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:9b:39:50:c1:06:f6:77:35:85:d6:77:a7:fa:b3:
                    30:3b
tools.sh: #7657: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7658: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7659: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        39:fe:92:0f:77:3b:53:32:81:7d:50:8f:f0:32:a0:49
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:88:a1:7b:80:85:06:75:cb:6a:e3:ba:bb:98:9e:
                    63:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7660: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7661: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7662: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bc:2b:27:15:2f:b6:71:ac:74:7c:9a:fa:95:24:86:51
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:aa:09:8a:eb:2f:a5:c6:ec:70:b3:95:30:b6:28:
                    67:ca
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7663: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7664: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7665: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:e5:50:02:e2:e2:8d:6b:9e:61:85:45:34:05:cd:48
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a6:45:26:1f:4e:b9:f2:7a:b8:b6:16:46:fb:b3:
                    fa:18
tools.sh: #7666: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7667: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7668: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:a7:97:3e:74:2d:f8:da:43:eb:91:f7:d5:01:06:d9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:a7:0c:dd:3d:1c:60:f1:46:8b:ad:56:f3:9e:35:
                    31:c3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7669: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7670: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7671: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        57:4d:fa:11:b7:c0:e3:82:7f:15:ad:11:e9:5d:98:3d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:1f:af:e3:92:27:f7:a0:7f:eb:54:84:b3:c7:45:
                    6c:78
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7672: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7673: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7674: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        11:bb:0e:0f:d5:cf:9b:8c:73:a0:6e:bb:b9:e4:49:03
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:37:96:d2:c4:5c:32:f8:e8:cc:23:05:4c:66:48:
                    02:a4
tools.sh: #7675: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7676: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7677: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        22:21:8c:88:76:da:36:e4:d3:3f:31:86:e4:aa:d0:e6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:03:88:55:46:48:51:90:a7:2d:8f:7f:62:7a:3d:
                    3c:a3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7678: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7679: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7680: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:6f:5b:82:99:39:12:52:6b:d4:26:fe:2e:62:9a:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:67:86:ba:a3:e2:72:33:0b:f8:d8:6e:2e:b2:4c:
                    ca:95
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7681: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7682: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7683: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        84:85:73:23:f6:25:68:9f:cd:7d:b0:fa:13:c4:d8:1a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:67:d4:93:4b:3f:14:29:fc:ce:76:01:71:9e:df:
                    cc:11
tools.sh: #7684: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7685: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7686: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        62:ea:fc:0e:a5:96:a7:1d:28:27:2c:d4:f0:a6:ea:6b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c5:e2:62:59:8f:ab:7d:78:4d:70:58:fb:f4:dd:
                    e4:b0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7687: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7688: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7689: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e8:fd:b3:69:00:a7:32:a9:28:0a:f0:52:66:ab:13:71
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:b6:5f:03:ca:35:3c:7b:53:ce:16:7a:59:ed:41:
                    57:6c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7690: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7691: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7692: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:1e:48:15:00:85:ef:c7:82:9b:7a:20:61:d8:b1:23
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ed:0a:9a:86:7c:5b:58:23:24:af:07:55:e4:63:
                    55:06
tools.sh: #7693: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7694: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7695: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                17:b5:16:02:20:75:72:77:02:b5:7d:e7:8b:b7:86:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7696: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7697: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7698: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                76:c5:bd:4d:dc:7e:31:80:4f:a8:e3:27:9a:c3:49:c2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7699: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7700: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7701: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                55:16:31:8e:ce:d1:1b:d1:be:11:57:4f:b5:03:5f:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7702: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7703: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7704: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                09:55:56:1f:ab:9c:93:93:38:48:16:e4:d7:a4:e8:82
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7705: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7706: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7707: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c7:11:99:27:c2:c9:81:b1:21:63:30:f2:31:f1:f3:cf
            Iteration Count: 2000 (0x7d0)
tools.sh: #7708: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7709: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7710: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ef:e2:95:98:fe:ba:bb:b6:2e:69:59:8d:91:76:d7:29
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7711: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7712: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7713: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                74:5a:5d:fa:c8:99:e6:bb:99:67:52:38:df:84:af:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7714: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7715: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7716: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                cd:28:df:9c:b8:d5:ca:cf:49:f6:c1:9c:9a:f4:27:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7717: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7718: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7719: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e9:df:5b:79:9e:66:70:90:73:71:e2:59:56:6c:50:77
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7720: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7721: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7722: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                06:dd:e7:e1:98:53:bb:a9:a2:11:d0:a1:47:fd:ab:95
            Iteration Count: 2000 (0x7d0)
tools.sh: #7723: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7724: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7725: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                6c:a1:28:37:56:40:29:e9:2c:f9:3e:dc:28:bd:ee:68
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7726: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7727: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7728: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                8f:2d:8d:28:52:51:83:e7:8d:64:44:22:74:b5:fe:83
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7729: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7730: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7731: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                45:a8:73:3a:c1:a8:5f:d8:97:85:74:55:71:5d:b7:6a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7732: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7733: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7734: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f4:58:4f:fa:12:cb:5a:f9:52:be:51:44:aa:af:f5:9d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7735: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7736: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7737: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                7e:6e:44:8d:b5:69:51:12:2f:10:3a:49:0a:55:20:a8
            Iteration Count: 2000 (0x7d0)
tools.sh: #7738: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7739: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7740: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                77:1d:45:14:93:7b:0f:8d:1c:a0:d4:19:ad:64:7a:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7741: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7742: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7743: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b1:5f:54:41:cd:b7:69:70:5f:42:fd:b4:d6:ce:46:57
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7744: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7745: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7746: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                28:5a:b4:b9:d1:f4:f2:f4:f3:68:58:14:58:20:cb:95
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7747: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7748: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7749: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                dd:ff:28:98:d3:1f:3c:0c:25:8b:04:0e:4a:fd:af:32
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7750: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7751: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7752: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:05:c0:f1:51:a1:04:f4:1c:f4:31:08:e8:9a:2c:61
            Iteration Count: 2000 (0x7d0)
tools.sh: #7753: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7754: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7755: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0f:ea:c8:9a:b3:8a:87:cf:7b:4f:1b:f4:2e:5b:3d:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7756: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7757: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7758: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:f3:7b:c7:f3:11:ea:cd:3b:02:59:d5:e3:c5:1f:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7759: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7760: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7761: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                48:fc:79:b1:19:3f:be:6c:9c:c9:be:3f:ef:a3:4e:27
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7762: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7763: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7764: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0e:18:a1:1b:a5:d5:5d:4f:34:97:17:3b:44:68:cc:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7765: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7766: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7767: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                df:cd:17:ff:97:dd:d9:af:41:33:c6:27:11:9b:fe:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7768: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7769: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7770: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4b:cc:12:79:34:7f:16:cc:a0:ee:93:58:aa:72:4b:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7771: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7772: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7773: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cf:10:44:66:50:43:0d:eb:ab:da:e0:fc:dc:51:8c:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7774: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7775: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7776: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                56:9c:04:b7:26:be:67:95:48:25:99:8b:d1:76:a6:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7777: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7778: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7779: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                eb:df:4e:d5:a4:c3:a0:9a:f6:3d:ac:ca:c2:8a:f4:5a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7780: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7781: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7782: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                78:6f:9a:25:2b:1a:3a:42:56:fe:53:59:82:4f:7a:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:48 2017
            Not After : Mon May 02 15:15:48 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:62:4a:7d:14:a5:aa:77:7c:f0:85:29:08:4e:43:6f:
                    96:04:dd:05:cb:36:bf:3f:2a:f4:4d:43:e4:af:68:96:
                    e4:81:5a:e2:50:9c:5a:2a:41:7c:64:5b:54:26:8b:74:
                    58:98:e2:e5:10:7c:c0:42:e5:11:ec:6e:57:cb:e8:b3:
                    31:dd:cc:04:b0:db:a3:33:66:ec:ee:e2:8b:1c:87:46:
                    b6:1b:55:34:dc:44:75:c1:1c:2e:02:30:a7:26:04:a2:
                    a2:ac:2e:02:42:75:e8:9d:c4:03:e2:79:1b:ae:b0:87:
                    e6:6f:38:68:d7:f4:d7:7d:8d:4a:26:fb:31:6a:97:58:
                    01:4f:53:c3:3b:a5:b9:b2:87:f8:40:6e:83:4d:a6:ad:
                    41:65:79:b7:5b:79:2f:1f:e1:02:85:f4:45:53:e0:07:
                    60:29:95:5f:d6:5b:e5:5e:57:63:74:0d:88:9b:45:9b:
                    21:e5:24:1c:0e:4b:7c:1f:6d:d6:d4:64:3b:87:96:18:
                    48:29:46:14:66:71:4a:d7:9d:09:4e:59:cf:92:ce:ad:
                    ad:b7:fe:42:00:1b:07:2c:d6:2b:b7:45:71:ef:9e:9b:
                    86:ad:e2:99:0b:8b:8f:92:ac:63:93:f9:32:45:36:92:
                    9f:52:ab:3c:fd:ce:f0:7c:3e:26:c1:2e:4e:35:87:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b7:78:62:3a:86:cd:4d:d1:b8:f4:18:d2:e9:1e:3c:
        d1:27:e6:75:e7:d4:67:23:1a:ae:c9:1a:58:22:41:02:
        0b:b4:78:24:a4:e6:c0:de:25:d3:25:20:90:58:bd:e4:
        51:2e:bf:8a:56:90:fb:1d:5c:8a:a2:5e:67:9e:b3:97:
        d7:af:05:21:3e:67:19:05:55:20:70:d4:ab:5c:ad:1c:
        4d:f3:c7:63:7e:7c:53:2a:36:43:03:5d:89:a1:a0:ed:
        2d:30:cf:03:bb:4b:a2:14:88:32:db:66:e3:13:c0:53:
        a0:e4:43:da:21:8f:10:4f:8f:3f:eb:61:97:d6:d2:00:
        55:c7:9b:69:b8:d5:31:66:28:d0:8e:16:e5:79:6a:9e:
        d3:cc:cd:70:ea:21:fc:2e:c1:87:45:7b:9a:0d:4e:8b:
        6b:03:5f:af:b9:69:ca:5b:ee:69:82:36:fa:1a:01:ca:
        78:1b:63:4b:ee:43:69:98:f5:63:9a:85:82:8b:bd:8c:
        89:36:6a:2e:9c:76:ca:96:1e:5a:32:be:87:7b:34:f3:
        30:dd:88:ec:ec:e8:7a:fb:7a:a4:35:ac:c0:ee:14:15:
        a0:33:24:82:ac:94:97:4f:e9:f9:99:01:e1:8d:f7:07:
        1b:17:6b:4d:a7:33:1f:22:69:13:4d:ff:99:55:e0:47
    Fingerprint (SHA-256):
        C4:22:D5:3F:E0:41:5F:BC:85:7C:46:3C:A7:59:2D:E5:61:56:5D:65:67:6B:2C:C6:68:6A:BD:4C:EC:AA:E5:44
    Fingerprint (SHA1):
        86:F2:08:95:66:8B:79:9D:B3:95:DD:C6:FB:78:06:7B:03:2E:13:CD
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:15:59 2017
            Not After : Mon May 02 15:15:59 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d0:e3:f9:71:62:c1:c0:de:38:cb:0a:aa:81:c5:49:
                    08:cd:25:7b:b6:e1:1a:0a:c6:ba:64:cb:4e:b4:2f:7c:
                    b6:bd:51:ec:6f:d7:ce:5c:9e:a3:12:fd:0d:53:13:e0:
                    17:d9:49:26:89:f7:e8:4b:28:17:89:ea:66:52:06:24:
                    c4:bd:b6:79:2b:5c:8f:a5:d7:fd:66:d4:b9:3f:65:8d:
                    7c:0e:f4:a1:bd:e3:0f:4a:31:5b:9d:50:15:31:4e:89:
                    4b:45:bf:03:07:da:2a:99:83:9c:61:fb:f0:bd:59:17:
                    b2:ff:4d:40:c5:1d:47:fb:35:47:0f:4e:d0:d0:33:f5:
                    33:39:0a:28:d5:33:c0:bf:b8:e1:11:a7:58:65:4e:87:
                    68:f7:c0:01:57:85:e6:d5:4d:87:16:91:c6:e2:2b:95:
                    cc:ce:aa:a9:dd:89:24:f6:1a:95:2f:ca:12:ce:32:ce:
                    31:f1:86:b0:e4:86:94:35:88:81:e0:14:33:72:31:f6:
                    5c:db:e8:58:e9:ef:75:cc:2d:9a:88:51:f6:8b:42:a8:
                    b0:9a:b9:18:e5:b1:a4:35:51:84:97:0a:4a:41:48:2a:
                    40:1e:96:1e:14:62:d4:61:03:2d:e3:3f:ab:20:54:0e:
                    f6:4e:85:c1:6c:52:6a:2c:fd:8f:84:81:2a:80:69:2d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:94:e3:49:8b:29:d1:61:6e:80:e7:2a:1f:61:36:dc:
        d4:46:65:a2:ac:ae:ee:68:ab:5d:51:e0:2e:75:de:87:
        10:1d:4e:f1:d5:58:c3:87:bc:0d:bd:e0:e6:d7:9c:78:
        04:3c:5a:c5:2d:dd:50:c5:a6:c4:cc:9d:64:34:4f:16:
        b3:00:8c:65:5e:b2:e0:4d:bc:5d:a3:58:28:c7:ef:42:
        38:3f:b6:5b:b0:ea:92:0f:01:fb:70:49:f5:dc:e3:8c:
        72:39:73:01:ab:94:e3:07:4b:85:9d:39:30:ce:36:79:
        67:3c:5e:ff:80:08:8a:19:48:64:16:f4:c8:f0:26:cb:
        e9:a5:49:fc:ab:b5:a1:65:b6:17:49:90:52:8a:54:f9:
        b3:0d:be:f7:4a:fb:9a:ca:45:8c:1c:10:26:53:ba:5a:
        1c:c2:ec:16:a8:e6:19:c2:38:50:58:07:8e:5e:b2:a4:
        ff:65:f6:27:1c:b7:9d:2b:47:d8:fd:45:29:f1:39:11:
        95:84:b5:eb:0c:14:b7:5f:aa:ce:f5:46:c8:ce:e4:5b:
        69:d1:98:0d:6c:60:9b:99:04:9f:19:14:03:37:c5:78:
        40:a8:df:53:8b:df:54:a1:1f:8e:c4:9b:3d:09:86:ea:
        85:1a:26:34:d1:ab:97:98:d7:5a:51:9e:3c:80:bc:3a
    Fingerprint (SHA-256):
        BC:88:78:3F:79:BA:E6:B0:D8:D4:71:BB:AA:0C:8F:68:C5:1A:7E:43:FD:AD:BF:B8:20:F2:77:8A:5A:89:E3:CC
    Fingerprint (SHA1):
        53:3E:2B:78:41:A4:36:37:D2:80:CE:1F:59:4E:43:13:06:6E:85:AE
    Friendly Name: Alice
tools.sh: #7783: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7784: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #7785: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7786: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #7787: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #7788: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #7789: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7790: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #7791: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #7792: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7793: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:41:49 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:41:49 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #7794: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7795: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   FIPS_PUB_140_Test_Certificate
fips.sh: #7796: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #7797: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #7798: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #7799: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #7800: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7801: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #7802: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7803: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #7804: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7805: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7806: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   FIPS_PUB_140_Test_Certificate
fips.sh: #7807: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #7808: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7809: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7810: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7811: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      05e19b3e7f6c3dc170bfef5a6cfa20ca0fd6171b   FIPS_PUB_140_Test_Certificate
fips.sh: #7812: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #7813: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #7814: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x000447d4 (280532): from 21 (33) to 01 (1)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #7815: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:42:04 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:42:04 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #7816: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #7817: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:42:04 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:42:04 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #7818: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7819: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #7820: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #7821: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #7822: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #7823: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7824: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #7825: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #7826: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #7827: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #7828: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7829: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #7830: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #7831: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #7832: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #7833: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7834: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #7835: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #7836: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #7837: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #7838: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7839: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #7840: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #7841: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #7842: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #7843: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7844: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #7845: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #7846: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #7847: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #7848: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7849: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #7850: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #7851: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #7852: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #7853: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7854: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #7855: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #7856: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #7857: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #7858: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #7859: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #7860: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #7861: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #7862: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #7863: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #7864: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #7865: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #7866: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #7867: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #7868: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #7869: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #7870: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #7871: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #7872: Decode Encrypted-Data . - PASSED
smime.sh: #7873: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #7874: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #7875: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #7876: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #7877: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #7878: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:42:09 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:42:09 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31814 >/dev/null 2>/dev/null
selfserv_9122 with PID 31814 found at Tue May  2 15:42:09 UTC 2017
selfserv_9122 with PID 31814 started at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7879: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31814 at Tue May  2 15:42:09 UTC 2017
kill -USR1 31814
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31814 killed at Tue May  2 15:42:09 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31870 >/dev/null 2>/dev/null
selfserv_9122 with PID 31870 found at Tue May  2 15:42:09 UTC 2017
selfserv_9122 with PID 31870 started at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7880: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31870 at Tue May  2 15:42:09 UTC 2017
kill -USR1 31870
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31870 killed at Tue May  2 15:42:09 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31926 >/dev/null 2>/dev/null
selfserv_9122 with PID 31926 found at Tue May  2 15:42:09 UTC 2017
selfserv_9122 with PID 31926 started at Tue May  2 15:42:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7881: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31926 at Tue May  2 15:42:10 UTC 2017
kill -USR1 31926
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31926 killed at Tue May  2 15:42:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31994 >/dev/null 2>/dev/null
selfserv_9122 with PID 31994 found at Tue May  2 15:42:10 UTC 2017
selfserv_9122 with PID 31994 started at Tue May  2 15:42:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7882: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 31994 at Tue May  2 15:42:11 UTC 2017
kill -USR1 31994
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31994 killed at Tue May  2 15:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32050 >/dev/null 2>/dev/null
selfserv_9122 with PID 32050 found at Tue May  2 15:42:11 UTC 2017
selfserv_9122 with PID 32050 started at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7883: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32050 at Tue May  2 15:42:11 UTC 2017
kill -USR1 32050
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32050 killed at Tue May  2 15:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32106 >/dev/null 2>/dev/null
selfserv_9122 with PID 32106 found at Tue May  2 15:42:11 UTC 2017
selfserv_9122 with PID 32106 started at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7884: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32106 at Tue May  2 15:42:11 UTC 2017
kill -USR1 32106
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32106 killed at Tue May  2 15:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32174 >/dev/null 2>/dev/null
selfserv_9122 with PID 32174 found at Tue May  2 15:42:11 UTC 2017
selfserv_9122 with PID 32174 started at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7885: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32174 at Tue May  2 15:42:11 UTC 2017
kill -USR1 32174
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32174 killed at Tue May  2 15:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32230 >/dev/null 2>/dev/null
selfserv_9122 with PID 32230 found at Tue May  2 15:42:11 UTC 2017
selfserv_9122 with PID 32230 started at Tue May  2 15:42:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7886: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 32230 at Tue May  2 15:42:12 UTC 2017
kill -USR1 32230
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32230 killed at Tue May  2 15:42:12 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32286 >/dev/null 2>/dev/null
selfserv_9122 with PID 32286 found at Tue May  2 15:42:12 UTC 2017
selfserv_9122 with PID 32286 started at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7887: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32286 at Tue May  2 15:42:12 UTC 2017
kill -USR1 32286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32286 killed at Tue May  2 15:42:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32354 >/dev/null 2>/dev/null
selfserv_9122 with PID 32354 found at Tue May  2 15:42:12 UTC 2017
selfserv_9122 with PID 32354 started at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7888: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32354 at Tue May  2 15:42:12 UTC 2017
kill -USR1 32354
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32354 killed at Tue May  2 15:42:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32410 >/dev/null 2>/dev/null
selfserv_9122 with PID 32410 found at Tue May  2 15:42:12 UTC 2017
selfserv_9122 with PID 32410 started at Tue May  2 15:42:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7889: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32410 at Tue May  2 15:42:12 UTC 2017
kill -USR1 32410
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32410 killed at Tue May  2 15:42:13 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32466 >/dev/null 2>/dev/null
selfserv_9122 with PID 32466 found at Tue May  2 15:42:13 UTC 2017
selfserv_9122 with PID 32466 started at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7890: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32466 at Tue May  2 15:42:13 UTC 2017
kill -USR1 32466
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32466 killed at Tue May  2 15:42:13 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32534 >/dev/null 2>/dev/null
selfserv_9122 with PID 32534 found at Tue May  2 15:42:13 UTC 2017
selfserv_9122 with PID 32534 started at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7891: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32534 at Tue May  2 15:42:13 UTC 2017
kill -USR1 32534
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32534 killed at Tue May  2 15:42:13 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32590 >/dev/null 2>/dev/null
selfserv_9122 with PID 32590 found at Tue May  2 15:42:13 UTC 2017
selfserv_9122 with PID 32590 started at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7892: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32590 at Tue May  2 15:42:13 UTC 2017
kill -USR1 32590
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32590 killed at Tue May  2 15:42:13 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32646 >/dev/null 2>/dev/null
selfserv_9122 with PID 32646 found at Tue May  2 15:42:13 UTC 2017
selfserv_9122 with PID 32646 started at Tue May  2 15:42:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7893: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32646 at Tue May  2 15:42:14 UTC 2017
kill -USR1 32646
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32646 killed at Tue May  2 15:42:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32714 >/dev/null 2>/dev/null
selfserv_9122 with PID 32714 found at Tue May  2 15:42:14 UTC 2017
selfserv_9122 with PID 32714 started at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7894: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 32714 at Tue May  2 15:42:14 UTC 2017
kill -USR1 32714
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 32714 killed at Tue May  2 15:42:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 303 >/dev/null 2>/dev/null
selfserv_9122 with PID 303 found at Tue May  2 15:42:14 UTC 2017
selfserv_9122 with PID 303 started at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7895: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 303 at Tue May  2 15:42:14 UTC 2017
kill -USR1 303
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 303 killed at Tue May  2 15:42:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 361 >/dev/null 2>/dev/null
selfserv_9122 with PID 361 found at Tue May  2 15:42:14 UTC 2017
selfserv_9122 with PID 361 started at Tue May  2 15:42:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7896: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 361 at Tue May  2 15:42:15 UTC 2017
kill -USR1 361
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 361 killed at Tue May  2 15:42:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 433 >/dev/null 2>/dev/null
selfserv_9122 with PID 433 found at Tue May  2 15:42:15 UTC 2017
selfserv_9122 with PID 433 started at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7897: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 433 at Tue May  2 15:42:15 UTC 2017
kill -USR1 433
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 433 killed at Tue May  2 15:42:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 490 >/dev/null 2>/dev/null
selfserv_9122 with PID 490 found at Tue May  2 15:42:15 UTC 2017
selfserv_9122 with PID 490 started at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7898: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 490 at Tue May  2 15:42:15 UTC 2017
kill -USR1 490
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 490 killed at Tue May  2 15:42:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 551 >/dev/null 2>/dev/null
selfserv_9122 with PID 551 found at Tue May  2 15:42:15 UTC 2017
selfserv_9122 with PID 551 started at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7899: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 551 at Tue May  2 15:42:15 UTC 2017
kill -USR1 551
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 551 killed at Tue May  2 15:42:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 635 >/dev/null 2>/dev/null
selfserv_9122 with PID 635 found at Tue May  2 15:42:15 UTC 2017
selfserv_9122 with PID 635 started at Tue May  2 15:42:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7900: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 635 at Tue May  2 15:42:16 UTC 2017
kill -USR1 635
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 635 killed at Tue May  2 15:42:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 694 >/dev/null 2>/dev/null
selfserv_9122 with PID 694 found at Tue May  2 15:42:16 UTC 2017
selfserv_9122 with PID 694 started at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7901: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 694 at Tue May  2 15:42:16 UTC 2017
kill -USR1 694
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 694 killed at Tue May  2 15:42:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 752 >/dev/null 2>/dev/null
selfserv_9122 with PID 752 found at Tue May  2 15:42:16 UTC 2017
selfserv_9122 with PID 752 started at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7902: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 752 at Tue May  2 15:42:16 UTC 2017
kill -USR1 752
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 752 killed at Tue May  2 15:42:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 876 >/dev/null 2>/dev/null
selfserv_9122 with PID 876 found at Tue May  2 15:42:16 UTC 2017
selfserv_9122 with PID 876 started at Tue May  2 15:42:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7903: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 876 at Tue May  2 15:42:16 UTC 2017
kill -USR1 876
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 876 killed at Tue May  2 15:42:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 932 >/dev/null 2>/dev/null
selfserv_9122 with PID 932 found at Tue May  2 15:42:17 UTC 2017
selfserv_9122 with PID 932 started at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7904: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 932 at Tue May  2 15:42:17 UTC 2017
kill -USR1 932
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 932 killed at Tue May  2 15:42:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 991 >/dev/null 2>/dev/null
selfserv_9122 with PID 991 found at Tue May  2 15:42:17 UTC 2017
selfserv_9122 with PID 991 started at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7905: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 991 at Tue May  2 15:42:17 UTC 2017
kill -USR1 991
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 991 killed at Tue May  2 15:42:17 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1060 >/dev/null 2>/dev/null
selfserv_9122 with PID 1060 found at Tue May  2 15:42:17 UTC 2017
selfserv_9122 with PID 1060 started at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7906: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1060 at Tue May  2 15:42:17 UTC 2017
kill -USR1 1060
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1060 killed at Tue May  2 15:42:17 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1116 >/dev/null 2>/dev/null
selfserv_9122 with PID 1116 found at Tue May  2 15:42:17 UTC 2017
selfserv_9122 with PID 1116 started at Tue May  2 15:42:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7907: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1116 at Tue May  2 15:42:18 UTC 2017
kill -USR1 1116
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1116 killed at Tue May  2 15:42:18 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1172 >/dev/null 2>/dev/null
selfserv_9122 with PID 1172 found at Tue May  2 15:42:18 UTC 2017
selfserv_9122 with PID 1172 started at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7908: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1172 at Tue May  2 15:42:18 UTC 2017
kill -USR1 1172
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1172 killed at Tue May  2 15:42:18 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9122 with PID 1240 found at Tue May  2 15:42:18 UTC 2017
selfserv_9122 with PID 1240 started at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7909: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1240 at Tue May  2 15:42:18 UTC 2017
kill -USR1 1240
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1240 killed at Tue May  2 15:42:18 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1296 >/dev/null 2>/dev/null
selfserv_9122 with PID 1296 found at Tue May  2 15:42:18 UTC 2017
selfserv_9122 with PID 1296 started at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7910: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1296 at Tue May  2 15:42:18 UTC 2017
kill -USR1 1296
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1296 killed at Tue May  2 15:42:18 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1352 >/dev/null 2>/dev/null
selfserv_9122 with PID 1352 found at Tue May  2 15:42:18 UTC 2017
selfserv_9122 with PID 1352 started at Tue May  2 15:42:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7911: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1352 at Tue May  2 15:42:19 UTC 2017
kill -USR1 1352
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1352 killed at Tue May  2 15:42:19 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1420 >/dev/null 2>/dev/null
selfserv_9122 with PID 1420 found at Tue May  2 15:42:19 UTC 2017
selfserv_9122 with PID 1420 started at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7912: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1420 at Tue May  2 15:42:19 UTC 2017
kill -USR1 1420
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1420 killed at Tue May  2 15:42:19 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1480 >/dev/null 2>/dev/null
selfserv_9122 with PID 1480 found at Tue May  2 15:42:19 UTC 2017
selfserv_9122 with PID 1480 started at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7913: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1480 at Tue May  2 15:42:19 UTC 2017
kill -USR1 1480
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1480 killed at Tue May  2 15:42:19 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1540 >/dev/null 2>/dev/null
selfserv_9122 with PID 1540 found at Tue May  2 15:42:19 UTC 2017
selfserv_9122 with PID 1540 started at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7914: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 1540 at Tue May  2 15:42:19 UTC 2017
kill -USR1 1540
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1540 killed at Tue May  2 15:42:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1615 >/dev/null 2>/dev/null
selfserv_9122 with PID 1615 found at Tue May  2 15:42:19 UTC 2017
selfserv_9122 with PID 1615 started at Tue May  2 15:42:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7915: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1615 at Tue May  2 15:42:20 UTC 2017
kill -USR1 1615
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1615 killed at Tue May  2 15:42:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1678 >/dev/null 2>/dev/null
selfserv_9122 with PID 1678 found at Tue May  2 15:42:20 UTC 2017
selfserv_9122 with PID 1678 started at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7916: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1678 at Tue May  2 15:42:20 UTC 2017
kill -USR1 1678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1678 killed at Tue May  2 15:42:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1746 >/dev/null 2>/dev/null
selfserv_9122 with PID 1746 found at Tue May  2 15:42:20 UTC 2017
selfserv_9122 with PID 1746 started at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7917: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1746 at Tue May  2 15:42:20 UTC 2017
kill -USR1 1746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1746 killed at Tue May  2 15:42:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1823 >/dev/null 2>/dev/null
selfserv_9122 with PID 1823 found at Tue May  2 15:42:20 UTC 2017
selfserv_9122 with PID 1823 started at Tue May  2 15:42:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7918: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1823 at Tue May  2 15:42:21 UTC 2017
kill -USR1 1823
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1823 killed at Tue May  2 15:42:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1885 >/dev/null 2>/dev/null
selfserv_9122 with PID 1885 found at Tue May  2 15:42:21 UTC 2017
selfserv_9122 with PID 1885 started at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7919: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1885 at Tue May  2 15:42:21 UTC 2017
kill -USR1 1885
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1885 killed at Tue May  2 15:42:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1946 >/dev/null 2>/dev/null
selfserv_9122 with PID 1946 found at Tue May  2 15:42:21 UTC 2017
selfserv_9122 with PID 1946 started at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7920: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 1946 at Tue May  2 15:42:21 UTC 2017
kill -USR1 1946
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 1946 killed at Tue May  2 15:42:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2014 >/dev/null 2>/dev/null
selfserv_9122 with PID 2014 found at Tue May  2 15:42:21 UTC 2017
selfserv_9122 with PID 2014 started at Tue May  2 15:42:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7921: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2014 at Tue May  2 15:42:22 UTC 2017
kill -USR1 2014
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2014 killed at Tue May  2 15:42:22 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2073 >/dev/null 2>/dev/null
selfserv_9122 with PID 2073 found at Tue May  2 15:42:22 UTC 2017
selfserv_9122 with PID 2073 started at Tue May  2 15:42:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7922: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2073 at Tue May  2 15:42:22 UTC 2017
kill -USR1 2073
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2073 killed at Tue May  2 15:42:22 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2137 >/dev/null 2>/dev/null
selfserv_9122 with PID 2137 found at Tue May  2 15:42:22 UTC 2017
selfserv_9122 with PID 2137 started at Tue May  2 15:42:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7923: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2137 at Tue May  2 15:42:23 UTC 2017
kill -USR1 2137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2137 killed at Tue May  2 15:42:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2213 >/dev/null 2>/dev/null
selfserv_9122 with PID 2213 found at Tue May  2 15:42:23 UTC 2017
selfserv_9122 with PID 2213 started at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7924: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2213 at Tue May  2 15:42:23 UTC 2017
kill -USR1 2213
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2213 killed at Tue May  2 15:42:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2271 >/dev/null 2>/dev/null
selfserv_9122 with PID 2271 found at Tue May  2 15:42:23 UTC 2017
selfserv_9122 with PID 2271 started at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7925: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2271 at Tue May  2 15:42:23 UTC 2017
kill -USR1 2271
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2271 killed at Tue May  2 15:42:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2335 >/dev/null 2>/dev/null
selfserv_9122 with PID 2335 found at Tue May  2 15:42:23 UTC 2017
selfserv_9122 with PID 2335 started at Tue May  2 15:42:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7926: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2335 at Tue May  2 15:42:24 UTC 2017
kill -USR1 2335
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2335 killed at Tue May  2 15:42:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2403 >/dev/null 2>/dev/null
selfserv_9122 with PID 2403 found at Tue May  2 15:42:24 UTC 2017
selfserv_9122 with PID 2403 started at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7927: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2403 at Tue May  2 15:42:24 UTC 2017
kill -USR1 2403
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2403 killed at Tue May  2 15:42:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2459 >/dev/null 2>/dev/null
selfserv_9122 with PID 2459 found at Tue May  2 15:42:24 UTC 2017
selfserv_9122 with PID 2459 started at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7928: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2459 at Tue May  2 15:42:24 UTC 2017
kill -USR1 2459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2459 killed at Tue May  2 15:42:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2519 >/dev/null 2>/dev/null
selfserv_9122 with PID 2519 found at Tue May  2 15:42:24 UTC 2017
selfserv_9122 with PID 2519 started at Tue May  2 15:42:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7929: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2519 at Tue May  2 15:42:25 UTC 2017
kill -USR1 2519
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2519 killed at Tue May  2 15:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2593 >/dev/null 2>/dev/null
selfserv_9122 with PID 2593 found at Tue May  2 15:42:25 UTC 2017
selfserv_9122 with PID 2593 started at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7930: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2593 at Tue May  2 15:42:25 UTC 2017
kill -USR1 2593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2593 killed at Tue May  2 15:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2655 >/dev/null 2>/dev/null
selfserv_9122 with PID 2655 found at Tue May  2 15:42:25 UTC 2017
selfserv_9122 with PID 2655 started at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7931: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2655 at Tue May  2 15:42:25 UTC 2017
kill -USR1 2655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2655 killed at Tue May  2 15:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2716 >/dev/null 2>/dev/null
selfserv_9122 with PID 2716 found at Tue May  2 15:42:25 UTC 2017
selfserv_9122 with PID 2716 started at Tue May  2 15:42:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7932: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2716 at Tue May  2 15:42:26 UTC 2017
kill -USR1 2716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2716 killed at Tue May  2 15:42:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2792 >/dev/null 2>/dev/null
selfserv_9122 with PID 2792 found at Tue May  2 15:42:26 UTC 2017
selfserv_9122 with PID 2792 started at Tue May  2 15:42:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7933: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2792 at Tue May  2 15:42:26 UTC 2017
kill -USR1 2792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2792 killed at Tue May  2 15:42:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2939 >/dev/null 2>/dev/null
selfserv_9122 with PID 2939 found at Tue May  2 15:42:26 UTC 2017
selfserv_9122 with PID 2939 started at Tue May  2 15:42:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7934: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2939 at Tue May  2 15:42:27 UTC 2017
kill -USR1 2939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2939 killed at Tue May  2 15:42:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2995 >/dev/null 2>/dev/null
selfserv_9122 with PID 2995 found at Tue May  2 15:42:27 UTC 2017
selfserv_9122 with PID 2995 started at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7935: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 2995 at Tue May  2 15:42:27 UTC 2017
kill -USR1 2995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2995 killed at Tue May  2 15:42:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3063 >/dev/null 2>/dev/null
selfserv_9122 with PID 3063 found at Tue May  2 15:42:27 UTC 2017
selfserv_9122 with PID 3063 started at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7936: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3063 at Tue May  2 15:42:27 UTC 2017
kill -USR1 3063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3063 killed at Tue May  2 15:42:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:27 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3120 >/dev/null 2>/dev/null
selfserv_9122 with PID 3120 found at Tue May  2 15:42:27 UTC 2017
selfserv_9122 with PID 3120 started at Tue May  2 15:42:27 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7937: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3120 at Tue May  2 15:42:28 UTC 2017
kill -USR1 3120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3120 killed at Tue May  2 15:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3184 >/dev/null 2>/dev/null
selfserv_9122 with PID 3184 found at Tue May  2 15:42:28 UTC 2017
selfserv_9122 with PID 3184 started at Tue May  2 15:42:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7938: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3184 at Tue May  2 15:42:28 UTC 2017
kill -USR1 3184
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3184 killed at Tue May  2 15:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3255 >/dev/null 2>/dev/null
selfserv_9122 with PID 3255 found at Tue May  2 15:42:28 UTC 2017
selfserv_9122 with PID 3255 started at Tue May  2 15:42:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7939: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3255 at Tue May  2 15:42:28 UTC 2017
kill -USR1 3255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3255 killed at Tue May  2 15:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3311 >/dev/null 2>/dev/null
selfserv_9122 with PID 3311 found at Tue May  2 15:42:29 UTC 2017
selfserv_9122 with PID 3311 started at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7940: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3311 at Tue May  2 15:42:29 UTC 2017
kill -USR1 3311
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3311 killed at Tue May  2 15:42:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3377 >/dev/null 2>/dev/null
selfserv_9122 with PID 3377 found at Tue May  2 15:42:29 UTC 2017
selfserv_9122 with PID 3377 started at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7941: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3377 at Tue May  2 15:42:29 UTC 2017
kill -USR1 3377
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3377 killed at Tue May  2 15:42:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:29 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3445 >/dev/null 2>/dev/null
selfserv_9122 with PID 3445 found at Tue May  2 15:42:29 UTC 2017
selfserv_9122 with PID 3445 started at Tue May  2 15:42:29 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7942: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3445 at Tue May  2 15:42:30 UTC 2017
kill -USR1 3445
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3445 killed at Tue May  2 15:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3502 >/dev/null 2>/dev/null
selfserv_9122 with PID 3502 found at Tue May  2 15:42:30 UTC 2017
selfserv_9122 with PID 3502 started at Tue May  2 15:42:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7943: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3502 at Tue May  2 15:42:30 UTC 2017
kill -USR1 3502
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3502 killed at Tue May  2 15:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3558 >/dev/null 2>/dev/null
selfserv_9122 with PID 3558 found at Tue May  2 15:42:30 UTC 2017
selfserv_9122 with PID 3558 started at Tue May  2 15:42:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7944: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3558 at Tue May  2 15:42:30 UTC 2017
kill -USR1 3558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3558 killed at Tue May  2 15:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:30 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:30 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3627 >/dev/null 2>/dev/null
selfserv_9122 with PID 3627 found at Tue May  2 15:42:31 UTC 2017
selfserv_9122 with PID 3627 started at Tue May  2 15:42:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7945: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3627 at Tue May  2 15:42:31 UTC 2017
kill -USR1 3627
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3627 killed at Tue May  2 15:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3683 >/dev/null 2>/dev/null
selfserv_9122 with PID 3683 found at Tue May  2 15:42:31 UTC 2017
selfserv_9122 with PID 3683 started at Tue May  2 15:42:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7946: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3683 at Tue May  2 15:42:31 UTC 2017
kill -USR1 3683
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3683 killed at Tue May  2 15:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3739 >/dev/null 2>/dev/null
selfserv_9122 with PID 3739 found at Tue May  2 15:42:31 UTC 2017
selfserv_9122 with PID 3739 started at Tue May  2 15:42:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7947: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3739 at Tue May  2 15:42:32 UTC 2017
kill -USR1 3739
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3739 killed at Tue May  2 15:42:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3809 >/dev/null 2>/dev/null
selfserv_9122 with PID 3809 found at Tue May  2 15:42:32 UTC 2017
selfserv_9122 with PID 3809 started at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7948: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3809 at Tue May  2 15:42:32 UTC 2017
kill -USR1 3809
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3809 killed at Tue May  2 15:42:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3869 >/dev/null 2>/dev/null
selfserv_9122 with PID 3869 found at Tue May  2 15:42:32 UTC 2017
selfserv_9122 with PID 3869 started at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7949: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3869 at Tue May  2 15:42:32 UTC 2017
kill -USR1 3869
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3869 killed at Tue May  2 15:42:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:32 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3927 >/dev/null 2>/dev/null
selfserv_9122 with PID 3927 found at Tue May  2 15:42:32 UTC 2017
selfserv_9122 with PID 3927 started at Tue May  2 15:42:32 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7950: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3927 at Tue May  2 15:42:33 UTC 2017
kill -USR1 3927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3927 killed at Tue May  2 15:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3996 >/dev/null 2>/dev/null
selfserv_9122 with PID 3996 found at Tue May  2 15:42:33 UTC 2017
selfserv_9122 with PID 3996 started at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7951: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 3996 at Tue May  2 15:42:33 UTC 2017
kill -USR1 3996
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3996 killed at Tue May  2 15:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4055 >/dev/null 2>/dev/null
selfserv_9122 with PID 4055 found at Tue May  2 15:42:33 UTC 2017
selfserv_9122 with PID 4055 started at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7952: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4055 at Tue May  2 15:42:33 UTC 2017
kill -USR1 4055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4055 killed at Tue May  2 15:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4117 >/dev/null 2>/dev/null
selfserv_9122 with PID 4117 found at Tue May  2 15:42:33 UTC 2017
selfserv_9122 with PID 4117 started at Tue May  2 15:42:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7953: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4117 at Tue May  2 15:42:34 UTC 2017
kill -USR1 4117
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4117 killed at Tue May  2 15:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4188 >/dev/null 2>/dev/null
selfserv_9122 with PID 4188 found at Tue May  2 15:42:34 UTC 2017
selfserv_9122 with PID 4188 started at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7954: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4188 at Tue May  2 15:42:34 UTC 2017
kill -USR1 4188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4188 killed at Tue May  2 15:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4245 >/dev/null 2>/dev/null
selfserv_9122 with PID 4245 found at Tue May  2 15:42:34 UTC 2017
selfserv_9122 with PID 4245 started at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7955: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4245 at Tue May  2 15:42:34 UTC 2017
kill -USR1 4245
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4245 killed at Tue May  2 15:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4302 >/dev/null 2>/dev/null
selfserv_9122 with PID 4302 found at Tue May  2 15:42:34 UTC 2017
selfserv_9122 with PID 4302 started at Tue May  2 15:42:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7956: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4302 at Tue May  2 15:42:34 UTC 2017
kill -USR1 4302
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4302 killed at Tue May  2 15:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4374 >/dev/null 2>/dev/null
selfserv_9122 with PID 4374 found at Tue May  2 15:42:35 UTC 2017
selfserv_9122 with PID 4374 started at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7957: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4374 at Tue May  2 15:42:35 UTC 2017
kill -USR1 4374
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4374 killed at Tue May  2 15:42:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4431 >/dev/null 2>/dev/null
selfserv_9122 with PID 4431 found at Tue May  2 15:42:35 UTC 2017
selfserv_9122 with PID 4431 started at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7958: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 4431 at Tue May  2 15:42:35 UTC 2017
kill -USR1 4431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4431 killed at Tue May  2 15:42:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4499 >/dev/null 2>/dev/null
selfserv_9122 with PID 4499 found at Tue May  2 15:42:35 UTC 2017
selfserv_9122 with PID 4499 started at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7959: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4499 at Tue May  2 15:42:35 UTC 2017
kill -USR1 4499
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4499 killed at Tue May  2 15:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4572 >/dev/null 2>/dev/null
selfserv_9122 with PID 4572 found at Tue May  2 15:42:35 UTC 2017
selfserv_9122 with PID 4572 started at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7960: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4572 at Tue May  2 15:42:36 UTC 2017
kill -USR1 4572
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4572 killed at Tue May  2 15:42:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:36 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4631 >/dev/null 2>/dev/null
selfserv_9122 with PID 4631 found at Tue May  2 15:42:36 UTC 2017
selfserv_9122 with PID 4631 started at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7961: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4631 at Tue May  2 15:42:36 UTC 2017
kill -USR1 4631
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4631 killed at Tue May  2 15:42:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:42:36 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4691 >/dev/null 2>/dev/null
selfserv_9122 with PID 4691 found at Tue May  2 15:42:36 UTC 2017
selfserv_9122 with PID 4691 started at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7962: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4691 at Tue May  2 15:42:36 UTC 2017
kill -USR1 4691
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4691 killed at Tue May  2 15:42:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:36 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4761 >/dev/null 2>/dev/null
selfserv_9122 with PID 4761 found at Tue May  2 15:42:36 UTC 2017
selfserv_9122 with PID 4761 started at Tue May  2 15:42:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7963: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4761 at Tue May  2 15:42:37 UTC 2017
kill -USR1 4761
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4761 killed at Tue May  2 15:42:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4817 >/dev/null 2>/dev/null
selfserv_9122 with PID 4817 found at Tue May  2 15:42:37 UTC 2017
selfserv_9122 with PID 4817 started at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7964: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4817 at Tue May  2 15:42:37 UTC 2017
kill -USR1 4817
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4817 killed at Tue May  2 15:42:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4879 >/dev/null 2>/dev/null
selfserv_9122 with PID 4879 found at Tue May  2 15:42:37 UTC 2017
selfserv_9122 with PID 4879 started at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7965: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4879 at Tue May  2 15:42:37 UTC 2017
kill -USR1 4879
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4879 killed at Tue May  2 15:42:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4947 >/dev/null 2>/dev/null
selfserv_9122 with PID 4947 found at Tue May  2 15:42:37 UTC 2017
selfserv_9122 with PID 4947 started at Tue May  2 15:42:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7966: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4947 at Tue May  2 15:42:38 UTC 2017
kill -USR1 4947
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4947 killed at Tue May  2 15:42:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5003 >/dev/null 2>/dev/null
selfserv_9122 with PID 5003 found at Tue May  2 15:42:38 UTC 2017
selfserv_9122 with PID 5003 started at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7967: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5003 at Tue May  2 15:42:38 UTC 2017
kill -USR1 5003
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5003 killed at Tue May  2 15:42:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5059 >/dev/null 2>/dev/null
selfserv_9122 with PID 5059 found at Tue May  2 15:42:38 UTC 2017
selfserv_9122 with PID 5059 started at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7968: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 5059 at Tue May  2 15:42:38 UTC 2017
kill -USR1 5059
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5059 killed at Tue May  2 15:42:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:38 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5138 >/dev/null 2>/dev/null
selfserv_9122 with PID 5138 found at Tue May  2 15:42:38 UTC 2017
selfserv_9122 with PID 5138 started at Tue May  2 15:42:38 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7969: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5138 at Tue May  2 15:42:39 UTC 2017
kill -USR1 5138
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5138 killed at Tue May  2 15:42:39 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5205 >/dev/null 2>/dev/null
selfserv_9122 with PID 5205 found at Tue May  2 15:42:39 UTC 2017
selfserv_9122 with PID 5205 started at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7970: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5205 at Tue May  2 15:42:39 UTC 2017
kill -USR1 5205
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5205 killed at Tue May  2 15:42:39 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5261 >/dev/null 2>/dev/null
selfserv_9122 with PID 5261 found at Tue May  2 15:42:39 UTC 2017
selfserv_9122 with PID 5261 started at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7971: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5261 at Tue May  2 15:42:39 UTC 2017
kill -USR1 5261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5261 killed at Tue May  2 15:42:39 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:39 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5329 >/dev/null 2>/dev/null
selfserv_9122 with PID 5329 found at Tue May  2 15:42:39 UTC 2017
selfserv_9122 with PID 5329 started at Tue May  2 15:42:39 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7972: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5329 at Tue May  2 15:42:40 UTC 2017
kill -USR1 5329
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5329 killed at Tue May  2 15:42:40 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:40 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5385 >/dev/null 2>/dev/null
selfserv_9122 with PID 5385 found at Tue May  2 15:42:40 UTC 2017
selfserv_9122 with PID 5385 started at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7973: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5385 at Tue May  2 15:42:40 UTC 2017
kill -USR1 5385
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5385 killed at Tue May  2 15:42:40 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:40 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5441 >/dev/null 2>/dev/null
selfserv_9122 with PID 5441 found at Tue May  2 15:42:40 UTC 2017
selfserv_9122 with PID 5441 started at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7974: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5441 at Tue May  2 15:42:40 UTC 2017
kill -USR1 5441
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5441 killed at Tue May  2 15:42:40 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:40 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5515 >/dev/null 2>/dev/null
selfserv_9122 with PID 5515 found at Tue May  2 15:42:40 UTC 2017
selfserv_9122 with PID 5515 started at Tue May  2 15:42:40 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7975: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5515 at Tue May  2 15:42:41 UTC 2017
kill -USR1 5515
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5515 killed at Tue May  2 15:42:41 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:41 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5571 >/dev/null 2>/dev/null
selfserv_9122 with PID 5571 found at Tue May  2 15:42:41 UTC 2017
selfserv_9122 with PID 5571 started at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7976: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5571 at Tue May  2 15:42:41 UTC 2017
kill -USR1 5571
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5571 killed at Tue May  2 15:42:41 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:41 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5627 >/dev/null 2>/dev/null
selfserv_9122 with PID 5627 found at Tue May  2 15:42:41 UTC 2017
selfserv_9122 with PID 5627 started at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7977: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5627 at Tue May  2 15:42:41 UTC 2017
kill -USR1 5627
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5627 killed at Tue May  2 15:42:41 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:41 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5695 >/dev/null 2>/dev/null
selfserv_9122 with PID 5695 found at Tue May  2 15:42:41 UTC 2017
selfserv_9122 with PID 5695 started at Tue May  2 15:42:41 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7978: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5695 at Tue May  2 15:42:42 UTC 2017
kill -USR1 5695
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5695 killed at Tue May  2 15:42:42 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5751 >/dev/null 2>/dev/null
selfserv_9122 with PID 5751 found at Tue May  2 15:42:42 UTC 2017
selfserv_9122 with PID 5751 started at Tue May  2 15:42:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7979: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5751 at Tue May  2 15:42:42 UTC 2017
kill -USR1 5751
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5751 killed at Tue May  2 15:42:42 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5807 >/dev/null 2>/dev/null
selfserv_9122 with PID 5807 found at Tue May  2 15:42:42 UTC 2017
selfserv_9122 with PID 5807 started at Tue May  2 15:42:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7980: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 5807 at Tue May  2 15:42:42 UTC 2017
kill -USR1 5807
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5807 killed at Tue May  2 15:42:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:42 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:42 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5875 >/dev/null 2>/dev/null
selfserv_9122 with PID 5875 found at Tue May  2 15:42:43 UTC 2017
selfserv_9122 with PID 5875 started at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7981: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5875 at Tue May  2 15:42:43 UTC 2017
kill -USR1 5875
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5875 killed at Tue May  2 15:42:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5931 >/dev/null 2>/dev/null
selfserv_9122 with PID 5931 found at Tue May  2 15:42:43 UTC 2017
selfserv_9122 with PID 5931 started at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7982: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5931 at Tue May  2 15:42:43 UTC 2017
kill -USR1 5931
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5931 killed at Tue May  2 15:42:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5998 >/dev/null 2>/dev/null
selfserv_9122 with PID 5998 found at Tue May  2 15:42:43 UTC 2017
selfserv_9122 with PID 5998 started at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7983: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 5998 at Tue May  2 15:42:43 UTC 2017
kill -USR1 5998
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 5998 killed at Tue May  2 15:42:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6072 >/dev/null 2>/dev/null
selfserv_9122 with PID 6072 found at Tue May  2 15:42:43 UTC 2017
selfserv_9122 with PID 6072 started at Tue May  2 15:42:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7984: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6072 at Tue May  2 15:42:44 UTC 2017
kill -USR1 6072
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6072 killed at Tue May  2 15:42:44 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6128 >/dev/null 2>/dev/null
selfserv_9122 with PID 6128 found at Tue May  2 15:42:44 UTC 2017
selfserv_9122 with PID 6128 started at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7985: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6128 at Tue May  2 15:42:44 UTC 2017
kill -USR1 6128
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6128 killed at Tue May  2 15:42:44 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6184 >/dev/null 2>/dev/null
selfserv_9122 with PID 6184 found at Tue May  2 15:42:44 UTC 2017
selfserv_9122 with PID 6184 started at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7986: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6184 at Tue May  2 15:42:44 UTC 2017
kill -USR1 6184
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6184 killed at Tue May  2 15:42:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6252 >/dev/null 2>/dev/null
selfserv_9122 with PID 6252 found at Tue May  2 15:42:44 UTC 2017
selfserv_9122 with PID 6252 started at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7987: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6252 at Tue May  2 15:42:44 UTC 2017
kill -USR1 6252
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6252 killed at Tue May  2 15:42:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6308 >/dev/null 2>/dev/null
selfserv_9122 with PID 6308 found at Tue May  2 15:42:44 UTC 2017
selfserv_9122 with PID 6308 started at Tue May  2 15:42:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7988: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6308 at Tue May  2 15:42:45 UTC 2017
kill -USR1 6308
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6308 killed at Tue May  2 15:42:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6366 >/dev/null 2>/dev/null
selfserv_9122 with PID 6366 found at Tue May  2 15:42:45 UTC 2017
selfserv_9122 with PID 6366 started at Tue May  2 15:42:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7989: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6366 at Tue May  2 15:42:45 UTC 2017
kill -USR1 6366
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6366 killed at Tue May  2 15:42:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6434 >/dev/null 2>/dev/null
selfserv_9122 with PID 6434 found at Tue May  2 15:42:45 UTC 2017
selfserv_9122 with PID 6434 started at Tue May  2 15:42:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7990: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6434 at Tue May  2 15:42:46 UTC 2017
kill -USR1 6434
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6434 killed at Tue May  2 15:42:46 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6498 >/dev/null 2>/dev/null
selfserv_9122 with PID 6498 found at Tue May  2 15:42:46 UTC 2017
selfserv_9122 with PID 6498 started at Tue May  2 15:42:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7991: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6498 at Tue May  2 15:42:46 UTC 2017
kill -USR1 6498
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6498 killed at Tue May  2 15:42:46 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6560 >/dev/null 2>/dev/null
selfserv_9122 with PID 6560 found at Tue May  2 15:42:46 UTC 2017
selfserv_9122 with PID 6560 started at Tue May  2 15:42:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7992: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 6560 at Tue May  2 15:42:46 UTC 2017
kill -USR1 6560
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6560 killed at Tue May  2 15:42:46 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6628 >/dev/null 2>/dev/null
selfserv_9122 with PID 6628 found at Tue May  2 15:42:47 UTC 2017
selfserv_9122 with PID 6628 started at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7993: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6628 at Tue May  2 15:42:47 UTC 2017
kill -USR1 6628
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6628 killed at Tue May  2 15:42:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6693 >/dev/null 2>/dev/null
selfserv_9122 with PID 6693 found at Tue May  2 15:42:47 UTC 2017
selfserv_9122 with PID 6693 started at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7994: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6693 at Tue May  2 15:42:47 UTC 2017
kill -USR1 6693
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6693 killed at Tue May  2 15:42:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6762 >/dev/null 2>/dev/null
selfserv_9122 with PID 6762 found at Tue May  2 15:42:47 UTC 2017
selfserv_9122 with PID 6762 started at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7995: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6762 at Tue May  2 15:42:47 UTC 2017
kill -USR1 6762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6762 killed at Tue May  2 15:42:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6844 >/dev/null 2>/dev/null
selfserv_9122 with PID 6844 found at Tue May  2 15:42:47 UTC 2017
selfserv_9122 with PID 6844 started at Tue May  2 15:42:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7996: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 6844 at Tue May  2 15:42:48 UTC 2017
kill -USR1 6844
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6844 killed at Tue May  2 15:42:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6902 >/dev/null 2>/dev/null
selfserv_9122 with PID 6902 found at Tue May  2 15:42:48 UTC 2017
selfserv_9122 with PID 6902 started at Tue May  2 15:42:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7997: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 6902 at Tue May  2 15:42:48 UTC 2017
kill -USR1 6902
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6902 killed at Tue May  2 15:42:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6958 >/dev/null 2>/dev/null
selfserv_9122 with PID 6958 found at Tue May  2 15:42:48 UTC 2017
selfserv_9122 with PID 6958 started at Tue May  2 15:42:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7998: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 6958 at Tue May  2 15:42:49 UTC 2017
kill -USR1 6958
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6958 killed at Tue May  2 15:42:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7026 >/dev/null 2>/dev/null
selfserv_9122 with PID 7026 found at Tue May  2 15:42:49 UTC 2017
selfserv_9122 with PID 7026 started at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7999: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7026 at Tue May  2 15:42:49 UTC 2017
kill -USR1 7026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7026 killed at Tue May  2 15:42:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7082 >/dev/null 2>/dev/null
selfserv_9122 with PID 7082 found at Tue May  2 15:42:49 UTC 2017
selfserv_9122 with PID 7082 started at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8000: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7082 at Tue May  2 15:42:49 UTC 2017
kill -USR1 7082
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7082 killed at Tue May  2 15:42:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7138 >/dev/null 2>/dev/null
selfserv_9122 with PID 7138 found at Tue May  2 15:42:49 UTC 2017
selfserv_9122 with PID 7138 started at Tue May  2 15:42:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8001: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7138 at Tue May  2 15:42:50 UTC 2017
kill -USR1 7138
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7138 killed at Tue May  2 15:42:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7206 >/dev/null 2>/dev/null
selfserv_9122 with PID 7206 found at Tue May  2 15:42:50 UTC 2017
selfserv_9122 with PID 7206 started at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8002: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7206 at Tue May  2 15:42:50 UTC 2017
kill -USR1 7206
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7206 killed at Tue May  2 15:42:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7262 >/dev/null 2>/dev/null
selfserv_9122 with PID 7262 found at Tue May  2 15:42:50 UTC 2017
selfserv_9122 with PID 7262 started at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8003: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7262 at Tue May  2 15:42:50 UTC 2017
kill -USR1 7262
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7262 killed at Tue May  2 15:42:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7318 >/dev/null 2>/dev/null
selfserv_9122 with PID 7318 found at Tue May  2 15:42:50 UTC 2017
selfserv_9122 with PID 7318 started at Tue May  2 15:42:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8004: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7318 at Tue May  2 15:42:51 UTC 2017
kill -USR1 7318
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7318 killed at Tue May  2 15:42:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7386 >/dev/null 2>/dev/null
selfserv_9122 with PID 7386 found at Tue May  2 15:42:51 UTC 2017
selfserv_9122 with PID 7386 started at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8005: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7386 at Tue May  2 15:42:51 UTC 2017
kill -USR1 7386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7386 killed at Tue May  2 15:42:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7442 >/dev/null 2>/dev/null
selfserv_9122 with PID 7442 found at Tue May  2 15:42:51 UTC 2017
selfserv_9122 with PID 7442 started at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8006: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7442 at Tue May  2 15:42:51 UTC 2017
kill -USR1 7442
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7442 killed at Tue May  2 15:42:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7498 >/dev/null 2>/dev/null
selfserv_9122 with PID 7498 found at Tue May  2 15:42:51 UTC 2017
selfserv_9122 with PID 7498 started at Tue May  2 15:42:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8007: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7498 at Tue May  2 15:42:52 UTC 2017
kill -USR1 7498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7498 killed at Tue May  2 15:42:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7566 >/dev/null 2>/dev/null
selfserv_9122 with PID 7566 found at Tue May  2 15:42:52 UTC 2017
selfserv_9122 with PID 7566 started at Tue May  2 15:42:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8008: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7566 at Tue May  2 15:42:52 UTC 2017
kill -USR1 7566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7566 killed at Tue May  2 15:42:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7622 >/dev/null 2>/dev/null
selfserv_9122 with PID 7622 found at Tue May  2 15:42:52 UTC 2017
selfserv_9122 with PID 7622 started at Tue May  2 15:42:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8009: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7622 at Tue May  2 15:42:53 UTC 2017
kill -USR1 7622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7622 killed at Tue May  2 15:42:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7681 >/dev/null 2>/dev/null
selfserv_9122 with PID 7681 found at Tue May  2 15:42:53 UTC 2017
selfserv_9122 with PID 7681 started at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8010: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7681 at Tue May  2 15:42:53 UTC 2017
kill -USR1 7681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7681 killed at Tue May  2 15:42:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7749 >/dev/null 2>/dev/null
selfserv_9122 with PID 7749 found at Tue May  2 15:42:53 UTC 2017
selfserv_9122 with PID 7749 started at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8011: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7749 at Tue May  2 15:42:53 UTC 2017
kill -USR1 7749
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7749 killed at Tue May  2 15:42:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7805 >/dev/null 2>/dev/null
selfserv_9122 with PID 7805 found at Tue May  2 15:42:53 UTC 2017
selfserv_9122 with PID 7805 started at Tue May  2 15:42:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8012: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7805 at Tue May  2 15:42:54 UTC 2017
kill -USR1 7805
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7805 killed at Tue May  2 15:42:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7861 >/dev/null 2>/dev/null
selfserv_9122 with PID 7861 found at Tue May  2 15:42:54 UTC 2017
selfserv_9122 with PID 7861 started at Tue May  2 15:42:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8013: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7861 at Tue May  2 15:42:54 UTC 2017
kill -USR1 7861
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7861 killed at Tue May  2 15:42:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7929 >/dev/null 2>/dev/null
selfserv_9122 with PID 7929 found at Tue May  2 15:42:54 UTC 2017
selfserv_9122 with PID 7929 started at Tue May  2 15:42:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8014: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7929 at Tue May  2 15:42:54 UTC 2017
kill -USR1 7929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7929 killed at Tue May  2 15:42:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7985 >/dev/null 2>/dev/null
selfserv_9122 with PID 7985 found at Tue May  2 15:42:55 UTC 2017
selfserv_9122 with PID 7985 started at Tue May  2 15:42:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8015: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 7985 at Tue May  2 15:42:55 UTC 2017
kill -USR1 7985
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7985 killed at Tue May  2 15:42:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8041 >/dev/null 2>/dev/null
selfserv_9122 with PID 8041 found at Tue May  2 15:42:55 UTC 2017
selfserv_9122 with PID 8041 started at Tue May  2 15:42:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8016: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8041 at Tue May  2 15:42:55 UTC 2017
kill -USR1 8041
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8041 killed at Tue May  2 15:42:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8109 >/dev/null 2>/dev/null
selfserv_9122 with PID 8109 found at Tue May  2 15:42:55 UTC 2017
selfserv_9122 with PID 8109 started at Tue May  2 15:42:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8017: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8109 at Tue May  2 15:42:56 UTC 2017
kill -USR1 8109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8109 killed at Tue May  2 15:42:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8165 >/dev/null 2>/dev/null
selfserv_9122 with PID 8165 found at Tue May  2 15:42:56 UTC 2017
selfserv_9122 with PID 8165 started at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8018: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8165 at Tue May  2 15:42:56 UTC 2017
kill -USR1 8165
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8165 killed at Tue May  2 15:42:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8221 >/dev/null 2>/dev/null
selfserv_9122 with PID 8221 found at Tue May  2 15:42:56 UTC 2017
selfserv_9122 with PID 8221 started at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8019: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8221 at Tue May  2 15:42:56 UTC 2017
kill -USR1 8221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8221 killed at Tue May  2 15:42:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8289 >/dev/null 2>/dev/null
selfserv_9122 with PID 8289 found at Tue May  2 15:42:56 UTC 2017
selfserv_9122 with PID 8289 started at Tue May  2 15:42:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8020: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8289 at Tue May  2 15:42:57 UTC 2017
kill -USR1 8289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8289 killed at Tue May  2 15:42:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8345 >/dev/null 2>/dev/null
selfserv_9122 with PID 8345 found at Tue May  2 15:42:57 UTC 2017
selfserv_9122 with PID 8345 started at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8021: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8345 at Tue May  2 15:42:57 UTC 2017
kill -USR1 8345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8345 killed at Tue May  2 15:42:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8401 >/dev/null 2>/dev/null
selfserv_9122 with PID 8401 found at Tue May  2 15:42:57 UTC 2017
selfserv_9122 with PID 8401 started at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8022: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8401 at Tue May  2 15:42:57 UTC 2017
kill -USR1 8401
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8401 killed at Tue May  2 15:42:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8470 >/dev/null 2>/dev/null
selfserv_9122 with PID 8470 found at Tue May  2 15:42:57 UTC 2017
selfserv_9122 with PID 8470 started at Tue May  2 15:42:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8023: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8470 at Tue May  2 15:42:58 UTC 2017
kill -USR1 8470
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8470 killed at Tue May  2 15:42:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8526 >/dev/null 2>/dev/null
selfserv_9122 with PID 8526 found at Tue May  2 15:42:58 UTC 2017
selfserv_9122 with PID 8526 started at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8024: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8526 at Tue May  2 15:42:58 UTC 2017
kill -USR1 8526
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8526 killed at Tue May  2 15:42:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:42:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8582 >/dev/null 2>/dev/null
selfserv_9122 with PID 8582 found at Tue May  2 15:42:58 UTC 2017
selfserv_9122 with PID 8582 started at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8025: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8582 at Tue May  2 15:42:58 UTC 2017
kill -USR1 8582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8582 killed at Tue May  2 15:42:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8650 >/dev/null 2>/dev/null
selfserv_9122 with PID 8650 found at Tue May  2 15:42:58 UTC 2017
selfserv_9122 with PID 8650 started at Tue May  2 15:42:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8026: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8650 at Tue May  2 15:42:59 UTC 2017
kill -USR1 8650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8650 killed at Tue May  2 15:42:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8706 >/dev/null 2>/dev/null
selfserv_9122 with PID 8706 found at Tue May  2 15:42:59 UTC 2017
selfserv_9122 with PID 8706 started at Tue May  2 15:42:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8027: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8706 at Tue May  2 15:42:59 UTC 2017
kill -USR1 8706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8706 killed at Tue May  2 15:42:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:42:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8762 >/dev/null 2>/dev/null
selfserv_9122 with PID 8762 found at Tue May  2 15:42:59 UTC 2017
selfserv_9122 with PID 8762 started at Tue May  2 15:42:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8028: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 8762 at Tue May  2 15:42:59 UTC 2017
kill -USR1 8762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8762 killed at Tue May  2 15:42:59 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9122 starting at Tue May  2 15:42:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:42:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:42:59 UTC 2017
selfserv_9122 with PID 8825 started at Tue May  2 15:42:59 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:00 UTC 2017
ssl.sh: #8029: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:00 UTC 2017
ssl.sh: #8030: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:00 UTC 2017
ssl.sh: #8031: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:00 UTC 2017
ssl.sh: #8032: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8033: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8034: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8035: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8036: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8037: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8038: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:01 UTC 2017
ssl.sh: #8039: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
ssl.sh: #8040: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
ssl.sh: #8041: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8042: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
ssl.sh: #8043: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
ssl.sh: #8044: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:02 UTC 2017
ssl.sh: #8045: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8046: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8047: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8048: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8049: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8050: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8051: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:03 UTC 2017
ssl.sh: #8052: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:04 UTC 2017
ssl.sh: #8053: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:04 UTC 2017
ssl.sh: #8054: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:04 UTC 2017
ssl.sh: #8055: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8056: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:04 UTC 2017
ssl.sh: #8057: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8058: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8059: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8060: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8061: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8062: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:05 UTC 2017
ssl.sh: #8063: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8064: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8065: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8066: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8067: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8068: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8825 >/dev/null 2>/dev/null
selfserv_9122 with PID 8825 found at Tue May  2 15:43:06 UTC 2017
ssl.sh: #8069: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8825 at Tue May  2 15:43:06 UTC 2017
kill -USR1 8825
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8825 killed at Tue May  2 15:43:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:06 UTC 2017
selfserv_9122 with PID 10254 started at Tue May  2 15:43:06 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8070: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8071: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8072: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8073: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8074: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8075: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:07 UTC 2017
ssl.sh: #8076: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8077: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8078: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8079: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8080: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8081: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8082: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8083: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:08 UTC 2017
ssl.sh: #8084: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8085: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8086: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8087: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8088: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8089: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8090: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:09 UTC 2017
ssl.sh: #8091: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8092: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8093: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8094: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8095: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8096: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8097: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:10 UTC 2017
ssl.sh: #8098: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #8099: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #8100: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #8101: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #8102: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:11 UTC 2017
ssl.sh: #8103: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8104: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8105: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8106: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8107: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8108: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8109: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10254 >/dev/null 2>/dev/null
selfserv_9122 with PID 10254 found at Tue May  2 15:43:12 UTC 2017
ssl.sh: #8110: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10254 at Tue May  2 15:43:12 UTC 2017
kill -USR1 10254
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10254 killed at Tue May  2 15:43:12 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:12 UTC 2017
selfserv_9122 with PID 11687 started at Tue May  2 15:43:12 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #8111: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #8112: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #8113: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:13 UTC 2017
ssl.sh: #8114: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8115: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8116: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8117: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8118: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8119: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8120: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:14 UTC 2017
ssl.sh: #8121: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #8122: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #8123: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #8125: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #8126: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:15 UTC 2017
ssl.sh: #8127: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8128: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8129: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8130: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8131: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8132: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8133: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:16 UTC 2017
ssl.sh: #8134: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #8135: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #8136: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #8137: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #8139: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:17 UTC 2017
ssl.sh: #8140: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8141: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8142: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8143: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8144: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8145: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:18 UTC 2017
ssl.sh: #8146: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #8147: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #8148: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #8149: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #8150: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11687 >/dev/null 2>/dev/null
selfserv_9122 with PID 11687 found at Tue May  2 15:43:19 UTC 2017
ssl.sh: #8151: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 11687 at Tue May  2 15:43:19 UTC 2017
kill -USR1 11687
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11687 killed at Tue May  2 15:43:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:19 UTC 2017
selfserv_9122 with PID 13171 started at Tue May  2 15:43:19 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8152: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8153: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8154: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8155: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8156: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8157: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:20 UTC 2017
ssl.sh: #8158: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8159: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8160: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8161: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8162: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8163: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:21 UTC 2017
ssl.sh: #8164: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8165: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8166: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8167: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8168: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8169: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8170: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:22 UTC 2017
ssl.sh: #8171: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8172: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8173: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8174: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8175: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8176: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8177: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:23 UTC 2017
ssl.sh: #8178: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8179: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8180: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8181: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8182: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8183: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8184: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:24 UTC 2017
ssl.sh: #8185: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8186: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8187: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8188: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8189: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8190: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8191: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13171 >/dev/null 2>/dev/null
selfserv_9122 with PID 13171 found at Tue May  2 15:43:25 UTC 2017
ssl.sh: #8192: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 13171 at Tue May  2 15:43:25 UTC 2017
kill -USR1 13171
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13171 killed at Tue May  2 15:43:25 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14737 >/dev/null 2>/dev/null
selfserv_9122 with PID 14737 found at Tue May  2 15:43:25 UTC 2017
selfserv_9122 with PID 14737 started at Tue May  2 15:43:25 UTC 2017
trying to kill selfserv_9122 with PID 14737 at Tue May  2 15:43:25 UTC 2017
kill -USR1 14737
./ssl.sh: line 183: 14737 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14737 killed at Tue May  2 15:43:25 UTC 2017
selfserv_9122 starting at Tue May  2 15:43:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:25 UTC 2017
selfserv_9122 with PID 14771 started at Tue May  2 15:43:25 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #8193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #8194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #8195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:26 UTC 2017
ssl.sh: #8196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8198: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:27 UTC 2017
ssl.sh: #8202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #8203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #8204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #8205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #8207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:28 UTC 2017
ssl.sh: #8208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #8209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #8210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #8211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #8212: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:29 UTC 2017
ssl.sh: #8213: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #8214: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #8215: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #8216: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #8217: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:30 UTC 2017
ssl.sh: #8218: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #8219: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #8221: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #8222: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #8223: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:31 UTC 2017
ssl.sh: #8224: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #8225: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #8226: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #8227: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #8228: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:32 UTC 2017
ssl.sh: #8229: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #8230: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #8231: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #8232: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9122 with PID 14771 found at Tue May  2 15:43:33 UTC 2017
ssl.sh: #8233: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 14771 at Tue May  2 15:43:33 UTC 2017
kill -USR1 14771
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14771 killed at Tue May  2 15:43:33 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:33 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:33 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:33 UTC 2017
selfserv_9122 with PID 16232 started at Tue May  2 15:43:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #8234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #8235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #8236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:34 UTC 2017
ssl.sh: #8237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #8238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #8239: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #8240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #8241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:35 UTC 2017
ssl.sh: #8242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #8243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #8244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #8245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:36 UTC 2017
ssl.sh: #8246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #8248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #8249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #8250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:37 UTC 2017
ssl.sh: #8251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #8252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #8253: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #8254: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:38 UTC 2017
ssl.sh: #8255: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #8256: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #8257: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #8258: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:39 UTC 2017
ssl.sh: #8259: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #8260: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #8262: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #8263: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:40 UTC 2017
ssl.sh: #8264: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #8265: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #8266: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #8267: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #8268: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:41 UTC 2017
ssl.sh: #8269: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #8270: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #8271: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #8272: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:42 UTC 2017
ssl.sh: #8273: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16232 >/dev/null 2>/dev/null
selfserv_9122 with PID 16232 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #8274: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16232 at Tue May  2 15:43:43 UTC 2017
kill -USR1 16232
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16232 killed at Tue May  2 15:43:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:43 UTC 2017
selfserv_9122 with PID 18158 started at Tue May  2 15:43:43 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #8275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #8276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:43 UTC 2017
ssl.sh: #8277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8280: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:44 UTC 2017
ssl.sh: #8284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #8285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #8286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #8287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8288: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:45 UTC 2017
ssl.sh: #8289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8294: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8295: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:46 UTC 2017
ssl.sh: #8296: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8297: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8298: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8299: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8300: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8301: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8302: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:47 UTC 2017
ssl.sh: #8303: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #8304: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #8305: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #8306: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #8307: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:48 UTC 2017
ssl.sh: #8308: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #8309: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #8310: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #8311: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:49 UTC 2017
ssl.sh: #8312: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #8313: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #8314: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18158 >/dev/null 2>/dev/null
selfserv_9122 with PID 18158 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #8315: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 18158 at Tue May  2 15:43:50 UTC 2017
kill -USR1 18158
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18158 killed at Tue May  2 15:43:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:43:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:43:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:50 UTC 2017
selfserv_9122 with PID 20864 started at Tue May  2 15:43:50 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:50 UTC 2017
ssl.sh: #8316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #8317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #8318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #8319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #8320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:51 UTC 2017
ssl.sh: #8321: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #8322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #8323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #8324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:52 UTC 2017
ssl.sh: #8325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #8326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #8327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:53 UTC 2017
ssl.sh: #8328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #8330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:54 UTC 2017
ssl.sh: #8331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #8332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #8333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:55 UTC 2017
ssl.sh: #8334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #8335: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #8336: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:56 UTC 2017
ssl.sh: #8337: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #8338: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:57 UTC 2017
ssl.sh: #8339: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #8340: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #8341: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:58 UTC 2017
ssl.sh: #8342: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #8344: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #8345: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:43:59 UTC 2017
ssl.sh: #8346: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #8347: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #8348: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:00 UTC 2017
ssl.sh: #8349: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #8350: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #8351: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:01 UTC 2017
ssl.sh: #8352: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #8353: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #8354: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #8355: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20864 >/dev/null 2>/dev/null
selfserv_9122 with PID 20864 found at Tue May  2 15:44:02 UTC 2017
ssl.sh: #8356: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 20864 at Tue May  2 15:44:02 UTC 2017
kill -USR1 20864
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 20864 killed at Tue May  2 15:44:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:02 UTC 2017
selfserv_9122 with PID 31271 started at Tue May  2 15:44:02 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #8357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #8358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #8359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:03 UTC 2017
ssl.sh: #8360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #8361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #8362: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #8363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:04 UTC 2017
ssl.sh: #8364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #8365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #8366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #8367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:05 UTC 2017
ssl.sh: #8368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #8369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #8371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:06 UTC 2017
ssl.sh: #8372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #8373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #8374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #8375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:07 UTC 2017
ssl.sh: #8376: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #8377: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #8378: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:08 UTC 2017
ssl.sh: #8379: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #8380: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #8381: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #8382: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:09 UTC 2017
ssl.sh: #8383: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #8385: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #8386: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:10 UTC 2017
ssl.sh: #8387: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #8388: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:11 UTC 2017
ssl.sh: #8389: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #8390: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #8391: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:12 UTC 2017
ssl.sh: #8392: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #8393: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #8394: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:13 UTC 2017
ssl.sh: #8395: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #8396: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31271 >/dev/null 2>/dev/null
selfserv_9122 with PID 31271 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #8397: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31271 at Tue May  2 15:44:14 UTC 2017
kill -USR1 31271
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31271 killed at Tue May  2 15:44:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:14 UTC 2017
selfserv_9122 with PID 4179 started at Tue May  2 15:44:14 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #8398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:14 UTC 2017
ssl.sh: #8399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #8400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #8401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #8402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #8403: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:15 UTC 2017
ssl.sh: #8404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #8405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #8406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #8407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:16 UTC 2017
ssl.sh: #8408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #8409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #8410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8411: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #8412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #8413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:17 UTC 2017
ssl.sh: #8414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #8415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #8416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #8417: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #8418: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:18 UTC 2017
ssl.sh: #8419: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #8420: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #8421: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #8422: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #8423: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:19 UTC 2017
ssl.sh: #8424: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8425: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #8426: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #8427: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #8428: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:20 UTC 2017
ssl.sh: #8429: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8430: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8431: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8432: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8433: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8434: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:21 UTC 2017
ssl.sh: #8435: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:22 UTC 2017
ssl.sh: #8436: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:22 UTC 2017
ssl.sh: #8437: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4179 >/dev/null 2>/dev/null
selfserv_9122 with PID 4179 found at Tue May  2 15:44:22 UTC 2017
ssl.sh: #8438: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4179 at Tue May  2 15:44:22 UTC 2017
kill -USR1 4179
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4179 killed at Tue May  2 15:44:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7780 >/dev/null 2>/dev/null
selfserv_9122 with PID 7780 found at Tue May  2 15:44:22 UTC 2017
selfserv_9122 with PID 7780 started at Tue May  2 15:44:22 UTC 2017
trying to kill selfserv_9122 with PID 7780 at Tue May  2 15:44:22 UTC 2017
kill -USR1 7780
./ssl.sh: line 183:  7780 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7780 killed at Tue May  2 15:44:22 UTC 2017
selfserv_9122 starting at Tue May  2 15:44:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:22 UTC 2017
selfserv_9122 with PID 7814 started at Tue May  2 15:44:22 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:22 UTC 2017
ssl.sh: #8439: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:23 UTC 2017
ssl.sh: #8440: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:23 UTC 2017
ssl.sh: #8441: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:23 UTC 2017
ssl.sh: #8442: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:23 UTC 2017
ssl.sh: #8443: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:23 UTC 2017
ssl.sh: #8444: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:24 UTC 2017
ssl.sh: #8445: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:24 UTC 2017
ssl.sh: #8446: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:24 UTC 2017
ssl.sh: #8447: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:24 UTC 2017
ssl.sh: #8448: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:25 UTC 2017
ssl.sh: #8449: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:25 UTC 2017
ssl.sh: #8450: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:25 UTC 2017
ssl.sh: #8451: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8452: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:26 UTC 2017
ssl.sh: #8453: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:26 UTC 2017
ssl.sh: #8454: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:26 UTC 2017
ssl.sh: #8455: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:27 UTC 2017
ssl.sh: #8456: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:27 UTC 2017
ssl.sh: #8457: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:27 UTC 2017
ssl.sh: #8458: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:27 UTC 2017
ssl.sh: #8459: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:28 UTC 2017
ssl.sh: #8460: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:28 UTC 2017
ssl.sh: #8461: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:28 UTC 2017
ssl.sh: #8462: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:29 UTC 2017
ssl.sh: #8463: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:29 UTC 2017
ssl.sh: #8464: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:30 UTC 2017
ssl.sh: #8465: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8466: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:30 UTC 2017
ssl.sh: #8467: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:31 UTC 2017
ssl.sh: #8468: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:31 UTC 2017
ssl.sh: #8469: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:31 UTC 2017
ssl.sh: #8470: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:31 UTC 2017
ssl.sh: #8471: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:32 UTC 2017
ssl.sh: #8472: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:32 UTC 2017
ssl.sh: #8473: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:32 UTC 2017
ssl.sh: #8474: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:33 UTC 2017
ssl.sh: #8475: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:33 UTC 2017
ssl.sh: #8476: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:33 UTC 2017
ssl.sh: #8477: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:34 UTC 2017
ssl.sh: #8478: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7814 >/dev/null 2>/dev/null
selfserv_9122 with PID 7814 found at Tue May  2 15:44:34 UTC 2017
ssl.sh: #8479: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7814 at Tue May  2 15:44:34 UTC 2017
kill -USR1 7814
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7814 killed at Tue May  2 15:44:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:34 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:34 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:34 UTC 2017
selfserv_9122 with PID 14957 started at Tue May  2 15:44:34 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:35 UTC 2017
ssl.sh: #8480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:36 UTC 2017
ssl.sh: #8481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:36 UTC 2017
ssl.sh: #8482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:37 UTC 2017
ssl.sh: #8483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:37 UTC 2017
ssl.sh: #8484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:37 UTC 2017
ssl.sh: #8485: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:38 UTC 2017
ssl.sh: #8486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:38 UTC 2017
ssl.sh: #8487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:38 UTC 2017
ssl.sh: #8488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:38 UTC 2017
ssl.sh: #8489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:39 UTC 2017
ssl.sh: #8490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:39 UTC 2017
ssl.sh: #8491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:39 UTC 2017
ssl.sh: #8492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8493: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:40 UTC 2017
ssl.sh: #8494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:40 UTC 2017
ssl.sh: #8495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:40 UTC 2017
ssl.sh: #8496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:40 UTC 2017
ssl.sh: #8497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:41 UTC 2017
ssl.sh: #8498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:41 UTC 2017
ssl.sh: #8499: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:41 UTC 2017
ssl.sh: #8500: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:41 UTC 2017
ssl.sh: #8501: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:42 UTC 2017
ssl.sh: #8502: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:42 UTC 2017
ssl.sh: #8503: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:42 UTC 2017
ssl.sh: #8504: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:42 UTC 2017
ssl.sh: #8505: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:43 UTC 2017
ssl.sh: #8506: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8507: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:44 UTC 2017
ssl.sh: #8508: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:44 UTC 2017
ssl.sh: #8509: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:45 UTC 2017
ssl.sh: #8510: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:45 UTC 2017
ssl.sh: #8511: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:45 UTC 2017
ssl.sh: #8512: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:46 UTC 2017
ssl.sh: #8513: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:46 UTC 2017
ssl.sh: #8514: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:46 UTC 2017
ssl.sh: #8515: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:47 UTC 2017
ssl.sh: #8516: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:47 UTC 2017
ssl.sh: #8517: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:47 UTC 2017
ssl.sh: #8518: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:48 UTC 2017
ssl.sh: #8519: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14957 >/dev/null 2>/dev/null
selfserv_9122 with PID 14957 found at Tue May  2 15:44:48 UTC 2017
ssl.sh: #8520: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 14957 at Tue May  2 15:44:48 UTC 2017
kill -USR1 14957
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14957 killed at Tue May  2 15:44:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:48 UTC 2017
selfserv_9122 with PID 19486 started at Tue May  2 15:44:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:48 UTC 2017
ssl.sh: #8521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:48 UTC 2017
ssl.sh: #8522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8526: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:49 UTC 2017
ssl.sh: #8528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
ssl.sh: #8529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
ssl.sh: #8530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
ssl.sh: #8531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
ssl.sh: #8532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
ssl.sh: #8533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8534: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:51 UTC 2017
ssl.sh: #8540: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8541: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8542: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8543: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8544: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8545: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:52 UTC 2017
ssl.sh: #8546: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:53 UTC 2017
ssl.sh: #8547: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8548: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:53 UTC 2017
ssl.sh: #8549: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:54 UTC 2017
ssl.sh: #8550: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:54 UTC 2017
ssl.sh: #8551: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:54 UTC 2017
ssl.sh: #8552: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:55 UTC 2017
ssl.sh: #8553: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:55 UTC 2017
ssl.sh: #8554: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:56 UTC 2017
ssl.sh: #8555: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:56 UTC 2017
ssl.sh: #8556: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:56 UTC 2017
ssl.sh: #8557: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:56 UTC 2017
ssl.sh: #8558: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:56 UTC 2017
ssl.sh: #8559: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:57 UTC 2017
ssl.sh: #8560: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19486 >/dev/null 2>/dev/null
selfserv_9122 with PID 19486 found at Tue May  2 15:44:57 UTC 2017
ssl.sh: #8561: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 19486 at Tue May  2 15:44:57 UTC 2017
kill -USR1 19486
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 19486 killed at Tue May  2 15:44:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:44:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:44:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:57 UTC 2017
selfserv_9122 with PID 22805 started at Tue May  2 15:44:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:57 UTC 2017
ssl.sh: #8562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:57 UTC 2017
ssl.sh: #8563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:58 UTC 2017
ssl.sh: #8564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:58 UTC 2017
ssl.sh: #8565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:58 UTC 2017
ssl.sh: #8566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:58 UTC 2017
ssl.sh: #8567: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:59 UTC 2017
ssl.sh: #8568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:59 UTC 2017
ssl.sh: #8569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:59 UTC 2017
ssl.sh: #8570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:44:59 UTC 2017
ssl.sh: #8571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:00 UTC 2017
ssl.sh: #8572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:00 UTC 2017
ssl.sh: #8573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:00 UTC 2017
ssl.sh: #8574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8575: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:00 UTC 2017
ssl.sh: #8576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:01 UTC 2017
ssl.sh: #8577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:01 UTC 2017
ssl.sh: #8578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:01 UTC 2017
ssl.sh: #8579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:01 UTC 2017
ssl.sh: #8580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:01 UTC 2017
ssl.sh: #8581: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:02 UTC 2017
ssl.sh: #8582: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:02 UTC 2017
ssl.sh: #8583: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:02 UTC 2017
ssl.sh: #8584: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:02 UTC 2017
ssl.sh: #8585: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:02 UTC 2017
ssl.sh: #8586: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:03 UTC 2017
ssl.sh: #8587: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:03 UTC 2017
ssl.sh: #8588: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8589: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:03 UTC 2017
ssl.sh: #8590: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:04 UTC 2017
ssl.sh: #8591: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:04 UTC 2017
ssl.sh: #8592: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:04 UTC 2017
ssl.sh: #8593: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:04 UTC 2017
ssl.sh: #8594: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:04 UTC 2017
ssl.sh: #8595: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:05 UTC 2017
ssl.sh: #8596: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:05 UTC 2017
ssl.sh: #8597: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:05 UTC 2017
ssl.sh: #8598: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:05 UTC 2017
ssl.sh: #8599: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:05 UTC 2017
ssl.sh: #8600: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:06 UTC 2017
ssl.sh: #8601: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22805 >/dev/null 2>/dev/null
selfserv_9122 with PID 22805 found at Tue May  2 15:45:06 UTC 2017
ssl.sh: #8602: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 22805 at Tue May  2 15:45:06 UTC 2017
kill -USR1 22805
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 22805 killed at Tue May  2 15:45:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:45:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:45:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:06 UTC 2017
selfserv_9122 with PID 26821 started at Tue May  2 15:45:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:06 UTC 2017
ssl.sh: #8603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:07 UTC 2017
ssl.sh: #8604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:07 UTC 2017
ssl.sh: #8605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:07 UTC 2017
ssl.sh: #8606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:07 UTC 2017
ssl.sh: #8607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:08 UTC 2017
ssl.sh: #8608: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:08 UTC 2017
ssl.sh: #8609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:08 UTC 2017
ssl.sh: #8610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:09 UTC 2017
ssl.sh: #8611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:09 UTC 2017
ssl.sh: #8612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:09 UTC 2017
ssl.sh: #8613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:09 UTC 2017
ssl.sh: #8614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:10 UTC 2017
ssl.sh: #8615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8616: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:10 UTC 2017
ssl.sh: #8617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:10 UTC 2017
ssl.sh: #8618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:11 UTC 2017
ssl.sh: #8619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:11 UTC 2017
ssl.sh: #8620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:11 UTC 2017
ssl.sh: #8621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:11 UTC 2017
ssl.sh: #8622: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:12 UTC 2017
ssl.sh: #8623: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:12 UTC 2017
ssl.sh: #8624: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:12 UTC 2017
ssl.sh: #8625: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:12 UTC 2017
ssl.sh: #8626: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:13 UTC 2017
ssl.sh: #8627: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:13 UTC 2017
ssl.sh: #8628: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:13 UTC 2017
ssl.sh: #8629: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8630: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:14 UTC 2017
ssl.sh: #8631: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:14 UTC 2017
ssl.sh: #8632: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:14 UTC 2017
ssl.sh: #8633: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:14 UTC 2017
ssl.sh: #8634: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:15 UTC 2017
ssl.sh: #8635: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:15 UTC 2017
ssl.sh: #8636: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:15 UTC 2017
ssl.sh: #8637: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:15 UTC 2017
ssl.sh: #8638: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:16 UTC 2017
ssl.sh: #8639: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:16 UTC 2017
ssl.sh: #8640: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:16 UTC 2017
ssl.sh: #8641: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:17 UTC 2017
ssl.sh: #8642: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26821 >/dev/null 2>/dev/null
selfserv_9122 with PID 26821 found at Tue May  2 15:45:17 UTC 2017
ssl.sh: #8643: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 26821 at Tue May  2 15:45:17 UTC 2017
kill -USR1 26821
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 26821 killed at Tue May  2 15:45:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:45:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:45:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:17 UTC 2017
selfserv_9122 with PID 29042 started at Tue May  2 15:45:17 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:17 UTC 2017
ssl.sh: #8644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:17 UTC 2017
ssl.sh: #8645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:17 UTC 2017
ssl.sh: #8646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8649: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:18 UTC 2017
ssl.sh: #8652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:19 UTC 2017
ssl.sh: #8653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:19 UTC 2017
ssl.sh: #8654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:19 UTC 2017
ssl.sh: #8655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:19 UTC 2017
ssl.sh: #8656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8657: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:20 UTC 2017
ssl.sh: #8663: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:21 UTC 2017
ssl.sh: #8664: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:21 UTC 2017
ssl.sh: #8665: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:21 UTC 2017
ssl.sh: #8666: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:21 UTC 2017
ssl.sh: #8667: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:21 UTC 2017
ssl.sh: #8668: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
ssl.sh: #8669: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
ssl.sh: #8670: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8671: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
ssl.sh: #8672: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
ssl.sh: #8673: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:22 UTC 2017
ssl.sh: #8674: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8675: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8676: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8677: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8678: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8679: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:23 UTC 2017
ssl.sh: #8680: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:24 UTC 2017
ssl.sh: #8681: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:24 UTC 2017
ssl.sh: #8682: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:24 UTC 2017
ssl.sh: #8683: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29042 >/dev/null 2>/dev/null
selfserv_9122 with PID 29042 found at Tue May  2 15:45:24 UTC 2017
ssl.sh: #8684: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 29042 at Tue May  2 15:45:24 UTC 2017
kill -USR1 29042
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 29042 killed at Tue May  2 15:45:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:45:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:45:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30465 >/dev/null 2>/dev/null
selfserv_9122 with PID 30465 found at Tue May  2 15:45:24 UTC 2017
selfserv_9122 with PID 30465 started at Tue May  2 15:45:24 UTC 2017
trying to kill selfserv_9122 with PID 30465 at Tue May  2 15:45:24 UTC 2017
kill -USR1 30465
./ssl.sh: line 183: 30465 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30465 killed at Tue May  2 15:45:24 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:45:24 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:45:24 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #8685: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8686: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8687: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8688: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8689: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8690: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:20 2017
            Not After : Mon May 02 15:16:20 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:2d:12:0c:63:16:73:22:9c:bd:05:dc:8b:06:1b:d0:
                    4b:95:c4:34:44:30:0b:e2:f3:64:75:5c:9e:54:a7:29:
                    6c:c2:6e:79:53:76:65:ad:c8:6d:0a:47:22:fb:65:2d:
                    a3:59:a6:1e:7c:8f:e2:ce:b8:47:4e:2c:bf:75:f9:8a:
                    7d:83:82:e4:c7:fa:6b:cd:7d:1b:f7:2e:b9:22:9e:79:
                    51:ea:05:57:27:53:29:89:59:2a:fc:7e:89:16:c1:49:
                    15:e4:51:7e:97:fb:fc:3f:4d:c8:25:95:50:6b:11:ec:
                    aa:4d:3d:fc:86:9b:90:9e:a0:bf:49:25:7f:4e:2a:35:
                    3d:0a:2c:fd:b5:c4:20:2c:4e:5e:23:bb:35:4c:f0:9d:
                    b3:dc:89:cd:a5:83:cb:4e:30:de:62:e4:73:53:8e:d5:
                    9d:bd:06:64:30:4e:38:71:1c:91:21:f8:92:bd:5d:c8:
                    53:49:27:3b:54:57:8d:e6:41:e5:bc:6e:93:ec:19:fc:
                    97:24:9c:cc:af:d8:39:08:eb:fb:0a:5e:a7:05:05:2d:
                    7e:1b:51:a1:9f:9c:1f:71:78:e0:5e:2d:7a:3a:8b:48:
                    de:ef:94:9d:62:a1:ce:a9:ad:96:4c:5d:f4:20:aa:e9:
                    96:00:cd:24:c4:78:0f:37:1d:9c:fe:b7:c3:06:da:17
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:7d:d3:b4:6a:91:ef:4f:a8:9f:07:91:9f:6b:08:3f:
        e2:bb:43:95:5d:f9:a2:5f:0b:6d:52:c4:eb:9b:72:0f:
        33:19:ad:06:e1:62:37:b4:06:4b:20:b1:57:14:47:1e:
        11:78:f3:a5:aa:c2:2f:be:a0:14:e5:92:4b:7f:08:79:
        fc:83:f8:12:ae:7a:10:05:ed:ca:f6:77:98:88:81:ea:
        4e:b0:96:ed:69:20:af:b9:50:90:30:0e:77:12:c0:bf:
        85:76:06:f6:62:2d:a0:bd:22:0f:b7:19:15:37:47:08:
        11:b7:70:00:e1:9b:22:d5:9c:57:83:a0:1b:b2:0e:71:
        3c:2d:41:fa:87:5f:3d:a0:de:9f:f9:cf:51:e5:2b:a6:
        83:ea:a6:a3:f8:f1:90:59:ca:83:eb:05:6f:37:09:4a:
        17:92:ce:28:0d:c7:16:ab:49:c8:8b:dd:d0:03:55:73:
        b0:c0:08:4c:ce:3d:67:08:7f:1c:bf:ff:14:74:7f:52:
        9b:11:87:1b:09:b9:b6:81:37:ea:13:42:25:1e:95:0f:
        ea:24:bc:85:3d:9e:80:71:da:5a:23:ba:48:15:55:ec:
        0d:3a:9d:c3:2b:05:84:c9:cb:05:77:ec:6e:a9:5e:a2:
        41:99:d9:31:b1:9e:96:8b:0f:b6:b5:70:9d:b7:49:11
    Fingerprint (SHA-256):
        70:B9:72:43:FE:49:32:57:CA:5C:23:D2:1F:0E:A0:72:AF:C8:99:4E:E8:49:7E:4D:F7:68:38:CA:A7:AC:5D:A8
    Fingerprint (SHA1):
        84:D3:60:05:75:64:ED:3A:18:91:D6:56:88:12:AA:0D:5E:3F:5D:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8691: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:16:21 2017
            Not After : Mon May 02 15:16:21 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:70:7e:dd:67:14:da:94:5b:3e:cf:21:35:2d:ab:9e:
                    b9:04:64:81:fd:61:33:a4:b3:00:ff:0e:af:f4:35:6e:
                    6e:f1:75:e2:30:05:d6:58:06:bb:44:5e:dd:d4:f0:64:
                    54:13:e5:4d:92:53:74:e8:46:55:15:19:44:2a:e3:65:
                    43:be:d0:87:6e:98:0d:b8:b8:43:24:f4:6d:e0:0e:88:
                    d3:c8:72:16:35:3c:1a:4e:e0:ff:5a:89:ae:52:fd:65:
                    89:62:56:69:cc:02:36:8c:c4:f5:05:3e:29:d1:91:dd:
                    4d:7f:0b:e0:3d:47:81:be:99:d8:74:b6:a6:00:89:2c:
                    bb:6b:48:64:23:8d:89:6b:de:2c:9a:8a:f0:1e:5f:b3:
                    ae:3f:fc:97:ca:40:8f:84:44:d0:01:ca:d0:07:c5:7b:
                    d1:45:fb:cf:49:d4:14:f8:4a:2e:51:b6:e6:26:58:3c:
                    22:4f:98:f5:58:65:55:95:e3:b8:ca:03:90:d8:8d:07:
                    1b:8d:65:90:7d:46:99:b9:33:90:3e:24:89:46:e6:94:
                    b6:9a:a9:38:88:11:2f:0c:11:2b:02:b7:df:f1:ec:03:
                    ea:bc:38:a5:b1:d7:f6:1c:ed:7d:d7:a8:02:5c:d8:3d:
                    fe:90:b0:ef:82:c6:6c:09:1b:a0:cc:c2:2a:ba:ed:ed
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:e1:6b:dc:35:ca:74:bd:f3:4e:36:ee:ec:84:a6:e9:
        57:db:b0:24:18:b0:6f:eb:d6:1d:64:61:d0:df:27:17:
        05:df:65:ca:8e:a5:10:cc:1e:1a:c0:d9:58:80:91:a0:
        8f:e6:07:74:1e:25:c6:b4:85:c7:20:10:b7:ae:46:a7:
        7c:99:8a:57:7a:07:6f:44:c3:21:de:bb:d8:5b:6e:a8:
        f3:3a:a0:0f:9d:76:b1:a8:2e:10:4e:7b:5d:f1:ed:50:
        e6:6c:6f:09:6b:71:d2:27:c9:18:ac:d5:57:76:f3:9d:
        f5:38:18:b6:e4:9c:46:25:36:a5:2b:78:d3:09:16:81:
        92:44:1b:71:07:7a:76:bb:f7:4f:e8:1f:bb:b7:3c:73:
        ab:fd:17:6e:23:0c:fa:35:ac:98:88:d6:d1:64:6d:a3:
        ee:f9:ec:58:69:48:6e:01:43:05:2a:c2:9f:d0:c2:f8:
        c8:40:1a:7f:b1:25:d2:ba:4a:16:d7:d3:fa:29:21:6c:
        ee:83:d6:77:34:86:3d:dd:2f:2b:e4:47:b5:1b:52:6f:
        5d:6d:52:02:19:eb:96:e7:f4:48:96:f9:f2:f5:ba:12:
        69:d1:17:78:78:a0:3b:ec:39:af:9b:c7:75:28:8b:48:
        4e:81:ca:a2:b8:62:33:60:a2:48:2c:5e:68:cd:39:97
    Fingerprint (SHA-256):
        20:73:16:A8:46:D2:EC:CF:2D:22:50:AF:F9:6A:AF:ED:79:C6:2E:5A:22:68:D2:D6:65:D1:70:59:39:F7:C1:24
    Fingerprint (SHA1):
        EE:AE:AA:53:5E:8D:7F:41:B9:6B:7C:A6:1F:E9:4A:D9:1E:87:6D:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8692: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8693: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA-dsa                                         ,,   
clientCA-dsa                                                 T,C,C
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #8694: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v1.12777 -t Test1 -f ../tests.pw
merge.sh: #8695: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #8696: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #8697: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #8698: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:16:34 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:15:47 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:16:29 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #8699: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 15:45:26 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:45:26 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:45:26 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8700: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:45:26 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:45:26 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8701: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8702: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8703: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8704: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8705: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8706: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:45:27 UTC 2017
TIMESTAMP ec END: Tue May  2 15:45:27 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:45:27 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (1 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8707: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8708: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8709: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8710: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8711: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8712: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8713: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8714: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8715: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8716: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8717: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8718: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8719: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8720: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8721: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8722: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8723: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #8724: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #8725: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:45:27 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:45:27 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8726: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8727: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8728: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8729: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8730: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8731: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8732: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8733: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8734: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8735: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8736: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8737: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8738: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8739: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8740: create certificate: sign  - PASSED
ssl_gtest.sh: #8741: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:45:30 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:45:30 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #8742: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #8743: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8744: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8745: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #8746: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #8747: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8748: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8749: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8750: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8751: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8752: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8753: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8754: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #8755: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8756: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8757: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8758: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8759: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8760: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8761: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8762: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8763: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8764: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8765: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8766: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8767: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8768: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8769: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8770: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8771: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8772: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8773: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8774: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8775: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8776: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8777: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #8778: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8779: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8780: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8781: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8782: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8783: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8784: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8785: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8786: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8787: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8788: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8789: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8790: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #8791: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8792: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8793: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #8794: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8795: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8796: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8797: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #8798: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8799: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8800: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8801: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #8802: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8803: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8804: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #8805: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8806: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8807: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8808: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #8809: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8810: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8811: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8812: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8813: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8814: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8815: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8816: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8817: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8818: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8819: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #8820: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8821: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8822: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #8823: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8824: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8825: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8826: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #8827: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8828: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8829: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8830: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #8831: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8832: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8833: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #8834: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8835: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8836: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8837: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #8838: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8839: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8840: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8841: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8842: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8843: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8844: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8845: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8846: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8847: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8848: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #8849: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8850: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #8851: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8852: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #8853: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8854: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #8855: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8856: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8857: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #8858: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8859: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8860: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #8861: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8862: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8863: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #8864: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8865: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8866: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #8867: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8868: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8869: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8870: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #8871: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8872: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #8873: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8874: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #8875: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8876: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8877: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8878: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8879: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8880: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8881: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8882: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8883: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8884: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8885: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8886: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8887: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8888: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8889: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #8890: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8891: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8892: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8893: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8894: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8895: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8896: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8897: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8898: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8899: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8900: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8901: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8902: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8903: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8904: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8905: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8906: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #8907: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8908: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #8909: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8910: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8911: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8912: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #8913: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8914: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8915: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #8916: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8917: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8918: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #8919: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8920: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8921: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #8922: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8923: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8924: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #8925: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8926: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #8927: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8928: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #8929: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8930: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8931: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8932: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #8933: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8934: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8935: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #8936: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8937: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8938: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #8939: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8940: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8941: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #8942: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8943: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8944: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #8945: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8946: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #8947: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8948: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #8949: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8950: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #8951: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8952: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #8953: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8954: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8955: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #8956: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8957: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8958: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #8959: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8960: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8961: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #8962: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8963: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8964: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #8965: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8966: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #8967: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8968: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #8969: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8970: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #8971: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8972: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8973: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8974: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8975: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8976: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8977: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8978: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8979: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8980: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8981: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8982: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8983: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8984: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8985: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8986: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #8987: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8988: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8989: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8990: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8991: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #8992: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8993: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8994: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #8995: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8996: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #8997: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8998: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #8999: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9000: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #9001: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9002: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #9003: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9004: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9005: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #9006: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9007: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9008: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #9009: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9010: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #9011: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9012: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #9013: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9014: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #9015: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9016: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #9017: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9018: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9019: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #9020: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9021: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9022: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #9023: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9024: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9025: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #9026: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9027: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9028: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #9029: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9030: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:09
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:11 2017
            Not After : Wed Aug 02 15:46:11 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:d6:c9:66:4e:e9:df:08:ac:16:fa:03:2c:21:d5:09:
                    67:f0:7b:1e:4d:28:67:2d:c0:1b:74:e2:0c:eb:1a:fc:
                    50:45:c2:1c:bf:cb:02:7f:83:5c:d3:cd:58:8f:ff:8b:
                    ae:57:7c:6e:4b:ad:2d:b6:af:41:73:7c:48:38:44:24:
                    32:f0:d2:df:f5:53:43:4c:60:61:a8:6d:fd:59:c6:4e:
                    e2:00:59:48:fa:42:43:dd:4a:11:59:4b:92:d0:fd:e4:
                    2a:30:45:47:65:b9:d7:3e:27:b2:4c:ab:36:98:34:5f:
                    a2:54:4c:91:73:d9:62:1d:2a:a5:25:5e:e8:91:4e:d1:
                    db:f5:c7:2f:07:93:0e:cc:f0:41:7f:6d:44:8c:7b:62:
                    44:86:75:2f:d7:55:6b:07:ed:6d:6b:b8:fb:d6:bb:08:
                    4e:4a:76:0e:ac:33:4f:6d:4f:32:30:aa:5a:0c:c5:ce:
                    44:4d:86:42:fb:ac:e4:23:87:78:c7:12:14:a5:75:f4:
                    5b:1b:1f:4e:ce:0e:db:af:5a:b4:31:21:57:f1:aa:d3:
                    9d:3f:7b:b5:67:21:26:d1:63:e1:72:69:05:f5:de:55:
                    ef:21:9e:9f:9c:31:24:6f:41:9b:d7:2b:26:62:bd:36:
                    91:67:ad:0f:40:40:cf:4f:7d:c7:4b:8a:7b:9b:d2:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:8d:7b:e9:1b:f5:b9:75:9c:fd:c8:82:9c:8b:44:3c:
        7d:cc:15:ad:fd:7f:dd:ec:cf:58:12:a3:fc:41:a3:41:
        8d:7b:a2:89:e0:80:9e:69:72:6f:05:05:14:0b:f5:ed:
        35:7e:49:a2:6e:ca:7c:53:ce:98:66:e1:fa:13:49:5c:
        d4:82:7f:7d:e3:d5:6a:67:ed:13:da:9f:50:ba:2b:70:
        3c:6b:2c:43:94:bf:0d:b6:e6:e5:62:46:85:00:0d:ce:
        84:7c:57:8c:6a:ec:45:f5:7c:d9:af:e4:1d:ad:a7:23:
        98:55:b6:a7:c6:49:85:87:9f:4c:b8:93:f7:67:5e:21:
        74:08:1c:9d:63:8e:86:99:f2:5c:70:06:3b:87:3b:66:
        34:6d:45:6b:df:aa:5a:68:3a:f1:7c:33:80:df:8a:ac:
        2b:36:ec:4e:91:13:4c:3c:fa:e6:b2:53:04:4e:2f:e2:
        d0:c5:e6:ea:b4:ef:18:02:e4:10:c0:61:d5:ee:f3:0f:
        3c:8b:e0:12:d9:ed:29:e6:6c:ca:75:f7:9d:53:37:90:
        ee:fb:e8:83:d1:29:7c:fb:a2:16:c9:5c:fe:00:fa:52:
        d8:fd:cf:60:e4:b4:f5:66:dc:8d:28:d1:63:44:a1:3b:
        07:d3:d2:87:39:7c:cc:d1:4e:ac:66:61:0e:9f:4e:36
    Fingerprint (SHA-256):
        03:4B:4D:7F:6B:D8:4C:C5:10:1B:20:62:1F:D4:D3:41:9A:19:48:7E:26:17:D1:58:44:31:67:82:7F:08:2F:9D
    Fingerprint (SHA1):
        9E:15:04:F9:37:5C:8D:9E:47:DB:2C:85:A0:CF:14:17:8F:48:13:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9031: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:0c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:12 2017
            Not After : Wed Aug 02 15:46:12 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:3b:bb:af:7d:5f:d6:c1:9a:b2:79:98:34:29:35:1a:
                    50:79:c5:45:ac:8f:5d:2a:0c:10:ce:9b:17:9f:d4:df:
                    4b:74:db:53:a0:51:03:51:ef:a5:0a:78:e4:25:c4:63:
                    7d:39:f6:aa:78:84:cc:d0:f3:fe:08:75:95:7c:ab:8d:
                    27:08:eb:f1:49:2f:5b:df:fb:67:48:64:3d:de:87:12:
                    54:a2:b8:fb:b1:2a:81:60:63:64:59:40:f1:74:65:f7:
                    83:92:49:4d:e6:d1:67:11:ff:30:bf:d8:ea:2e:a2:ca:
                    fb:32:fe:d2:c7:1e:f9:1d:17:26:02:29:64:04:b1:48:
                    5b:25:ea:ac:86:3d:3a:8b:7f:81:49:a5:27:65:00:d5:
                    ae:58:21:ac:e6:58:fa:9b:73:dd:2a:20:b1:0e:a4:fa:
                    8a:52:4e:b5:2f:c1:f4:53:08:7a:e9:0f:e7:9f:6f:ad:
                    4a:d1:d7:16:44:20:f6:45:80:8b:f3:7b:a6:c5:3b:52:
                    3d:25:f9:91:7c:b9:a0:fc:a0:07:9b:48:8f:17:55:15:
                    87:ba:c2:80:93:34:ef:a8:98:9f:fb:5e:9f:ba:67:3e:
                    a7:84:d0:31:5e:f4:6a:78:1e:e0:bd:3b:2f:ca:42:b2:
                    6a:da:fd:08:fc:dc:48:4e:de:9e:a4:21:d2:cf:1c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:8b:e8:ad:c1:b9:ec:01:e4:4e:63:f2:f4:70:ad:a4:
        04:cc:3c:ee:82:af:17:40:75:3f:ab:2b:6b:b0:01:b4:
        06:10:ea:30:5f:5d:ac:e8:94:39:0a:56:35:c0:8a:f0:
        40:37:82:4b:1e:7f:b1:e8:4f:82:51:c2:bc:9f:e9:4a:
        bf:2f:03:97:3f:75:ba:74:4f:18:26:c0:7e:fa:15:8a:
        16:56:fa:b9:3e:06:85:98:68:f1:3c:d6:2a:0b:6c:55:
        0f:9d:bb:b7:b5:8c:2f:40:c6:43:18:be:05:bb:25:f4:
        3e:4d:d4:3a:58:74:cd:5f:16:2d:2b:fc:2e:70:5e:46:
        5b:9a:04:a5:fb:f2:f7:ea:fb:4c:f5:3c:9c:08:7f:22:
        be:4f:09:70:54:5a:12:88:88:8a:de:7c:18:36:3c:8c:
        63:4c:b6:9a:86:02:c9:7f:62:e9:97:05:a3:7c:f2:63:
        bb:08:f8:98:f9:5f:e6:8f:57:8e:5b:e1:68:2e:e4:d4:
        8a:e8:ea:fb:99:24:8e:d3:c5:e2:8b:9c:73:93:fc:d8:
        8e:db:bc:79:86:d1:0a:e0:44:c0:49:24:05:14:61:a0:
        22:54:22:33:d8:0a:a1:a3:4e:a4:12:f0:cf:bb:5d:8a:
        19:c9:2b:f6:22:cf:90:68:cc:bb:ec:a5:60:0f:6f:e6
    Fingerprint (SHA-256):
        46:54:42:3B:F8:E0:CE:7B:4B:54:25:8C:A5:14:55:97:2C:84:4E:D8:C9:06:FA:3F:EC:82:9D:E2:09:C6:36:0A
    Fingerprint (SHA1):
        A2:0E:DF:4E:6D:7B:63:F8:15:5F:BD:FC:FB:B7:FD:44:C5:F7:64:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9032: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:0d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:12 2017
            Not After : Wed Aug 02 15:46:12 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:dd:4f:27:d9:26:56:62:b3:a7:77:ed:c0:59:3d:6e:
                    2c:31:81:3d:4a:8b:38:9e:ef:fe:0b:18:73:de:59:e6:
                    fc:1c:14:f4:87:62:f1:48:dc:e5:72:40:32:62:4c:ef:
                    db:f1:42:13:48:f6:05:6f:79:8b:66:35:f0:4c:e1:4c:
                    19:fb:77:7d:c7:2b:70:72:77:18:de:cc:69:da:cd:fd:
                    a2:d8:cb:33:fd:47:11:d0:c2:8b:cb:03:5b:bb:6a:1f:
                    02:83:35:1b:60:19:09:1f:9d:ab:fd:b7:dc:5b:c0:dd:
                    96:4f:d6:94:31:c6:99:13:8f:b9:db:ac:7f:c6:a9:b9:
                    a5:f6:86:24:5a:20:1d:2d:8c:f0:2a:f3:47:5e:99:af:
                    99:9a:71:b7:4e:46:39:c1:cc:b8:8b:49:7b:06:6e:84:
                    94:cc:d9:fc:50:9b:1f:ad:3d:44:4f:73:f4:5c:4d:da:
                    7b:88:b5:34:30:c5:58:0e:ad:59:d1:02:ea:99:15:3e:
                    a2:36:f8:ba:0d:ff:52:52:99:94:fd:9f:64:67:27:78:
                    d9:61:ba:cd:4e:a5:3b:32:25:7e:ae:b5:93:2b:3e:3e:
                    5d:52:42:0a:22:de:c6:ed:42:9b:a3:b2:77:4e:44:78:
                    7b:19:66:d9:ee:1c:ce:55:a2:c5:32:5c:29:f9:14:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:8d:89:ef:5e:47:e5:4c:80:74:d2:ae:1a:80:30:c7:
        b1:26:d0:ff:72:5a:1b:20:1b:93:69:a6:5e:8e:d5:2d:
        05:42:3d:f9:da:12:39:a2:f5:7e:7a:e7:6a:14:a0:0e:
        12:5b:5e:aa:06:3d:39:9d:07:44:1b:5d:71:23:ad:04:
        8a:f0:7b:44:9e:2b:2a:43:a9:74:2f:d2:22:ac:80:23:
        ef:7a:85:98:e2:36:f5:7f:e9:1d:cb:9f:02:49:32:5a:
        c7:07:e5:b3:52:7d:d8:6a:91:61:c3:5e:18:40:94:5e:
        5c:4f:8d:02:fb:61:db:70:0f:d6:77:e1:96:eb:ed:51:
        c6:10:43:89:17:ed:d1:a3:54:d6:03:04:ae:0a:74:b5:
        2a:d0:04:c6:d7:74:60:de:75:1a:56:01:3f:31:68:8a:
        4e:2b:80:74:3c:da:27:0b:d7:c1:9e:3b:e0:95:64:e8:
        a2:91:71:ab:87:bc:35:ab:ea:ba:50:1b:98:e5:e9:63:
        1b:0c:73:ac:8c:70:23:24:9e:af:29:70:d7:d2:a9:8f:
        93:47:61:1d:da:a4:49:b9:de:8e:e1:0b:e0:02:2c:3e:
        89:17:d5:1e:9e:da:d4:08:b1:e9:29:44:38:96:fc:38:
        00:ae:4e:48:68:b0:88:9a:42:2e:2f:a5:59:78:ea:97
    Fingerprint (SHA-256):
        C0:C3:F9:E9:35:21:98:B4:7B:A7:EF:0F:60:1D:D6:71:73:B7:B4:38:62:26:7F:97:DA:25:7B:DF:37:7E:CC:E1
    Fingerprint (SHA1):
        73:BF:CE:87:4F:5F:66:CA:50:B2:02:3D:7F:31:5A:AB:9B:47:CE:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9033: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:0e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:12 2017
            Not After : Wed Aug 02 15:46:12 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:37:a2:6e:be:b1:00:33:4d:3f:72:7f:64:3b:c9:de:
                    3b:0c:dc:0d:72:b8:a6:be:f8:00:31:b4:b0:e9:d3:00:
                    a9:76:12:8e:f9:a2:f3:87:10:d6:8b:16:af:f1:fd:68:
                    43:a1:66:ca:c7:04:8f:ef:ad:75:32:69:d0:e5:c1:cf:
                    6a:82:8b:65:a4:84:96:96:94:e0:ca:5c:cf:b6:e1:69:
                    90:3e:c8:0c:00:a9:00:99:17:fe:19:cd:42:35:af:76:
                    fe:fe:e2:2c:45:63:6b:9d:ff:36:99:4a:ea:74:36:0f:
                    15:23:90:51:95:0c:e7:a6:4a:39:11:18:77:24:11:01:
                    8e:56:95:41:80:f0:f0:33:89:5f:99:ab:4b:58:4e:a5:
                    e3:0a:22:f3:5a:2e:44:22:d8:3a:23:47:ae:40:ac:dd:
                    5b:11:0b:5d:0a:f6:28:81:18:bf:d5:20:4d:45:32:1a:
                    14:61:17:46:8a:12:a7:17:79:57:ad:f0:83:a2:5e:d0:
                    37:1f:81:a3:af:78:52:b8:8e:65:9b:2a:60:f9:88:e4:
                    93:02:2a:45:eb:47:ed:a7:9b:c3:7e:97:c6:99:76:19:
                    7e:c3:d9:cc:19:a5:1d:1f:75:50:1e:29:88:24:20:c5:
                    5a:ec:b7:6f:63:a3:62:77:f6:f7:ec:e8:8c:a9:2d:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:d6:32:f4:cf:c2:35:8d:75:da:14:03:5c:fc:92:81:
        9e:fd:83:b7:5a:d8:5b:ff:41:ab:48:ea:a9:ba:d1:9d:
        2a:9d:17:45:bd:3b:4c:9e:1d:e0:ad:9e:5a:52:84:84:
        90:f2:7f:3a:15:62:ac:7d:3d:00:98:b8:17:6f:a9:b5:
        d8:a4:fe:2f:5b:46:9d:29:97:f1:36:84:db:52:a8:7c:
        05:42:d4:c2:ae:ca:03:4e:2d:a1:22:32:d7:92:df:a7:
        ca:7c:cb:99:49:12:dc:52:2e:e0:13:c6:54:7c:5d:43:
        c2:ba:90:46:73:3e:c0:5b:24:be:11:9b:bf:1c:d0:b0:
        da:a1:60:8a:cf:cd:e1:09:ab:f0:30:90:56:d7:1f:7e:
        3e:0c:d9:18:10:01:14:60:ea:1e:a1:e0:6b:05:84:24:
        60:86:db:91:5e:35:0c:27:55:51:64:d7:18:c9:29:98:
        04:d2:95:04:2c:96:54:d6:29:e8:d9:10:41:f5:1f:52:
        50:73:04:b6:50:1d:bc:66:fa:8d:7b:8e:0d:db:1c:65:
        38:4b:86:82:19:59:5b:29:40:07:db:0b:58:5a:5c:94:
        cc:62:f0:0d:f4:52:c2:81:8e:2e:9c:7e:17:1a:97:8e:
        69:7d:5f:a6:e2:fc:8c:70:a2:02:dc:0d:97:03:87:a9
    Fingerprint (SHA-256):
        78:CC:16:5C:A8:46:70:22:45:B8:3B:13:41:01:B9:E8:48:91:83:33:EB:98:D8:E9:22:99:84:9C:18:18:AD:68
    Fingerprint (SHA1):
        75:46:F6:98:0D:A1:CB:87:2F:11:C9:67:BA:2A:B9:F0:CC:0D:93:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9034: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:0f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:13 2017
            Not After : Wed Aug 02 15:46:13 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:87:78:d6:50:af:6a:d3:97:dc:77:78:20:7d:85:da:
                    5c:61:e2:02:94:ea:f4:eb:29:81:ff:00:a2:6c:ae:9b:
                    69:a6:46:45:40:c6:99:16:ff:c5:c5:32:d3:42:21:2f:
                    c4:47:e0:12:bb:39:10:08:36:9d:74:93:8e:1b:2a:b4:
                    12:f0:ee:1c:39:fc:77:8c:44:d9:34:e6:3c:b4:ce:ab:
                    79:49:c0:bb:79:87:f8:27:60:90:87:a3:0b:5c:9a:f4:
                    57:9c:f2:15:26:d2:ef:fb:cd:96:e1:ae:a0:cc:6b:97:
                    5e:cd:f9:e7:e0:64:ef:5b:82:48:b0:93:c6:40:68:ce:
                    40:44:43:5d:bd:89:21:2c:27:15:48:44:6f:ad:3e:0f:
                    29:f0:33:e0:38:e0:2c:66:32:e8:05:1e:15:eb:dd:b1:
                    24:73:06:23:7d:28:10:27:0d:d3:84:00:e1:29:a6:f8:
                    87:1d:06:5b:5a:d6:5b:cb:02:8e:e5:1a:67:e6:eb:d5:
                    21:df:d6:69:bf:31:e5:5c:29:36:7f:0c:72:96:52:14:
                    a9:b0:3d:0b:b4:85:f7:86:8a:10:74:c3:95:17:9e:c7:
                    bc:33:f6:02:55:64:2e:03:16:9b:74:92:5f:74:f2:c2:
                    ac:73:33:fc:92:4e:c5:2d:8e:98:d9:a5:69:1b:1c:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:05:8f:0e:e6:c1:f3:ca:02:df:af:03:47:1d:92:61:
        83:77:a3:b8:86:a3:5e:bc:dc:d6:70:a0:97:28:97:5a:
        96:3b:94:f6:4e:ce:95:b6:41:07:49:92:49:4d:06:62:
        83:94:07:44:82:da:28:7e:9e:57:41:70:c7:ed:46:4e:
        56:5f:b3:36:c4:a6:2d:49:bd:bd:7c:8a:b2:69:24:e4:
        6f:d3:fc:84:71:60:cb:d6:b6:4f:26:9a:11:98:6e:63:
        e9:b2:ec:d9:43:c6:69:d3:df:e8:49:c8:bc:43:3d:96:
        99:79:17:02:34:6d:ae:87:d3:6d:ef:f3:12:1b:ec:83:
        6d:c9:7b:fd:e2:13:f6:ad:ab:07:24:c2:95:cd:04:6d:
        89:5e:dd:6d:1a:76:8e:3b:67:11:ac:6b:f9:93:67:cf:
        c8:b9:9f:c5:fe:6f:82:37:50:cc:fb:c2:d1:c5:90:78:
        bf:cb:12:b3:e3:d0:15:0f:5f:2b:cb:b1:50:97:d0:03:
        92:0d:e5:2f:58:e4:19:16:d5:9e:0d:b2:46:49:75:2a:
        62:3b:81:15:e9:ca:14:8f:d5:95:09:25:b8:e9:18:4f:
        13:f3:35:d7:0b:c4:c4:b1:92:0c:85:f0:e8:d9:3a:12:
        42:28:65:ed:30:3c:7a:fd:b7:d6:1c:9a:3f:c2:9c:64
    Fingerprint (SHA-256):
        D1:6B:3B:D9:E6:0F:3E:95:0B:4A:8C:98:BC:9C:C8:CE:EC:BD:B7:1F:80:8B:ED:CB:76:3E:08:C1:08:60:02:45
    Fingerprint (SHA1):
        6E:8F:B7:AD:99:A0:67:5A:48:44:9C:9F:B0:39:AF:B5:F7:14:66:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9035: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:10
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:14 2017
            Not After : Wed Aug 02 15:46:14 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:cc:f1:45:4c:75:e7:f8:bd:ad:27:1f:ae:59:01:79:
                    b2:89:dc:db:a5:fd:ca:35:e4:26:04:7b:47:89:43:be:
                    a3:29:ac:19:d7:2c:c0:ab:60:72:bb:60:aa:fb:76:5c:
                    1c:ed:86:d7:15:64:2a:48:76:ce:fa:37:00:e5:36:b4:
                    04:c9:de:43:a1:f1:0c:5e:e3:a4:50:3f:3b:bb:2d:7e:
                    ca:71:64:3a:a2:0b:2f:11:2c:b1:35:6f:88:d8:1e:cd:
                    6c:46:dd:da:00:de:86:44:62:d9:aa:b9:2c:89:15:28:
                    a4:4f:ed:f2:ee:79:94:5d:eb:d1:43:28:a1:20:34:08:
                    5b:c3:51:0d:f2:9e:e0:b9:8e:ec:7b:61:bd:ba:5b:d9:
                    5e:1c:61:61:af:41:24:5e:86:b7:ad:d4:0f:7c:b7:5d:
                    cb:c2:43:7c:3f:38:63:f4:d9:06:48:f8:87:61:47:19:
                    2b:87:e7:58:eb:b6:81:53:d8:1e:df:77:f6:bb:ff:62:
                    55:23:85:6c:c1:6c:87:27:e4:ee:19:f5:e5:37:45:40:
                    0b:b0:d5:f8:aa:87:94:b2:51:6b:80:a4:5e:63:e5:61:
                    fb:29:5b:fc:c3:a7:3b:bd:a1:08:8d:42:21:18:44:e9:
                    c6:11:aa:df:ef:5e:30:7e:4e:23:ba:80:c6:2e:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        be:3e:b5:ee:49:2c:bf:ec:16:23:c8:34:ec:14:12:2e:
        f1:d0:84:70:90:87:a0:95:54:31:ea:1d:ef:19:d4:4c:
        b9:97:f1:b3:79:75:66:61:65:fd:fb:70:fd:f1:99:b3:
        7c:df:f4:e0:d4:0e:42:51:21:99:91:72:ab:36:0d:13:
        90:21:0e:16:a1:43:7e:b1:09:1e:97:2d:db:17:f9:6c:
        4b:3c:93:13:05:aa:7d:8c:bb:c2:1c:77:79:a4:6e:f1:
        f5:87:f2:a6:0e:36:b8:21:6a:ac:95:e1:cd:87:08:3c:
        95:72:6e:69:86:c8:d7:08:49:8a:70:1e:d0:af:76:88:
        3a:8c:88:d2:bb:3b:53:30:6e:4b:cb:b7:c4:0e:2a:19:
        66:6b:23:33:f9:d6:57:42:57:f4:0d:57:49:4d:53:67:
        1e:a4:f0:c0:df:4d:85:2d:4a:e0:80:55:37:ef:69:8c:
        e8:ab:30:34:46:4d:69:ca:de:b4:bb:fa:1c:c4:c3:24:
        37:b1:ca:95:a8:94:c4:80:6a:f8:bc:27:24:03:00:9d:
        6e:4a:3e:36:a2:b1:29:a2:2f:97:2c:ef:43:ff:91:8e:
        d1:3b:1a:35:a1:ea:79:2c:1e:0d:b7:a1:0a:9f:6d:58:
        17:89:f1:ba:cd:16:60:0f:38:ae:6b:d8:cb:f3:09:bd
    Fingerprint (SHA-256):
        6C:10:35:70:67:40:1D:2E:E2:4A:C8:17:E0:2B:51:EE:43:93:31:39:01:D2:E0:AB:C2:40:BD:9E:C2:67:C2:A3
    Fingerprint (SHA1):
        FF:60:95:EF:C7:C8:27:10:1A:B8:17:9A:42:01:C5:02:7C:C3:F7:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9036: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:13
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:15 2017
            Not After : Wed Aug 02 15:46:15 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:2c:32:11:89:18:c2:b0:42:af:a0:83:ca:71:1f:10:
                    be:20:fa:ad:a9:b5:cc:90:ec:25:b8:1c:7e:59:9e:28:
                    ab:21:88:44:0d:b8:18:63:9f:39:4d:46:b2:47:6d:0a:
                    89:2e:62:82:67:a8:4e:aa:c3:7a:8e:15:c5:6b:f0:a3:
                    e2:67:df:bb:6d:c4:f5:e1:89:74:7b:14:9c:7f:98:4b:
                    0c:0a:ef:f5:2f:6b:1a:94:52:a0:1a:f1:52:23:46:9a:
                    44:6e:62:45:70:9f:89:d3:60:0f:12:38:ef:ab:4b:61:
                    ac:2d:28:93:a6:dd:45:3d:be:87:7a:70:18:fa:96:0d:
                    ae:41:4a:d7:78:16:17:a6:f2:3f:ab:66:19:50:82:17:
                    57:e8:23:41:1b:de:f3:cc:b4:4d:fd:a8:ba:08:c0:19:
                    73:be:74:67:2d:c1:83:9f:43:51:07:07:a9:6f:49:c6:
                    06:ea:f2:02:0d:b4:74:cb:df:ba:a0:60:af:cb:57:33:
                    c7:62:7d:e0:25:bb:9f:5c:0d:b9:f0:57:29:e5:b0:5e:
                    70:ee:cb:33:03:fd:ca:72:d4:92:1e:3a:99:7d:1c:b7:
                    2a:7d:e2:7b:9e:02:30:ae:4a:0a:19:b5:83:38:2d:c8:
                    ad:15:27:46:23:d8:14:75:bf:ac:84:2e:d9:22:0a:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:a0:cb:8e:0b:e3:69:96:65:b2:cf:1c:0a:05:ee:d9:
        32:ab:98:f8:d9:73:02:52:85:80:4f:b3:91:17:e3:5c:
        ad:4e:4e:e7:60:f0:40:22:2b:23:96:32:b1:4d:fd:ac:
        ad:15:62:52:81:f4:ac:41:39:7c:02:04:68:ae:c8:2e:
        22:73:f3:17:60:6b:ca:92:57:e8:4f:94:e0:4e:5a:1f:
        af:82:d5:de:3b:51:0b:3a:55:bd:c4:6c:b8:67:0e:e4:
        ae:5c:2b:db:1f:f8:62:dc:b5:4a:c8:c0:9d:f9:a4:0a:
        52:6e:95:03:c6:f9:a6:4a:6a:bb:19:d5:f4:f3:f5:1a:
        b4:74:9e:26:f7:34:5c:e0:75:9d:f8:1a:61:1b:76:62:
        f6:f6:b1:9b:3d:cc:00:70:75:82:ce:d9:d9:c9:30:c3:
        0a:97:3b:d5:bb:a0:5e:51:f5:f6:88:6f:2c:4b:57:58:
        41:0b:cf:e5:75:cb:79:bd:ca:24:a1:43:01:bd:f0:0d:
        4c:5d:64:08:61:74:70:f8:5b:42:13:d3:cb:36:dd:55:
        af:63:48:de:9a:a4:c0:d7:c6:a3:5a:e1:56:c0:c3:06:
        cd:09:04:c5:f1:60:43:0b:d1:60:a9:16:ff:6e:ae:6b:
        e3:e7:9c:ef:58:16:1d:11:ec:aa:1f:15:4c:d6:75:5a
    Fingerprint (SHA-256):
        8E:99:87:9C:86:16:4B:3D:34:65:01:10:78:92:C1:EA:16:B8:E1:47:4C:EB:BD:0D:AA:1B:A7:9A:1F:DD:05:C0
    Fingerprint (SHA1):
        9E:B7:2A:A5:4A:C2:55:A7:6F:B6:E0:B7:60:70:2C:05:88:93:43:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9037: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:14
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:16 2017
            Not After : Wed Aug 02 15:46:16 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:72:95:69:d6:ec:4c:de:88:9b:82:67:5f:dc:b5:ab:
                    3b:3f:66:56:22:cc:ff:35:db:bd:b5:af:65:53:af:82:
                    24:77:31:3e:ea:80:01:78:90:5a:39:fa:ae:72:ed:ae:
                    aa:6e:9e:bd:0d:7a:64:46:32:90:98:5a:21:14:c9:47:
                    53:5a:43:87:8b:88:71:0c:69:da:73:30:62:de:78:8a:
                    fa:b3:8f:b1:ef:bf:31:8a:d9:f2:e3:da:73:e3:0d:74:
                    8f:f4:69:fb:f7:c6:b6:df:26:ef:bb:78:cb:ca:b8:df:
                    78:6c:06:71:a3:52:bb:59:b4:fc:e2:23:ae:28:b2:a0:
                    1f:08:dc:14:2e:b6:c3:51:5d:40:a5:a3:81:40:e1:86:
                    cc:c2:ee:98:7a:26:84:d0:34:bf:4b:38:01:a9:f7:bc:
                    ae:09:de:f5:f2:dd:da:b6:1b:74:d7:bc:71:7b:56:75:
                    05:b4:f1:55:9e:96:60:c7:95:89:b2:a0:f3:b4:c3:c3:
                    02:e8:f7:02:d2:16:de:8c:9c:65:ee:6c:f1:12:40:a7:
                    15:6a:62:f9:6a:57:56:19:4b:01:bb:a8:ea:c2:7f:3b:
                    fe:f8:2a:49:66:fc:39:07:4d:94:c7:93:72:7d:e5:5f:
                    79:c3:3f:e5:10:d9:36:89:83:c3:fb:e1:a7:1f:c5:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:80:63:a7:32:da:5a:33:16:9c:1b:2e:5a:09:86:0f:
        5a:4b:7f:46:35:61:8f:f1:a9:be:1e:c6:4a:bb:e2:ad:
        95:40:74:40:fc:d0:53:9c:51:d2:01:32:c8:f8:a3:7a:
        da:23:63:8d:f1:47:f6:29:59:66:07:af:6f:4b:4b:06:
        89:4a:b4:7a:b5:02:cd:ab:f4:96:1d:bd:e8:9d:40:4f:
        f5:3b:48:98:64:55:79:5b:18:20:24:ed:b7:e8:e4:1c:
        26:35:31:5a:a6:a8:76:39:5b:70:37:14:b4:37:34:80:
        0d:9c:22:08:11:2a:22:16:c5:c5:4a:a0:51:7e:e5:62:
        d7:9b:b1:f7:61:04:b7:a8:19:40:49:17:e9:da:0a:fe:
        d2:fe:bd:91:c4:0c:a0:66:7d:da:39:e0:90:14:0e:f0:
        f3:20:2c:b4:37:fd:f9:91:55:d8:fa:f0:f1:94:7b:2e:
        35:c6:1c:68:cf:47:d3:72:d0:21:77:62:d1:f5:a9:32:
        d8:b5:1f:31:30:3e:d7:ea:32:2d:96:43:e8:5f:43:ee:
        c3:80:0a:34:62:db:31:b7:89:bc:0b:e4:93:2b:c1:6d:
        9c:84:2c:d4:8e:69:fe:ad:69:ef:98:4b:bb:f4:f6:eb:
        fd:ee:b4:3a:c3:87:26:57:01:ba:29:76:5e:74:8f:5a
    Fingerprint (SHA-256):
        DD:4A:64:EA:37:D1:9A:CD:29:06:DA:CF:EF:48:22:55:56:1C:2D:FA:71:D9:CB:C7:B9:48:8B:D9:35:74:78:8B
    Fingerprint (SHA1):
        AC:41:9E:B9:2F:21:80:DA:35:DA:17:F5:20:62:29:14:A7:30:04:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9038: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:15
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:16 2017
            Not After : Wed Aug 02 15:46:16 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:a2:09:cf:99:14:bb:10:b1:56:18:2a:5a:b9:59:74:
                    c5:4b:24:15:22:1b:4e:ba:6e:f8:fd:b0:51:cd:59:4c:
                    df:6b:c4:e5:a2:1e:11:73:35:58:35:fe:00:fc:a9:63:
                    55:5d:54:51:5b:40:58:7e:ad:3c:a8:41:7a:aa:77:51:
                    58:6f:30:d0:0d:1e:aa:68:1c:b1:45:53:ec:8b:ad:11:
                    cb:6f:ad:11:6f:f5:e4:19:32:ae:86:4f:24:b9:00:5a:
                    59:37:ac:ec:d3:9b:9e:75:69:d2:a1:0d:ed:8a:67:d9:
                    32:37:5e:39:01:86:54:83:92:5a:4b:ed:15:3d:c5:82:
                    e7:1b:d6:13:f3:8f:75:23:35:0f:cc:2e:1e:b9:54:2c:
                    80:b9:b7:03:09:be:70:7a:fd:7b:d8:a9:5e:6a:83:56:
                    88:6f:86:b3:3d:b5:48:8f:4a:2e:11:ea:8a:07:40:83:
                    19:09:8a:8f:97:4c:52:81:43:36:aa:f8:ee:b5:0b:86:
                    d7:40:46:f2:fd:07:e4:be:a8:7f:a3:c8:d3:8d:13:8d:
                    da:2d:04:54:ef:2c:5c:a1:9e:75:2c:52:e2:64:42:29:
                    b0:81:c8:7a:90:51:c0:48:79:e0:14:28:1b:c5:79:1d:
                    bc:ae:b1:dd:1e:28:07:9e:2b:48:03:54:c7:be:f4:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:89:41:1c:08:b7:79:e2:28:30:78:33:f6:22:a7:7e:
        9b:d1:cf:4e:ee:37:5f:06:97:01:d0:14:22:fd:f6:c6:
        e5:55:9b:44:89:73:fd:d6:88:29:f6:56:bb:ff:29:90:
        e9:9f:44:6b:37:b1:de:72:a1:d1:03:af:28:21:14:e7:
        e7:d9:c0:fb:f0:3c:ad:1b:4f:95:d0:4b:86:ab:6a:01:
        b1:e8:6b:da:4f:af:8c:75:2c:55:76:75:bc:9e:c2:b8:
        da:d0:86:7f:4b:6f:08:81:2c:8a:d1:a6:30:eb:db:0e:
        22:54:5b:bf:18:8d:48:f8:0a:26:f5:f1:e4:4a:04:e2:
        6b:80:25:5e:8a:6f:d8:94:6f:82:52:b1:da:4c:38:d4:
        49:14:5f:fb:21:4a:91:5f:c0:08:b0:dd:96:a4:21:87:
        1d:af:39:3d:71:16:0a:c7:7a:4c:00:18:e5:e3:7d:42:
        2d:3f:29:e1:8b:ef:2a:52:2c:6b:9e:74:5a:ac:57:26:
        44:7a:96:03:d0:8f:80:25:a2:63:a3:74:6e:6e:43:c0:
        d7:49:5c:7f:e6:01:ba:0d:84:05:23:9c:f2:e3:96:4f:
        60:20:7a:53:1c:86:45:be:e3:82:bf:51:0b:d0:7b:87:
        5f:e6:12:45:34:bc:0d:ed:41:06:b1:53:39:8a:fe:4f
    Fingerprint (SHA-256):
        1A:55:15:37:5A:DF:E8:7C:CC:F6:12:F4:71:17:43:CA:F3:6A:F0:1C:55:07:7B:29:E2:DF:70:14:64:6F:42:DE
    Fingerprint (SHA1):
        ED:CF:78:B1:32:7C:F2:3A:B5:E4:A8:99:BE:B9:82:7D:F7:05:44:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9039: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:16
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:17 2017
            Not After : Wed Aug 02 15:46:17 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:9b:db:ea:1d:46:e4:60:86:92:42:08:a2:e3:48:8f:
                    7a:2c:55:e1:ec:7c:27:c7:bc:d1:27:fc:6d:58:c8:58:
                    b8:0c:27:26:91:58:83:b7:88:39:58:56:ec:ce:30:d3:
                    83:af:1a:9a:61:44:19:93:88:a9:3e:85:3e:6c:49:31:
                    c7:f0:f1:75:e7:52:2d:be:4c:f1:ef:52:71:45:a0:51:
                    e1:a6:d3:d6:08:02:d7:6e:57:38:6b:8f:27:27:d3:02:
                    7c:97:0d:0b:ec:5c:4b:ac:de:cc:03:cf:28:fd:7c:6e:
                    2c:be:05:09:37:ac:2d:40:b8:7b:62:02:08:be:10:b8:
                    9a:20:91:2a:5d:0f:08:cc:a9:b7:b0:bf:2a:d1:f9:41:
                    ff:56:53:e6:e6:dc:0d:50:f1:4c:dc:cb:9a:9f:2a:6b:
                    3e:68:d0:b4:64:d6:11:7e:99:16:a9:9a:1e:d2:35:18:
                    5a:1b:06:33:3a:2f:a3:dd:7d:af:28:d5:77:ce:a7:e3:
                    dc:8c:33:84:e5:1b:0b:8d:c6:80:4c:c1:40:ee:4e:5e:
                    f5:38:af:2f:e1:2a:f1:3f:d3:56:e0:68:5e:bf:20:91:
                    ab:89:0b:40:a2:e9:4c:6f:31:b7:fe:3b:9f:7a:31:2d:
                    e7:31:4f:49:36:69:14:14:78:76:e2:73:51:a5:f6:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:aa:37:36:9f:fb:cd:3a:f8:46:58:a8:42:88:c5:b8:
        89:42:b3:3d:9d:12:e6:ac:a6:c2:e2:60:e6:31:76:62:
        26:d4:45:4a:9d:65:ea:40:74:56:05:c0:2e:7b:70:54:
        a8:bc:13:6f:8e:0d:e4:0b:98:9c:a4:45:a8:9e:ce:2c:
        88:bd:a0:0a:f6:45:d6:06:ce:4b:d4:ef:d6:26:74:50:
        51:bb:bd:73:a0:4b:76:2b:40:94:e7:0b:e3:7f:74:ec:
        eb:09:f8:d5:19:8c:fc:2a:7b:03:6b:50:bf:f4:ee:c2:
        4a:5b:f7:72:fa:32:ba:3f:8c:9e:a9:04:fa:47:a2:a4:
        59:26:b7:cb:55:92:39:7d:7d:b1:46:db:ff:52:51:3f:
        d8:8f:48:b5:5c:57:db:34:1d:a4:21:1f:8e:f4:16:16:
        05:b4:f6:3b:ad:0e:55:3b:63:95:fb:f8:a5:cd:97:a9:
        36:6c:c0:f5:f2:c1:97:5e:a1:6d:2d:8b:4d:c8:4a:a7:
        63:77:f0:53:aa:db:7f:39:6b:88:62:e5:66:23:12:49:
        99:b2:1f:f0:d6:2e:d7:49:f1:60:1e:66:14:59:a1:6c:
        8c:fb:ff:53:44:30:42:0e:9b:97:6d:64:cf:f2:ba:ab:
        9f:fd:61:ca:3d:69:fb:ec:f9:90:34:cc:b2:56:3b:88
    Fingerprint (SHA-256):
        2B:EA:F6:1D:44:BE:56:EE:45:5B:FB:2C:7B:A1:95:7A:56:46:EA:38:C4:FB:56:B4:C1:5A:C6:6E:84:06:0D:53
    Fingerprint (SHA1):
        47:0B:B1:34:FD:C7:49:F1:59:EF:2C:9C:D8:F0:21:C3:9D:4F:E2:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9040: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:18
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:46:18 2017
            Not After : Wed Aug 02 15:46:18 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:f9:0d:94:18:7c:be:6a:7b:ab:c1:f2:0c:3e:41:50:
                    90:f7:89:67:81:5e:23:ae:7c:db:42:f6:fb:c4:ef:6b:
                    82:4e:73:fc:f0:00:66:2c:25:c4:ea:99:7d:23:0c:9f:
                    ac:df:c9:1a:b0:8b:25:18:f3:43:12:77:13:b5:54:c4:
                    23:2c:49:94:37:af:11:dc:2f:92:08:95:cc:bc:2a:be:
                    59:8e:9e:47:c0:1b:11:7c:a1:e5:94:f7:0d:ac:2a:4a:
                    f6:e3:67:b4:62:a9:64:14:8b:00:dc:33:66:9b:f8:b9:
                    f0:a8:8c:60:62:f6:a8:fb:69:40:27:6b:72:2e:25:fa:
                    bd:0f:eb:2e:4b:f8:15:b0:97:f5:86:b6:75:7c:7b:ec:
                    aa:fc:79:aa:22:ee:9a:15:a4:0f:aa:99:7a:82:58:eb:
                    f8:df:ac:4c:fc:8c:65:ab:99:1c:78:9a:a3:4b:22:82:
                    15:6d:9b:50:aa:d3:d1:d5:ac:a1:34:69:9c:f9:fa:ae:
                    c1:84:b1:1a:53:c0:4c:4f:56:6a:09:be:8a:cd:67:14:
                    27:e8:d5:02:16:a4:07:f7:b9:84:a9:45:1b:b7:0f:b6:
                    e6:6f:7b:83:eb:b4:de:43:32:4e:1b:98:ce:94:a5:f6:
                    cb:44:96:75:35:06:92:1d:a5:a9:e1:c3:88:a3:13:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:b2:68:07:81:1f:e6:af:f5:30:c8:3c:61:25:7b:7b:
        80:bf:fd:11:94:1b:31:c1:ec:a4:42:b0:c9:d9:a4:44:
        f9:08:a5:4a:86:95:2d:14:10:8c:eb:52:a6:db:58:14:
        9c:2c:fb:a5:c0:a1:a0:f0:45:2e:c7:e1:e4:e1:c8:5b:
        dc:44:5d:ed:a0:c9:27:4a:23:37:61:02:e3:00:3f:4f:
        99:02:8c:73:25:13:0e:68:ba:de:bd:80:df:b5:fc:46:
        82:fb:f3:63:e5:95:83:04:f8:8f:81:f1:2b:db:2a:58:
        f9:ea:8e:94:f0:d2:43:d9:92:46:e2:b9:0a:ea:bb:06:
        07:6d:6b:74:aa:42:c9:a3:f8:2a:28:b1:b6:b9:b2:84:
        d0:45:67:e0:81:68:1a:1a:b1:4e:b5:7e:67:f5:e3:c1:
        7f:90:f3:61:92:db:8e:49:5a:83:2f:a1:78:62:1f:40:
        cc:81:4e:6f:d5:fc:67:4d:e7:04:be:5e:46:16:28:23:
        e9:a8:51:93:ae:04:56:76:fe:f3:e5:60:d8:5e:79:5f:
        f9:a9:13:4a:e2:8e:5e:c8:bb:e5:51:1c:eb:e3:7b:80:
        54:6a:70:4c:5e:3f:e2:e8:a4:f0:82:bc:e1:9d:ff:2e:
        0b:63:76:67:36:95:e7:be:90:e7:6c:6d:dc:0f:9d:7a
    Fingerprint (SHA-256):
        B8:27:E0:E5:6D:28:86:9B:D4:50:02:C3:3B:B6:FA:17:42:06:EC:C8:79:E5:40:DB:16:2D:82:CD:5B:98:E1:2D
    Fingerprint (SHA1):
        DE:BC:FE:76:95:78:A4:2C:E7:64:77:9C:D0:7F:6A:A3:90:17:0E:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9041: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9042: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9043: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #9044: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:1b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:46:19 2017
            Not After : Wed Aug 02 15:46:19 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:20:a7:dd:da:3d:7c:65:af:e6:4d:ef:d7:d5:b3:ec:
                    52:f6:4e:9d:0c:5c:be:1a:bc:c8:e6:a8:a0:65:0d:07:
                    ec:74:96:4a:ac:56:e6:1a:b3:f5:eb:a6:e9:63:a5:c6:
                    1e:fc:0a:05:97:f3:5d:17:26:70:0e:3d:15:5d:e8:bf:
                    e5:6c:bc:cf:5d:8d:cd:d7:e2:4c:35:15:7e:78:43:39:
                    9e:85:14:f8:8e:3c:62:3f:60:f5:09:b7:ff:36:99:1f:
                    cd:52:ef:a8:88:fb:9b:90:92:2c:fe:c5:2b:d5:5b:6a:
                    b3:2c:7b:cf:3a:91:93:be:86:c9:32:4d:b2:c1:cc:54:
                    10:11:e5:d7:b9:15:1b:2a:97:ef:50:3a:56:b8:00:74:
                    b7:37:43:de:0f:e5:b7:a0:fd:ae:8f:de:93:81:6e:b2:
                    7d:97:0d:31:13:65:45:e8:2c:bd:c0:03:2a:03:3d:a7:
                    5c:15:01:97:91:6e:7c:2d:84:f7:a4:95:5a:af:13:3c:
                    f1:2d:fb:b8:7f:19:22:d3:b3:fa:c0:fe:94:16:f6:70:
                    e2:8e:9a:ac:34:01:57:c4:de:82:e5:76:78:cc:91:a3:
                    7a:08:68:dc:d3:6b:b7:8b:04:c2:72:60:b6:ff:bb:92:
                    86:89:37:05:a2:c8:75:93:7d:40:e4:37:62:84:bd:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:6f:b7:93:fa:3d:4f:ed:80:db:23:b6:54:1d:c9:20:
        1b:76:e7:50:ce:cb:30:c3:de:3c:60:d8:a8:e0:9c:38:
        29:a2:ac:2f:bd:a5:83:10:3d:81:35:c0:14:e4:9d:b4:
        bb:f9:20:67:75:b7:2d:0b:b2:9c:1d:c3:84:76:dc:8b:
        68:de:a0:fa:9f:5d:99:ec:b8:90:ee:7a:f1:5f:08:b2:
        c5:07:12:72:7a:28:e8:3e:77:70:da:ca:7c:2b:54:a8:
        2e:92:44:7d:05:f5:fe:b9:35:57:89:c4:19:ca:4a:36:
        7f:7f:7c:78:18:81:74:0b:c1:8e:c8:24:73:3d:e1:10:
        ff:23:73:c2:1d:7a:6d:7d:9b:d4:01:0f:a6:7f:7f:67:
        49:f6:22:a5:f4:c8:43:b3:0e:e6:11:c1:81:32:06:b5:
        58:46:09:78:5b:e0:c1:1d:de:7f:c1:5e:00:92:5e:83:
        e9:45:f0:cc:2d:f2:de:91:48:24:4d:90:63:57:68:a0:
        da:46:70:30:99:50:d2:e7:a0:8d:c6:6f:b5:eb:6a:54:
        08:c0:3e:13:1c:4b:5a:3b:64:c0:f5:2a:e5:dc:14:fe:
        d9:c7:e9:e2:92:2c:68:8b:c1:e0:18:f4:da:0d:3b:5c:
        04:ac:08:d4:39:39:79:49:dd:03:32:dd:d3:42:91:b1
    Fingerprint (SHA-256):
        73:98:BB:3B:48:E7:79:5C:70:88:75:63:F1:80:1B:7C:2F:65:D2:D0:C2:9A:FE:0A:7E:97:59:83:97:A9:29:BB
    Fingerprint (SHA1):
        46:3F:D0:AA:56:57:7D:C0:DF:45:52:AF:F4:11:C9:EA:D9:09:BC:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9045: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #9046: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9047: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9048: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9049: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9050: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9051: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #9052: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8e:21
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:46:22 2017
            Not After : Wed Aug 02 15:46:22 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3e:4d:5e:61:46:1b:b3:1d:87:51:80:74:e9:54:11:
                    7e:6d:85:72:64:48:3c:43:f3:e7:bd:a7:57:eb:99:37:
                    c7:55:ff:45:a8:7b:48:a2:1f:69:ae:11:b8:90:3b:4a:
                    95:52:f6:bc:4e:16:d4:f3:be:4c:f0:8e:e4:dd:8e:f1:
                    05:63:b7:50:85:83:05:e0:d1:18:e8:28:79:2c:7f:7d:
                    d8:4e:36:98:2d:af:ba:64:3f:5e:dc:f7:c0:68:6e:3c:
                    93:3f:b6:43:02:f8:47:7c:4d:69:c8:66:17:65:13:6d:
                    61:51:73:f4:44:ea:1b:da:a8:e3:bd:53:66:24:03:05:
                    d0:ba:13:9f:05:03:34:5d:0f:37:ef:d4:a6:6e:c5:0a:
                    24:33:e5:f6:5d:65:30:45:0e:57:15:42:76:c5:99:01:
                    1a:c9:15:74:48:41:76:fb:0b:e6:92:4f:20:bd:5a:ad:
                    31:2e:41:29:e3:1a:11:e8:6a:da:08:d6:7b:1c:ac:47:
                    ce:87:88:dc:f5:33:e6:ef:7e:d2:09:1c:ba:24:87:a8:
                    65:e4:28:48:41:fb:70:73:cb:12:82:a9:82:a2:40:45:
                    6b:83:b4:02:8f:67:b5:d2:fc:e4:7f:02:65:1e:e0:e8:
                    9c:66:b1:2e:5f:9c:48:0b:2c:c1:e7:97:08:d5:90:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:13:dc:ba:7e:c1:31:20:ea:ec:54:3b:38:3d:8b:5d:
        30:1a:fe:d2:6d:bc:5c:1b:00:8f:a0:87:0c:e3:bb:48:
        88:f8:8b:1d:9b:c2:08:b5:6b:96:89:cf:1c:f4:7d:cc:
        a9:d8:4d:e5:a4:82:a4:41:99:29:14:3f:2c:e9:c5:f3:
        36:00:3e:58:4d:f1:81:3d:27:90:af:fc:98:ca:81:fb:
        a0:48:cd:a1:69:93:40:dc:dc:2c:b8:34:b0:63:88:f3:
        c2:15:5b:5d:1d:37:7e:7b:4a:b7:ad:8a:8b:76:4e:52:
        3a:27:4d:0e:95:6d:6e:bf:ba:2f:48:6b:27:e9:0c:9c:
        9f:15:83:9c:62:4e:81:c5:2a:88:89:22:57:4a:02:63:
        06:a0:40:1c:64:4a:d3:1f:4e:67:b2:75:fe:e6:c5:76:
        fd:64:08:4c:2b:66:f6:1a:63:bc:70:94:ce:44:c5:bb:
        c5:72:a7:d9:dc:52:ee:5d:e6:fe:6b:8d:f7:ea:6b:19:
        27:f1:37:1b:bd:86:7d:bf:43:bb:85:da:9f:44:d6:f2:
        5c:c0:89:31:04:3c:6c:e4:9f:12:d1:e4:35:1a:b2:ae:
        32:63:f5:9b:48:a4:4a:af:d8:b0:dd:21:80:cc:44:e0:
        9a:3d:75:28:f8:7b:fc:30:8b:c1:42:4a:4e:ec:d3:31
    Fingerprint (SHA-256):
        C9:A8:10:62:99:0B:9D:B2:BB:BA:33:0F:C3:0A:FC:BD:AF:F8:56:3D:39:C4:BC:14:D9:0F:BF:AC:52:8D:E9:26
    Fingerprint (SHA1):
        99:1F:27:F2:18:B6:64:38:47:E0:83:5A:9A:EE:F2:39:37:D7:38:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9053: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9054: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9055: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #9056: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9057: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9058: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #9059: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #9060: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9061: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #9062: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9063: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9064: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #9065: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9066: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #9067: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9068: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #9069: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9070: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9071: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #9072: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9073: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9074: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #9075: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9076: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9077: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #9078: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9079: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9080: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #9081: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9082: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9083: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #9084: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #9085: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #9086: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9087: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #9088: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9089: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9090: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9091: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9092: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9093: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9094: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9095: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9096: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9097: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9098: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9099: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9100: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9101: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #9102: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9103: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #9104: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9105: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9106: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #9107: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9108: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9109: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #9110: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9111: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9112: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #9113: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9114: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9115: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #9116: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9117: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9118: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #9119: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9120: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9121: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #9122: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9123: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9124: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #9125: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9126: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9127: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #9128: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9129: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9130: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #9131: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9132: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9133: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #9134: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9135: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9136: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #9137: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9138: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9139: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #9140: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9141: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9142: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #9143: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9144: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9145: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #9146: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9147: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9148: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #9149: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9150: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9151: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #9152: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9153: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9154: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #9155: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9156: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9157: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #9158: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9159: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9160: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #9161: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9162: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9163: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #9164: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9165: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9166: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #9167: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9168: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9169: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #9170: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9171: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9172: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #9173: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9174: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9175: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #9176: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9177: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9178: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #9179: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9180: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9181: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #9182: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9183: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9184: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #9185: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9186: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9187: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #9188: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9189: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9190: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #9191: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9192: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9193: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #9194: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9195: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9196: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #9197: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9198: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9199: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #9200: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9201: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9202: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #9203: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9204: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9205: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #9206: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9207: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9208: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #9209: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9210: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9211: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #9212: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9213: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9214: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #9215: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9216: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9217: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #9218: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9219: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9220: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #9221: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9222: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9223: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #9224: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9225: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9226: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #9227: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9228: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9229: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #9230: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9231: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9232: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #9233: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9234: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9235: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #9236: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9237: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9238: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #9239: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9240: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9241: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #9242: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9243: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9244: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #9245: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9246: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9247: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #9248: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9249: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9250: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #9251: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9252: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9253: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #9254: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9255: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9256: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #9257: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9258: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9259: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #9260: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9261: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9262: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #9263: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9264: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9265: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #9266: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9267: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9268: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #9269: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9270: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9271: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #9272: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9273: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9274: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #9275: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9276: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9277: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #9278: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9279: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9280: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #9281: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9282: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9283: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #9284: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9285: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9286: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #9287: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9288: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9289: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #9290: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9291: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9292: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #9293: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9294: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9295: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #9296: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9297: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #9298: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #9299: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #9300: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #9301: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #9302: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #9303: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9304: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9305: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #9306: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #9307: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #9308: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #9309: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #9310: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9311: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #9312: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9313: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #9314: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:47:08 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 15:47:08 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9315: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9316: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #9317: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9318: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9319: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9320: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9321: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9322: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #9323: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #9324: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9325: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9326: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9327: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1222 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1425 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 233472 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 131072 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    623 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    394 May  2 15:47 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #9328: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:56 2017
            Not After : Mon May 02 15:45:56 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:f1:cd:7f:d2:b0:de:74:3d:ed:33:3b:45:f5:e3:74:
                    43:88:e6:dc:dc:82:82:f5:35:74:8f:51:a6:0b:51:2a:
                    eb:25:06:66:3c:6d:a0:33:87:78:ff:9d:dd:00:d6:8d:
                    09:60:ca:68:75:f3:75:f1:bd:5f:0b:53:a5:f4:05:b0:
                    1b:7e:1e:58:b2:5b:44:15:18:f7:e7:c3:d2:a4:a9:05:
                    a1:f8:d2:af:2f:da:e4:58:e7:6f:2b:a6:a1:f4:ff:da:
                    b0:3f:cd:1e:8d:ef:93:41:56:bf:68:b0:f2:7b:b3:4e:
                    90:4c:0f:f1:dd:5d:f4:f4:21:fe:47:b4:51:2b:8f:a6:
                    f5:f2:d6:86:ab:5b:a1:8e:ce:f4:25:91:b0:c6:7e:50:
                    0e:c7:21:33:7a:a5:8a:43:b8:1c:a6:97:64:df:d1:38:
                    62:17:40:2d:df:30:c5:1e:f3:c1:be:f6:5e:70:50:b4:
                    fe:04:6f:8f:c3:b9:f8:00:e9:a9:85:f4:23:66:a2:ed:
                    cc:0a:95:94:ef:c3:8f:fc:9e:ad:e5:34:12:2d:a3:d0:
                    6d:c1:fc:6b:17:5f:a1:90:e8:04:6b:c2:98:03:41:b0:
                    c9:ea:05:f9:0a:51:c8:b6:b9:9f:eb:2f:9e:6f:61:3e:
                    65:0d:7f:06:21:31:60:f3:29:11:b0:34:04:33:35:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:32:5e:68:4e:a1:75:37:21:1f:26:d4:7d:6f:12:0d:
        a7:7e:71:e1:38:01:07:17:9b:88:89:78:b5:8b:c0:ee:
        6c:90:4e:6e:84:de:94:de:24:76:75:1b:27:3a:28:8d:
        80:73:e8:99:b5:c6:43:97:3b:23:d2:f3:09:f3:b1:fe:
        4a:7f:9c:11:af:54:89:e3:7f:df:5a:68:30:21:f7:50:
        74:fd:cf:dc:9d:c8:53:f4:38:25:aa:56:d3:8b:d3:aa:
        a3:2c:fe:58:6a:82:20:ec:11:5f:4b:f1:77:29:ef:15:
        f6:19:5c:b1:0c:5b:24:14:20:85:5e:87:fb:86:5c:31:
        7c:7a:42:29:a1:f7:33:da:66:7b:17:04:9f:ce:85:22:
        4f:62:75:99:ea:4b:cb:4b:c0:96:8a:84:ec:30:3a:7c:
        21:e6:0f:44:4a:de:91:5b:a7:cb:05:70:6f:e3:bb:06:
        d1:d6:76:cf:9a:bf:12:8d:b9:c3:52:61:aa:d9:78:1d:
        a9:a2:da:ee:25:e8:cd:d5:89:93:95:e1:40:11:33:c0:
        b5:1c:29:ae:05:d9:56:8c:b9:4d:dc:06:63:07:ff:23:
        ab:ac:ba:2b:06:26:83:4c:c1:cc:6d:f6:b4:c8:5d:5a:
        ea:68:5b:c4:6d:42:bc:fe:c4:b4:47:18:d6:db:34:a8
    Fingerprint (SHA-256):
        2F:99:6C:E3:98:18:66:78:6C:AD:20:40:F3:04:B0:B3:DC:15:04:F8:30:70:2D:33:70:62:F1:2C:5E:F8:6C:5D
    Fingerprint (SHA1):
        0D:81:72:B7:04:3F:6D:CC:CA:75:F9:26:EF:98:FA:1E:C2:FF:2D:58
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #9329: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 15:47:09 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:47:09 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9330: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d3:ff:bc:ba:ca:fa:4c:79:1f:0b:ae:2b:5c:aa:93:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9331: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9332: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9333: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9334: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                54:e7:85:5e:cd:c1:10:35:b7:3a:45:92:83:a9:c2:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:45:37 2017
            Not After : Mon May 02 15:45:37 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:f4:c5:59:87:79:b3:88:e7:e9:2b:38:26:6d:9f:
                    25:35:a0:a2:76:80:1c:cd:bd:cb:ea:7f:23:cb:42:22:
                    89:6d:bd:9b:79:46:6e:46:e6:e2:1b:31:d2:f1:a5:75:
                    bc:bf:eb:23:b8:90:48:29:ec:d2:15:9c:fe:75:0e:2f:
                    bf:d8:39:01:e9:e4:1b:bb:55:55:b4:04:86:ab:8b:48:
                    34:45:b6:8c:ab:9c:ed:3b:39:3d:d2:55:3d:44:6d:19:
                    b8:cc:16:45:fc:0f:12:38:58:d8:6a:6a:fe:37:8c:fb:
                    9d:2f:ce:85:e2:9e:81:be:ab:66:04:49:c2:0a:92:75:
                    96:48:67:74:0a
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:42:00:d0:3c:f6:cc:42:c4:74:b0:86:67:
        1e:8c:4d:96:9a:33:02:a0:61:b2:85:7b:06:eb:a1:ff:
        cd:b5:16:db:a9:d6:35:e4:28:32:4b:8a:8e:e0:55:de:
        62:6a:e6:20:e6:a7:92:14:47:36:15:37:d9:d0:bd:a5:
        6b:cb:fb:18:b2:6c:42:02:41:16:bb:03:09:fe:ab:55:
        0b:c4:15:5d:4f:cb:9c:a1:4d:53:46:8b:e8:97:61:cb:
        1d:ed:0f:68:7a:03:97:4e:de:08:04:61:8c:7f:69:78:
        25:19:e8:d6:97:74:f2:36:ea:80:09:fd:cf:40:57:3e:
        59:bb:21:a4:99:fc:5e:17:bc:c1
    Fingerprint (SHA-256):
        65:06:91:58:F5:3D:AF:AE:E0:E8:AB:40:89:DE:2A:C2:B0:DE:6B:DB:7D:5E:AE:D3:A6:64:28:3C:49:0B:5F:DE
    Fingerprint (SHA1):
        C2:D1:37:D8:46:14:87:36:9F:30:47:60:7B:25:91:68:49:D1:DA:B5
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:ef:5e:e5:8a:4e:c4:71:8d:b7:78:61:56:e0:ac:d4:
                    83:c5:16:42:ed:da:49:74:79:db:95:05:86:68:5a:ba:
                    96:0d:b0:e6:af:41:f9:2c:a0:e8:58:cf:11:b4:00:06:
                    e4:73:aa:df:cd:8f:3d:7b:4f:67:e4:f0:d2:c8:54:4d:
                    b4:b4:75:fc:53:d5:cb:b1:f1:ab:f8:5d:ea:7b:19:d4:
                    de:b5:94:5b:b3:6f:bc:71:17:a4:99:83:a6:8f:b6:a7:
                    80
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:8a:f8:83:c9:e1:3e:f2:07:f5:bc:
        37:d9:36:a9:84:86:f4:9a:a9:36:82:ef:ea:15:25:24:
        5e:7d:46:c3:68:16:7f:22:c7:a1:82:f1:56:ff:63:4a:
        2e:55:b9:f3:43:d1:bc:2b:99:f2:62:86:c0:b1:12:0a:
        a2:1a:45:8f:db:e9:1b:02:42:01:20:cf:30:0e:03:aa:
        5a:6e:32:a9:54:7b:48:b9:b3:5d:eb:20:e1:ec:bc:6e:
        77:bc:b8:ba:bf:fc:bd:b4:cf:2a:41:bd:0c:6b:e6:30:
        d4:54:55:59:19:ce:c1:5e:1a:f1:3f:ea:c1:81:82:47:
        8d:7b:1f:e7:85:22:a9:f0:83:4c:51
    Fingerprint (SHA-256):
        CA:F4:6D:1A:78:03:F1:15:A0:5D:A0:C2:6F:E6:F6:87:1B:2A:22:8C:9B:D4:D6:F8:0D:86:0A:6C:2E:2F:3B:F1
    Fingerprint (SHA1):
        16:83:7B:FC:6D:B9:95:CF:AA:FA:E9:09:DF:99:F0:F0:9F:57:9D:F0
    Friendly Name: Alice-ec
tools.sh: #9335: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9336: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                2f:36:ee:bb:68:94:f4:11:76:1b:f0:38:b7:68:23:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9337: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9338: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9339: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0a:c2:b4:f2:cc:64:70:1e:e6:9b:dc:97:b3:d9:44:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9340: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9341: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9342: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                ec:0f:ef:d2:e1:3b:de:d9:32:3f:ca:80:8f:ca:de:f1
            Iteration Count: 2000 (0x7d0)
tools.sh: #9343: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9344: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9345: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ae:60:02:ab:35:04:78:98:e1:c7:09:4b:63:07:61:1c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9346: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9347: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9348: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9e:da:66:31:55:00:ba:e1:d2:41:c3:dc:be:5b:be:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9349: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9350: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9351: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                51:66:d8:9a:2c:95:0b:5b:43:09:0b:c3:c8:d5:3d:d6
            Iteration Count: 2000 (0x7d0)
tools.sh: #9352: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9353: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9354: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:ab:07:5b:66:f4:55:7b:52:0d:a2:53:a4:0a:68:8a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:65:21:f4:1b:e8:46:3d:23:cb:20:85:13:2b:69:
                    f9:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9355: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9356: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9357: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:64:00:5c:55:45:19:fa:b3:00:51:05:ff:2b:d1:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:57:b4:22:3d:f6:30:e9:57:cc:65:e5:f9:c9:3f:
                    39:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9358: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9359: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9360: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1e:73:2e:b1:42:0e:74:ff:4e:9b:0d:a0:fb:a7:59:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:35:ec:fd:d7:fd:b0:75:ef:0c:9e:c1:77:67:2e:
                    78:09
tools.sh: #9361: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9362: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9363: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        82:11:40:71:21:64:91:92:04:17:86:3f:3a:74:c4:3f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:76:08:fe:14:ce:9e:a1:5e:ef:f4:01:7d:56:a2:
                    30:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9364: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9365: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9366: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:c2:a9:d9:12:f1:73:e4:44:6d:69:f3:c5:bc:22:6b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:08:d8:32:47:0d:d6:16:c3:33:c1:10:1d:d6:a4:
                    3d:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9367: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9368: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9369: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a7:e2:ec:ce:e6:b9:b2:c2:06:7f:67:12:25:93:7a:ec
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e9:92:99:1d:89:78:5b:fb:5b:c1:de:1c:97:0a:
                    db:68
tools.sh: #9370: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9371: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9372: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c5:2f:d2:74:b3:9f:aa:f5:99:82:f3:24:bb:e6:94:a2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:20:77:b4:37:d7:fb:2c:00:d5:c9:45:c4:0b:a4:
                    2f:6f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9373: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9374: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9375: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4e:10:49:9b:7a:11:4d:63:22:e1:1e:5b:b7:ba:bf:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:93:e6:60:cd:98:14:79:df:4e:ee:34:89:82:1c:
                    8c:3f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9376: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9377: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9378: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4e:10:ef:46:8c:3a:ba:2b:59:b3:d6:48:32:92:30:b4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:39:2b:e1:5a:45:0f:37:77:df:2b:24:35:10:1f:
                    ab:50
tools.sh: #9379: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9380: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9381: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        db:36:d4:fe:2f:3f:4f:8a:ab:d5:c0:08:68:98:2d:4f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:d8:6d:91:68:74:31:24:b6:6f:72:bf:5c:aa:a1:
                    27:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9382: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9383: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9384: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:4e:b8:dc:56:85:fd:00:18:a4:92:ce:72:50:b7:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c4:21:d2:da:2a:ef:9f:c6:81:c9:ad:2a:08:20:
                    db:fd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9385: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9386: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9387: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:a7:51:de:23:32:73:7a:89:de:08:b6:0f:e8:59:0b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:80:3f:cc:4e:58:d1:ca:ad:d7:1a:fa:7b:9c:3a:
                    51:a6
tools.sh: #9388: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9389: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9390: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        da:27:54:67:c4:75:90:a3:10:34:9a:52:d5:fd:e2:54
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:6c:83:9b:e2:93:05:5f:6c:fc:ed:f8:d4:39:ab:
                    c6:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9391: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9392: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9393: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:de:6f:c4:e6:fc:20:14:b9:0a:41:ae:22:47:16:9d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:47:3b:a6:b1:75:65:08:32:a1:d5:96:59:85:49:
                    2e:d2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9394: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9395: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9396: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ba:78:eb:37:33:38:a6:50:2e:83:65:4f:8c:8b:6d:b6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:a7:4b:6f:1e:d6:74:f6:99:c6:53:82:2d:59:6e:
                    ab:8e
tools.sh: #9397: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9398: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9399: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:4e:43:ce:6d:72:f8:53:c8:a9:f2:7d:cc:e2:1d:3b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c3:98:36:b6:f1:a8:06:e2:aa:0f:c1:59:c1:8f:
                    35:4c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9400: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9401: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9402: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:a5:b4:ff:7d:97:5e:82:4d:b0:49:65:32:38:e0:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:cc:27:da:9e:ac:62:d2:22:ca:0e:43:5d:aa:4b:
                    5b:3c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9403: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9404: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9405: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:91:39:54:f8:2a:4c:db:c7:ad:19:59:82:e7:5d:d0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e7:19:1a:1f:f1:7a:1e:3d:29:40:e1:ef:71:a1:
                    f7:d1
tools.sh: #9406: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9407: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9408: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                1d:7b:70:57:8c:67:e8:29:e3:32:75:3d:70:4e:b7:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9409: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9410: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9411: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                61:a7:45:87:fe:c2:f3:93:11:15:ec:ea:e3:28:79:61
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9412: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9413: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9414: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ce:fc:a3:ee:4a:e0:b5:1d:26:d1:f3:a5:ad:3c:e3:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9415: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9416: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9417: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                19:e7:c6:63:9a:dd:e9:3f:ff:33:0b:3e:d1:42:db:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9418: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9419: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9420: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                29:94:88:fd:de:79:1d:63:d6:06:6f:cf:56:98:be:86
            Iteration Count: 2000 (0x7d0)
tools.sh: #9421: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9422: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9423: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                99:d4:55:7b:cb:08:98:9c:b4:02:2d:52:86:13:86:1d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9424: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9425: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9426: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                3c:ac:5d:d8:4f:05:6d:ac:47:51:02:7f:53:6c:d1:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9427: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9428: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9429: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                5c:a5:5d:25:aa:1d:0b:a1:34:76:8b:cf:22:66:e2:9d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9430: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9431: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9432: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                00:93:82:bb:a0:5e:a8:9e:07:0b:19:6f:73:a6:7b:05
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9433: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9434: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9435: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                bc:5c:a9:4d:e7:13:49:03:ff:b8:e4:2d:3e:16:60:e6
            Iteration Count: 2000 (0x7d0)
tools.sh: #9436: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9438: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                0d:58:d4:3b:ee:7b:b4:5a:02:ab:bd:d2:94:6f:5c:c4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9439: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9440: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9441: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                3f:42:62:0d:55:f2:e0:a8:7d:70:b2:94:70:30:8e:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9442: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9443: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9444: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d2:15:82:67:91:51:c5:f9:eb:b4:63:aa:09:70:c2:cd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9445: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9446: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9447: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b6:43:9d:0b:78:15:dd:c1:4a:20:b2:12:4a:8e:b4:3d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9448: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9449: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9450: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                05:72:f1:7a:ff:1f:87:e5:8f:ab:1d:15:92:e0:d7:be
            Iteration Count: 2000 (0x7d0)
tools.sh: #9451: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9452: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9453: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                36:8b:50:00:1c:34:3f:0b:5d:b2:56:a0:36:22:ea:32
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9454: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9455: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9456: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                56:83:4d:23:ef:91:85:ef:6b:6d:f3:6d:97:0d:28:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9457: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9458: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9459: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                04:8f:26:bc:70:7a:ed:c6:0f:4a:45:ca:e9:42:1d:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9460: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9461: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9462: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                06:bb:8d:be:47:b3:72:75:c1:4f:03:1a:a7:e6:5e:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9463: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9464: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9465: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d2:fc:ba:cc:1f:40:e9:e0:30:e6:b0:c4:5d:7a:8a:31
            Iteration Count: 2000 (0x7d0)
tools.sh: #9466: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9467: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9468: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:6a:60:dc:c5:2b:72:12:60:65:65:f1:21:36:2a:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9469: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9470: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9471: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:3c:cf:0c:32:c5:0a:16:51:db:2f:03:a8:6e:56:65
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9472: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9473: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9474: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ed:c0:a6:ac:48:70:98:b7:d5:3b:3d:29:8b:aa:3d:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9475: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9476: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9477: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4d:d6:50:96:fa:ec:08:63:d3:7c:1a:a8:6b:a7:3a:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9478: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9479: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9480: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ca:c3:1b:ea:b2:85:3a:56:6f:85:66:0b:f9:a5:81:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9481: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9482: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9483: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1a:cc:a1:ba:01:13:c7:8a:78:6c:9c:e9:dc:8f:d7:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9484: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9485: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9486: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6f:05:64:a0:51:7f:82:7a:ad:fa:3b:0d:37:f5:f1:90
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9487: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9488: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9489: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                83:ac:25:fe:39:d0:58:b8:31:5e:2f:07:a4:e4:5a:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9490: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9491: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9492: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2a:3e:0d:ed:68:66:b4:0f:fa:ea:49:d4:6c:ee:cf:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9493: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9494: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9495: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5c:40:01:2b:81:a7:f1:99:c1:28:d6:3c:85:34:58:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:31 2017
            Not After : Mon May 02 15:45:31 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d4:7d:17:b7:30:35:0e:88:11:5a:85:d3:68:ae:7b:
                    61:d7:43:57:dc:d4:b6:5c:19:62:9b:a5:9f:e9:d7:11:
                    41:9b:e1:33:f7:71:d9:cf:56:be:e2:37:ac:5c:64:72:
                    fa:e6:c1:ea:8a:5f:25:64:ce:28:c4:87:d2:bb:b0:09:
                    a6:34:bc:07:c4:8f:0a:00:43:46:ca:ca:ac:04:07:0a:
                    54:36:ba:ea:41:a9:6d:05:06:4b:a0:31:38:4b:94:a2:
                    12:44:c2:bb:c8:02:27:f5:7e:71:fc:03:0b:46:c1:84:
                    f8:4a:e3:7d:71:71:b1:0b:3d:0e:ee:3c:c2:be:7d:bb:
                    5f:ca:b1:9f:48:8a:26:72:55:84:04:f5:df:3f:f2:65:
                    87:0f:6e:e1:f1:07:54:de:0d:98:f8:21:31:00:b1:a7:
                    28:57:eb:54:8e:38:2a:b9:93:b8:e2:65:1f:98:27:2b:
                    4c:cd:1d:71:de:15:04:75:87:73:70:2f:fe:72:18:4d:
                    78:90:8d:d7:6a:09:38:48:1a:8f:16:1e:01:10:47:34:
                    ef:d7:60:c6:d2:c3:be:a0:7d:58:8e:33:3b:3b:0d:0a:
                    b0:77:8b:f6:9e:57:14:a3:de:79:4b:d9:05:c4:bc:4e:
                    18:5f:21:d5:8b:dd:9f:69:9d:b2:cb:72:63:bc:de:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f2:bb:50:6c:00:6f:6c:b8:4b:c6:a6:e8:9a:da:fa:
        c0:1b:f0:d9:64:5f:cd:74:29:73:f2:58:e4:c7:c1:3b:
        53:3e:00:a2:3f:2b:87:e4:3b:2f:db:0e:f5:7d:0d:f9:
        82:20:ac:bc:05:9f:b6:e0:68:a0:e4:ec:df:ed:2b:c9:
        5c:90:7c:e8:2c:ed:5c:6d:11:c8:d9:bc:38:dc:8f:3e:
        bd:e5:ee:6e:94:60:44:fd:f7:76:63:c6:6d:d2:8e:ba:
        53:bd:d3:52:a1:5a:d6:29:9a:d5:56:d6:07:e1:61:e5:
        cc:ba:40:1e:30:1f:26:f2:9a:df:12:9a:74:15:18:84:
        d7:22:14:7c:07:36:6a:b0:6a:90:8c:84:79:eb:2d:ab:
        d1:5b:9e:4e:1c:0a:3a:a2:58:73:83:05:14:ac:ce:52:
        60:0e:62:4a:80:f3:de:16:8a:ee:eb:b8:f9:89:f8:1f:
        de:2a:dc:48:b7:0a:e1:a6:c3:23:8c:54:ef:72:9c:63:
        61:e0:c4:69:ba:f5:11:0f:c6:e4:6f:07:6b:f6:a0:ac:
        3f:8a:f1:d8:77:a3:28:05:2b:f4:31:74:8f:bd:5c:24:
        d8:f1:06:fc:c6:e2:80:67:10:8e:b8:11:48:ba:1b:72:
        d3:08:1b:1c:ca:59:1c:08:4b:21:00:cf:40:73:7a:49
    Fingerprint (SHA-256):
        41:D0:51:98:03:90:4B:25:A0:C3:D9:27:CC:49:C4:4B:18:F7:28:0B:66:AD:73:17:A3:9E:AE:0B:AC:C2:40:E8
    Fingerprint (SHA1):
        00:16:36:42:89:A8:A9:73:45:ED:E2:6E:05:06:76:3A:18:03:C4:95
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:54 2017
            Not After : Mon May 02 15:45:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:55:ef:3e:51:cd:57:99:92:8a:3b:fb:b7:98:94:d9:
                    81:c9:bb:f9:e1:d9:4d:cb:1d:c2:b6:29:ca:ee:d3:0f:
                    25:f1:45:c6:9e:b4:27:cd:6c:c7:b7:fd:c8:5c:5f:89:
                    c6:f1:a2:a5:44:6e:5d:ef:c9:9a:28:85:33:8a:d1:8e:
                    4e:c4:90:c0:9e:f8:51:9b:4a:69:0a:d4:53:f9:4d:94:
                    5c:84:ac:c4:70:12:2e:65:35:aa:62:77:34:6d:22:9f:
                    2d:cc:7e:f4:f5:69:5e:32:81:7e:f9:ca:f2:22:a9:bd:
                    f7:a0:dd:8e:55:8e:dc:1e:dc:72:58:c1:0a:4e:62:c4:
                    00:26:e3:5b:bb:0d:18:da:bc:5c:2a:ce:41:92:26:64:
                    02:d5:f8:eb:09:82:47:91:30:0a:f4:51:8a:54:82:4c:
                    e0:10:40:21:23:6a:26:d1:2e:29:2c:ab:68:18:b2:9d:
                    9a:83:39:42:79:5d:ea:94:3f:ea:e4:6a:bb:f6:cb:c0:
                    ea:fe:df:42:41:5a:68:27:db:ee:ad:c5:5c:36:cb:ed:
                    09:d7:82:42:1a:4f:97:7d:ca:3a:fe:11:86:ff:c0:5d:
                    dc:6a:dd:41:9e:ff:75:44:e1:56:f1:36:26:43:fd:60:
                    c8:cf:88:f9:9b:01:3f:23:59:74:9b:4d:b0:02:d3:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:fb:58:36:2a:3e:04:e1:78:91:eb:4a:c4:db:28:66:
        84:85:2a:6b:4c:ec:5f:7d:2c:6c:74:3b:a7:9d:87:43:
        45:97:7f:1a:61:36:f5:70:46:03:23:0a:ca:c0:3a:f5:
        aa:51:04:d5:6d:89:e5:b2:91:31:39:b0:c7:6b:ff:b7:
        70:c9:77:58:82:8e:4a:6d:39:ba:a6:ef:1d:8e:8e:8b:
        26:b7:48:e1:41:7c:74:f0:27:34:b2:c8:96:54:51:af:
        45:d9:2a:a1:51:db:68:3f:0a:bd:0e:8d:02:a6:a8:17:
        2e:3d:8b:5a:be:93:7d:51:88:ed:ab:5d:97:53:68:25:
        2b:4e:cb:b1:99:26:39:89:d2:a0:3d:aa:87:fd:7f:4d:
        88:04:64:53:13:92:ae:98:dc:d2:34:2e:25:f3:d1:37:
        02:91:2f:4c:04:be:17:0e:64:cd:4e:2f:f7:0f:53:7d:
        fc:81:e8:b5:87:97:e8:a2:8d:7d:63:ad:f9:79:27:67:
        57:a4:d8:f8:25:dc:67:7a:a3:c0:d8:5b:fb:0c:f7:16:
        a5:b4:01:6f:c1:76:f6:24:72:a7:20:ee:2f:c9:30:97:
        18:6c:5d:25:4f:06:b4:c7:5d:ca:76:d9:ec:a9:66:b0:
        0d:67:63:b8:26:e8:5d:09:7d:54:00:2a:1b:d9:12:45
    Fingerprint (SHA-256):
        DF:80:18:51:4A:59:D2:ED:AF:D2:1B:77:71:11:84:AC:B4:C4:E0:90:43:2E:DA:E7:07:EA:45:37:E6:50:D2:82
    Fingerprint (SHA1):
        EB:E3:10:E1:16:25:9C:AB:7F:05:81:88:AE:8B:40:53:5B:EB:BB:E7
    Friendly Name: Alice
tools.sh: #9496: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9497: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9498: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9499: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9500: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #9501: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9502: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9503: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9504: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9505: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9506: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:47:23 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:47:23 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9507: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9508: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      491296c2360a737b8fb881442d71aa325636910b   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #9509: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9510: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9511: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9512: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9513: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9514: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9515: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9516: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9517: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9518: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9519: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      491296c2360a737b8fb881442d71aa325636910b   FIPS_PUB_140_Test_Certificate
fips.sh: #9520: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9521: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9522: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9523: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9524: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      491296c2360a737b8fb881442d71aa325636910b   FIPS_PUB_140_Test_Certificate
fips.sh: #9525: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9526: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9527: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x000447d4 (280532): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9528: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:47:39 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:47:39 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9529: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9530: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:47:39 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:47:39 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9531: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9532: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9533: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9534: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9535: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9536: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9537: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9538: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9539: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9540: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9541: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9542: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9543: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9544: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9545: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9546: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9547: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9548: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9549: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9550: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9551: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9552: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9553: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9554: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9555: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9556: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9557: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9558: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9559: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9560: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9561: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9562: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9563: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9564: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9565: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9566: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9567: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9568: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9569: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9570: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9571: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9572: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9573: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9574: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9575: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9576: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9577: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9578: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9579: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9580: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9581: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9582: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9583: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9584: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9585: Decode Encrypted-Data . - PASSED
smime.sh: #9586: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9587: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9588: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9589: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9590: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9591: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:47:43 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:47:43 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8308 >/dev/null 2>/dev/null
selfserv_9122 with PID 8308 found at Tue May  2 15:47:43 UTC 2017
selfserv_9122 with PID 8308 started at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9592: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8308 at Tue May  2 15:47:43 UTC 2017
kill -USR1 8308
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8308 killed at Tue May  2 15:47:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8364 >/dev/null 2>/dev/null
selfserv_9122 with PID 8364 found at Tue May  2 15:47:43 UTC 2017
selfserv_9122 with PID 8364 started at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9593: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8364 at Tue May  2 15:47:43 UTC 2017
kill -USR1 8364
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8364 killed at Tue May  2 15:47:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8420 >/dev/null 2>/dev/null
selfserv_9122 with PID 8420 found at Tue May  2 15:47:43 UTC 2017
selfserv_9122 with PID 8420 started at Tue May  2 15:47:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9594: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8420 at Tue May  2 15:47:44 UTC 2017
kill -USR1 8420
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8420 killed at Tue May  2 15:47:44 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8489 >/dev/null 2>/dev/null
selfserv_9122 with PID 8489 found at Tue May  2 15:47:44 UTC 2017
selfserv_9122 with PID 8489 started at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9595: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8489 at Tue May  2 15:47:44 UTC 2017
kill -USR1 8489
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8489 killed at Tue May  2 15:47:44 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8545 >/dev/null 2>/dev/null
selfserv_9122 with PID 8545 found at Tue May  2 15:47:44 UTC 2017
selfserv_9122 with PID 8545 started at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9596: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8545 at Tue May  2 15:47:44 UTC 2017
kill -USR1 8545
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8545 killed at Tue May  2 15:47:44 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:44 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8601 >/dev/null 2>/dev/null
selfserv_9122 with PID 8601 found at Tue May  2 15:47:44 UTC 2017
selfserv_9122 with PID 8601 started at Tue May  2 15:47:44 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9597: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8601 at Tue May  2 15:47:45 UTC 2017
kill -USR1 8601
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8601 killed at Tue May  2 15:47:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8669 >/dev/null 2>/dev/null
selfserv_9122 with PID 8669 found at Tue May  2 15:47:45 UTC 2017
selfserv_9122 with PID 8669 started at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9598: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8669 at Tue May  2 15:47:45 UTC 2017
kill -USR1 8669
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8669 killed at Tue May  2 15:47:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8725 >/dev/null 2>/dev/null
selfserv_9122 with PID 8725 found at Tue May  2 15:47:45 UTC 2017
selfserv_9122 with PID 8725 started at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9599: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 8725 at Tue May  2 15:47:45 UTC 2017
kill -USR1 8725
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8725 killed at Tue May  2 15:47:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8781 >/dev/null 2>/dev/null
selfserv_9122 with PID 8781 found at Tue May  2 15:47:45 UTC 2017
selfserv_9122 with PID 8781 started at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9600: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8781 at Tue May  2 15:47:45 UTC 2017
kill -USR1 8781
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8781 killed at Tue May  2 15:47:45 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:45 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8849 >/dev/null 2>/dev/null
selfserv_9122 with PID 8849 found at Tue May  2 15:47:45 UTC 2017
selfserv_9122 with PID 8849 started at Tue May  2 15:47:45 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9601: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8849 at Tue May  2 15:47:46 UTC 2017
kill -USR1 8849
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8849 killed at Tue May  2 15:47:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8905 >/dev/null 2>/dev/null
selfserv_9122 with PID 8905 found at Tue May  2 15:47:46 UTC 2017
selfserv_9122 with PID 8905 started at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9602: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8905 at Tue May  2 15:47:46 UTC 2017
kill -USR1 8905
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8905 killed at Tue May  2 15:47:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8961 >/dev/null 2>/dev/null
selfserv_9122 with PID 8961 found at Tue May  2 15:47:46 UTC 2017
selfserv_9122 with PID 8961 started at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9603: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 8961 at Tue May  2 15:47:46 UTC 2017
kill -USR1 8961
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 8961 killed at Tue May  2 15:47:46 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9029 >/dev/null 2>/dev/null
selfserv_9122 with PID 9029 found at Tue May  2 15:47:46 UTC 2017
selfserv_9122 with PID 9029 started at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9604: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9029 at Tue May  2 15:47:46 UTC 2017
kill -USR1 9029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9029 killed at Tue May  2 15:47:46 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:46 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9085 >/dev/null 2>/dev/null
selfserv_9122 with PID 9085 found at Tue May  2 15:47:46 UTC 2017
selfserv_9122 with PID 9085 started at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9605: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9085 at Tue May  2 15:47:47 UTC 2017
kill -USR1 9085
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9085 killed at Tue May  2 15:47:47 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9141 >/dev/null 2>/dev/null
selfserv_9122 with PID 9141 found at Tue May  2 15:47:47 UTC 2017
selfserv_9122 with PID 9141 started at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9606: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9141 at Tue May  2 15:47:47 UTC 2017
kill -USR1 9141
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9141 killed at Tue May  2 15:47:47 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9210 >/dev/null 2>/dev/null
selfserv_9122 with PID 9210 found at Tue May  2 15:47:47 UTC 2017
selfserv_9122 with PID 9210 started at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9607: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9210 at Tue May  2 15:47:47 UTC 2017
kill -USR1 9210
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9210 killed at Tue May  2 15:47:47 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9267 >/dev/null 2>/dev/null
selfserv_9122 with PID 9267 found at Tue May  2 15:47:47 UTC 2017
selfserv_9122 with PID 9267 started at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9608: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9267 at Tue May  2 15:47:47 UTC 2017
kill -USR1 9267
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9267 killed at Tue May  2 15:47:47 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:47 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9323 >/dev/null 2>/dev/null
selfserv_9122 with PID 9323 found at Tue May  2 15:47:47 UTC 2017
selfserv_9122 with PID 9323 started at Tue May  2 15:47:47 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9609: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9323 at Tue May  2 15:47:48 UTC 2017
kill -USR1 9323
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9323 killed at Tue May  2 15:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9391 >/dev/null 2>/dev/null
selfserv_9122 with PID 9391 found at Tue May  2 15:47:48 UTC 2017
selfserv_9122 with PID 9391 started at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9610: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9391 at Tue May  2 15:47:48 UTC 2017
kill -USR1 9391
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9391 killed at Tue May  2 15:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9447 >/dev/null 2>/dev/null
selfserv_9122 with PID 9447 found at Tue May  2 15:47:48 UTC 2017
selfserv_9122 with PID 9447 started at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9611: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9447 at Tue May  2 15:47:48 UTC 2017
kill -USR1 9447
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9447 killed at Tue May  2 15:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9503 >/dev/null 2>/dev/null
selfserv_9122 with PID 9503 found at Tue May  2 15:47:48 UTC 2017
selfserv_9122 with PID 9503 started at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9612: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9503 at Tue May  2 15:47:48 UTC 2017
kill -USR1 9503
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9503 killed at Tue May  2 15:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:48 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9571 >/dev/null 2>/dev/null
selfserv_9122 with PID 9571 found at Tue May  2 15:47:48 UTC 2017
selfserv_9122 with PID 9571 started at Tue May  2 15:47:48 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9613: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9571 at Tue May  2 15:47:49 UTC 2017
kill -USR1 9571
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9571 killed at Tue May  2 15:47:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9627 >/dev/null 2>/dev/null
selfserv_9122 with PID 9627 found at Tue May  2 15:47:49 UTC 2017
selfserv_9122 with PID 9627 started at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9614: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9627 at Tue May  2 15:47:49 UTC 2017
kill -USR1 9627
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9627 killed at Tue May  2 15:47:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9683 >/dev/null 2>/dev/null
selfserv_9122 with PID 9683 found at Tue May  2 15:47:49 UTC 2017
selfserv_9122 with PID 9683 started at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9615: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9683 at Tue May  2 15:47:49 UTC 2017
kill -USR1 9683
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9683 killed at Tue May  2 15:47:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9751 >/dev/null 2>/dev/null
selfserv_9122 with PID 9751 found at Tue May  2 15:47:49 UTC 2017
selfserv_9122 with PID 9751 started at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9616: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9751 at Tue May  2 15:47:49 UTC 2017
kill -USR1 9751
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9751 killed at Tue May  2 15:47:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9807 >/dev/null 2>/dev/null
selfserv_9122 with PID 9807 found at Tue May  2 15:47:49 UTC 2017
selfserv_9122 with PID 9807 started at Tue May  2 15:47:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9617: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 9807 at Tue May  2 15:47:50 UTC 2017
kill -USR1 9807
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9807 killed at Tue May  2 15:47:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9864 >/dev/null 2>/dev/null
selfserv_9122 with PID 9864 found at Tue May  2 15:47:50 UTC 2017
selfserv_9122 with PID 9864 started at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9618: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9864 at Tue May  2 15:47:50 UTC 2017
kill -USR1 9864
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9864 killed at Tue May  2 15:47:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9932 >/dev/null 2>/dev/null
selfserv_9122 with PID 9932 found at Tue May  2 15:47:50 UTC 2017
selfserv_9122 with PID 9932 started at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9619: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9932 at Tue May  2 15:47:50 UTC 2017
kill -USR1 9932
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9932 killed at Tue May  2 15:47:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9988 >/dev/null 2>/dev/null
selfserv_9122 with PID 9988 found at Tue May  2 15:47:50 UTC 2017
selfserv_9122 with PID 9988 started at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9620: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 9988 at Tue May  2 15:47:50 UTC 2017
kill -USR1 9988
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 9988 killed at Tue May  2 15:47:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:50 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10044 >/dev/null 2>/dev/null
selfserv_9122 with PID 10044 found at Tue May  2 15:47:50 UTC 2017
selfserv_9122 with PID 10044 started at Tue May  2 15:47:50 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9621: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10044 at Tue May  2 15:47:51 UTC 2017
kill -USR1 10044
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10044 killed at Tue May  2 15:47:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10112 >/dev/null 2>/dev/null
selfserv_9122 with PID 10112 found at Tue May  2 15:47:51 UTC 2017
selfserv_9122 with PID 10112 started at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9622: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10112 at Tue May  2 15:47:51 UTC 2017
kill -USR1 10112
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10112 killed at Tue May  2 15:47:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10168 >/dev/null 2>/dev/null
selfserv_9122 with PID 10168 found at Tue May  2 15:47:51 UTC 2017
selfserv_9122 with PID 10168 started at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9623: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10168 at Tue May  2 15:47:51 UTC 2017
kill -USR1 10168
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10168 killed at Tue May  2 15:47:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10224 >/dev/null 2>/dev/null
selfserv_9122 with PID 10224 found at Tue May  2 15:47:51 UTC 2017
selfserv_9122 with PID 10224 started at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9624: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10224 at Tue May  2 15:47:51 UTC 2017
kill -USR1 10224
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10224 killed at Tue May  2 15:47:51 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10292 >/dev/null 2>/dev/null
selfserv_9122 with PID 10292 found at Tue May  2 15:47:51 UTC 2017
selfserv_9122 with PID 10292 started at Tue May  2 15:47:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9625: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10292 at Tue May  2 15:47:52 UTC 2017
kill -USR1 10292
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10292 killed at Tue May  2 15:47:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10348 >/dev/null 2>/dev/null
selfserv_9122 with PID 10348 found at Tue May  2 15:47:52 UTC 2017
selfserv_9122 with PID 10348 started at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9626: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10348 at Tue May  2 15:47:52 UTC 2017
kill -USR1 10348
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10348 killed at Tue May  2 15:47:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10404 >/dev/null 2>/dev/null
selfserv_9122 with PID 10404 found at Tue May  2 15:47:52 UTC 2017
selfserv_9122 with PID 10404 started at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9627: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 10404 at Tue May  2 15:47:52 UTC 2017
kill -USR1 10404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10404 killed at Tue May  2 15:47:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10472 >/dev/null 2>/dev/null
selfserv_9122 with PID 10472 found at Tue May  2 15:47:52 UTC 2017
selfserv_9122 with PID 10472 started at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9628: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10472 at Tue May  2 15:47:52 UTC 2017
kill -USR1 10472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10472 killed at Tue May  2 15:47:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:52 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10528 >/dev/null 2>/dev/null
selfserv_9122 with PID 10528 found at Tue May  2 15:47:52 UTC 2017
selfserv_9122 with PID 10528 started at Tue May  2 15:47:52 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9629: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10528 at Tue May  2 15:47:53 UTC 2017
kill -USR1 10528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10528 killed at Tue May  2 15:47:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10584 >/dev/null 2>/dev/null
selfserv_9122 with PID 10584 found at Tue May  2 15:47:53 UTC 2017
selfserv_9122 with PID 10584 started at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9630: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10584 at Tue May  2 15:47:53 UTC 2017
kill -USR1 10584
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10584 killed at Tue May  2 15:47:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10652 >/dev/null 2>/dev/null
selfserv_9122 with PID 10652 found at Tue May  2 15:47:53 UTC 2017
selfserv_9122 with PID 10652 started at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9631: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10652 at Tue May  2 15:47:53 UTC 2017
kill -USR1 10652
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10652 killed at Tue May  2 15:47:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:53 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10708 >/dev/null 2>/dev/null
selfserv_9122 with PID 10708 found at Tue May  2 15:47:53 UTC 2017
selfserv_9122 with PID 10708 started at Tue May  2 15:47:53 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9632: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10708 at Tue May  2 15:47:54 UTC 2017
kill -USR1 10708
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10708 killed at Tue May  2 15:47:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10764 >/dev/null 2>/dev/null
selfserv_9122 with PID 10764 found at Tue May  2 15:47:54 UTC 2017
selfserv_9122 with PID 10764 started at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9633: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10764 at Tue May  2 15:47:54 UTC 2017
kill -USR1 10764
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10764 killed at Tue May  2 15:47:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10832 >/dev/null 2>/dev/null
selfserv_9122 with PID 10832 found at Tue May  2 15:47:54 UTC 2017
selfserv_9122 with PID 10832 started at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9634: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10832 at Tue May  2 15:47:54 UTC 2017
kill -USR1 10832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10832 killed at Tue May  2 15:47:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:54 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10888 >/dev/null 2>/dev/null
selfserv_9122 with PID 10888 found at Tue May  2 15:47:54 UTC 2017
selfserv_9122 with PID 10888 started at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9635: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 10888 at Tue May  2 15:47:55 UTC 2017
kill -USR1 10888
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10888 killed at Tue May  2 15:47:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10944 >/dev/null 2>/dev/null
selfserv_9122 with PID 10944 found at Tue May  2 15:47:55 UTC 2017
selfserv_9122 with PID 10944 started at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9636: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 10944 at Tue May  2 15:47:55 UTC 2017
kill -USR1 10944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 10944 killed at Tue May  2 15:47:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11012 >/dev/null 2>/dev/null
selfserv_9122 with PID 11012 found at Tue May  2 15:47:55 UTC 2017
selfserv_9122 with PID 11012 started at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9637: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11012 at Tue May  2 15:47:55 UTC 2017
kill -USR1 11012
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11012 killed at Tue May  2 15:47:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11068 >/dev/null 2>/dev/null
selfserv_9122 with PID 11068 found at Tue May  2 15:47:55 UTC 2017
selfserv_9122 with PID 11068 started at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9638: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11068 at Tue May  2 15:47:55 UTC 2017
kill -USR1 11068
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11068 killed at Tue May  2 15:47:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:55 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11124 >/dev/null 2>/dev/null
selfserv_9122 with PID 11124 found at Tue May  2 15:47:55 UTC 2017
selfserv_9122 with PID 11124 started at Tue May  2 15:47:55 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9639: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11124 at Tue May  2 15:47:56 UTC 2017
kill -USR1 11124
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11124 killed at Tue May  2 15:47:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11192 >/dev/null 2>/dev/null
selfserv_9122 with PID 11192 found at Tue May  2 15:47:56 UTC 2017
selfserv_9122 with PID 11192 started at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9640: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11192 at Tue May  2 15:47:56 UTC 2017
kill -USR1 11192
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11192 killed at Tue May  2 15:47:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11248 >/dev/null 2>/dev/null
selfserv_9122 with PID 11248 found at Tue May  2 15:47:56 UTC 2017
selfserv_9122 with PID 11248 started at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9641: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11248 at Tue May  2 15:47:56 UTC 2017
kill -USR1 11248
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11248 killed at Tue May  2 15:47:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11304 >/dev/null 2>/dev/null
selfserv_9122 with PID 11304 found at Tue May  2 15:47:56 UTC 2017
selfserv_9122 with PID 11304 started at Tue May  2 15:47:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9642: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11304 at Tue May  2 15:47:57 UTC 2017
kill -USR1 11304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11304 killed at Tue May  2 15:47:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11372 >/dev/null 2>/dev/null
selfserv_9122 with PID 11372 found at Tue May  2 15:47:57 UTC 2017
selfserv_9122 with PID 11372 started at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9643: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11372 at Tue May  2 15:47:57 UTC 2017
kill -USR1 11372
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11372 killed at Tue May  2 15:47:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11428 >/dev/null 2>/dev/null
selfserv_9122 with PID 11428 found at Tue May  2 15:47:57 UTC 2017
selfserv_9122 with PID 11428 started at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9644: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11428 at Tue May  2 15:47:57 UTC 2017
kill -USR1 11428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11428 killed at Tue May  2 15:47:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:47:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11484 >/dev/null 2>/dev/null
selfserv_9122 with PID 11484 found at Tue May  2 15:47:57 UTC 2017
selfserv_9122 with PID 11484 started at Tue May  2 15:47:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9645: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11484 at Tue May  2 15:47:58 UTC 2017
kill -USR1 11484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11484 killed at Tue May  2 15:47:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11552 >/dev/null 2>/dev/null
selfserv_9122 with PID 11552 found at Tue May  2 15:47:58 UTC 2017
selfserv_9122 with PID 11552 started at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9646: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11552 at Tue May  2 15:47:58 UTC 2017
kill -USR1 11552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11552 killed at Tue May  2 15:47:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11608 >/dev/null 2>/dev/null
selfserv_9122 with PID 11608 found at Tue May  2 15:47:58 UTC 2017
selfserv_9122 with PID 11608 started at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9647: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11608 at Tue May  2 15:47:58 UTC 2017
kill -USR1 11608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11608 killed at Tue May  2 15:47:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:47:58 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11664 >/dev/null 2>/dev/null
selfserv_9122 with PID 11664 found at Tue May  2 15:47:58 UTC 2017
selfserv_9122 with PID 11664 started at Tue May  2 15:47:58 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9648: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11664 at Tue May  2 15:47:59 UTC 2017
kill -USR1 11664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11664 killed at Tue May  2 15:47:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11732 >/dev/null 2>/dev/null
selfserv_9122 with PID 11732 found at Tue May  2 15:47:59 UTC 2017
selfserv_9122 with PID 11732 started at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9649: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11732 at Tue May  2 15:47:59 UTC 2017
kill -USR1 11732
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11732 killed at Tue May  2 15:47:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11790 >/dev/null 2>/dev/null
selfserv_9122 with PID 11790 found at Tue May  2 15:47:59 UTC 2017
selfserv_9122 with PID 11790 started at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9650: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11790 at Tue May  2 15:47:59 UTC 2017
kill -USR1 11790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11790 killed at Tue May  2 15:47:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:47:59 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11846 >/dev/null 2>/dev/null
selfserv_9122 with PID 11846 found at Tue May  2 15:47:59 UTC 2017
selfserv_9122 with PID 11846 started at Tue May  2 15:47:59 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9651: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11846 at Tue May  2 15:48:00 UTC 2017
kill -USR1 11846
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11846 killed at Tue May  2 15:48:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11914 >/dev/null 2>/dev/null
selfserv_9122 with PID 11914 found at Tue May  2 15:48:00 UTC 2017
selfserv_9122 with PID 11914 started at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9652: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 11914 at Tue May  2 15:48:00 UTC 2017
kill -USR1 11914
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11914 killed at Tue May  2 15:48:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11970 >/dev/null 2>/dev/null
selfserv_9122 with PID 11970 found at Tue May  2 15:48:00 UTC 2017
selfserv_9122 with PID 11970 started at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9653: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 11970 at Tue May  2 15:48:00 UTC 2017
kill -USR1 11970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 11970 killed at Tue May  2 15:48:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:00 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12026 >/dev/null 2>/dev/null
selfserv_9122 with PID 12026 found at Tue May  2 15:48:00 UTC 2017
selfserv_9122 with PID 12026 started at Tue May  2 15:48:00 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9654: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12026 at Tue May  2 15:48:01 UTC 2017
kill -USR1 12026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12026 killed at Tue May  2 15:48:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12094 >/dev/null 2>/dev/null
selfserv_9122 with PID 12094 found at Tue May  2 15:48:01 UTC 2017
selfserv_9122 with PID 12094 started at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9655: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12094 at Tue May  2 15:48:01 UTC 2017
kill -USR1 12094
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12094 killed at Tue May  2 15:48:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12150 >/dev/null 2>/dev/null
selfserv_9122 with PID 12150 found at Tue May  2 15:48:01 UTC 2017
selfserv_9122 with PID 12150 started at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9656: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12150 at Tue May  2 15:48:01 UTC 2017
kill -USR1 12150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12150 killed at Tue May  2 15:48:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:01 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12206 >/dev/null 2>/dev/null
selfserv_9122 with PID 12206 found at Tue May  2 15:48:01 UTC 2017
selfserv_9122 with PID 12206 started at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9657: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12206 at Tue May  2 15:48:02 UTC 2017
kill -USR1 12206
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12206 killed at Tue May  2 15:48:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9122 with PID 12274 found at Tue May  2 15:48:02 UTC 2017
selfserv_9122 with PID 12274 started at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9658: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12274 at Tue May  2 15:48:02 UTC 2017
kill -USR1 12274
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12274 killed at Tue May  2 15:48:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12330 >/dev/null 2>/dev/null
selfserv_9122 with PID 12330 found at Tue May  2 15:48:02 UTC 2017
selfserv_9122 with PID 12330 started at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9659: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12330 at Tue May  2 15:48:02 UTC 2017
kill -USR1 12330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12330 killed at Tue May  2 15:48:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:02 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12386 >/dev/null 2>/dev/null
selfserv_9122 with PID 12386 found at Tue May  2 15:48:02 UTC 2017
selfserv_9122 with PID 12386 started at Tue May  2 15:48:02 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9660: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12386 at Tue May  2 15:48:03 UTC 2017
kill -USR1 12386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12386 killed at Tue May  2 15:48:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12454 >/dev/null 2>/dev/null
selfserv_9122 with PID 12454 found at Tue May  2 15:48:03 UTC 2017
selfserv_9122 with PID 12454 started at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9661: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12454 at Tue May  2 15:48:03 UTC 2017
kill -USR1 12454
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12454 killed at Tue May  2 15:48:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12510 >/dev/null 2>/dev/null
selfserv_9122 with PID 12510 found at Tue May  2 15:48:03 UTC 2017
selfserv_9122 with PID 12510 started at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9662: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12510 at Tue May  2 15:48:03 UTC 2017
kill -USR1 12510
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12510 killed at Tue May  2 15:48:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:03 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12566 >/dev/null 2>/dev/null
selfserv_9122 with PID 12566 found at Tue May  2 15:48:03 UTC 2017
selfserv_9122 with PID 12566 started at Tue May  2 15:48:03 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9663: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12566 at Tue May  2 15:48:04 UTC 2017
kill -USR1 12566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12566 killed at Tue May  2 15:48:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12634 >/dev/null 2>/dev/null
selfserv_9122 with PID 12634 found at Tue May  2 15:48:04 UTC 2017
selfserv_9122 with PID 12634 started at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9664: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12634 at Tue May  2 15:48:04 UTC 2017
kill -USR1 12634
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12634 killed at Tue May  2 15:48:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12690 >/dev/null 2>/dev/null
selfserv_9122 with PID 12690 found at Tue May  2 15:48:04 UTC 2017
selfserv_9122 with PID 12690 started at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9665: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12690 at Tue May  2 15:48:04 UTC 2017
kill -USR1 12690
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12690 killed at Tue May  2 15:48:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12747 >/dev/null 2>/dev/null
selfserv_9122 with PID 12747 found at Tue May  2 15:48:04 UTC 2017
selfserv_9122 with PID 12747 started at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9666: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12747 at Tue May  2 15:48:04 UTC 2017
kill -USR1 12747
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12747 killed at Tue May  2 15:48:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12816 >/dev/null 2>/dev/null
selfserv_9122 with PID 12816 found at Tue May  2 15:48:04 UTC 2017
selfserv_9122 with PID 12816 started at Tue May  2 15:48:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9667: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12816 at Tue May  2 15:48:05 UTC 2017
kill -USR1 12816
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12816 killed at Tue May  2 15:48:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12872 >/dev/null 2>/dev/null
selfserv_9122 with PID 12872 found at Tue May  2 15:48:05 UTC 2017
selfserv_9122 with PID 12872 started at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9668: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12872 at Tue May  2 15:48:05 UTC 2017
kill -USR1 12872
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12872 killed at Tue May  2 15:48:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12930 >/dev/null 2>/dev/null
selfserv_9122 with PID 12930 found at Tue May  2 15:48:05 UTC 2017
selfserv_9122 with PID 12930 started at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9669: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 12930 at Tue May  2 15:48:05 UTC 2017
kill -USR1 12930
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12930 killed at Tue May  2 15:48:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:05 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12998 >/dev/null 2>/dev/null
selfserv_9122 with PID 12998 found at Tue May  2 15:48:05 UTC 2017
selfserv_9122 with PID 12998 started at Tue May  2 15:48:05 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9670: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 12998 at Tue May  2 15:48:06 UTC 2017
kill -USR1 12998
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 12998 killed at Tue May  2 15:48:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13054 >/dev/null 2>/dev/null
selfserv_9122 with PID 13054 found at Tue May  2 15:48:06 UTC 2017
selfserv_9122 with PID 13054 started at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9671: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13054 at Tue May  2 15:48:06 UTC 2017
kill -USR1 13054
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13054 killed at Tue May  2 15:48:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13110 >/dev/null 2>/dev/null
selfserv_9122 with PID 13110 found at Tue May  2 15:48:06 UTC 2017
selfserv_9122 with PID 13110 started at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9672: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13110 at Tue May  2 15:48:06 UTC 2017
kill -USR1 13110
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13110 killed at Tue May  2 15:48:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13179 >/dev/null 2>/dev/null
selfserv_9122 with PID 13179 found at Tue May  2 15:48:06 UTC 2017
selfserv_9122 with PID 13179 started at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9673: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13179 at Tue May  2 15:48:06 UTC 2017
kill -USR1 13179
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13179 killed at Tue May  2 15:48:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13236 >/dev/null 2>/dev/null
selfserv_9122 with PID 13236 found at Tue May  2 15:48:06 UTC 2017
selfserv_9122 with PID 13236 started at Tue May  2 15:48:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9674: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13236 at Tue May  2 15:48:07 UTC 2017
kill -USR1 13236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13236 killed at Tue May  2 15:48:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9122 starting at Tue May  2 15:48:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13292 >/dev/null 2>/dev/null
selfserv_9122 with PID 13292 found at Tue May  2 15:48:07 UTC 2017
selfserv_9122 with PID 13292 started at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9675: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13292 at Tue May  2 15:48:07 UTC 2017
kill -USR1 13292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13292 killed at Tue May  2 15:48:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13361 >/dev/null 2>/dev/null
selfserv_9122 with PID 13361 found at Tue May  2 15:48:07 UTC 2017
selfserv_9122 with PID 13361 started at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9676: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13361 at Tue May  2 15:48:07 UTC 2017
kill -USR1 13361
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13361 killed at Tue May  2 15:48:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13417 >/dev/null 2>/dev/null
selfserv_9122 with PID 13417 found at Tue May  2 15:48:07 UTC 2017
selfserv_9122 with PID 13417 started at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9677: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13417 at Tue May  2 15:48:07 UTC 2017
kill -USR1 13417
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13417 killed at Tue May  2 15:48:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:07 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13473 >/dev/null 2>/dev/null
selfserv_9122 with PID 13473 found at Tue May  2 15:48:07 UTC 2017
selfserv_9122 with PID 13473 started at Tue May  2 15:48:07 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9678: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13473 at Tue May  2 15:48:08 UTC 2017
kill -USR1 13473
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13473 killed at Tue May  2 15:48:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13541 >/dev/null 2>/dev/null
selfserv_9122 with PID 13541 found at Tue May  2 15:48:08 UTC 2017
selfserv_9122 with PID 13541 started at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9679: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13541 at Tue May  2 15:48:08 UTC 2017
kill -USR1 13541
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13541 killed at Tue May  2 15:48:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13597 >/dev/null 2>/dev/null
selfserv_9122 with PID 13597 found at Tue May  2 15:48:08 UTC 2017
selfserv_9122 with PID 13597 started at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9680: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13597 at Tue May  2 15:48:08 UTC 2017
kill -USR1 13597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13597 killed at Tue May  2 15:48:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13653 >/dev/null 2>/dev/null
selfserv_9122 with PID 13653 found at Tue May  2 15:48:08 UTC 2017
selfserv_9122 with PID 13653 started at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9681: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 13653 at Tue May  2 15:48:08 UTC 2017
kill -USR1 13653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13653 killed at Tue May  2 15:48:08 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:08 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13730 >/dev/null 2>/dev/null
selfserv_9122 with PID 13730 found at Tue May  2 15:48:08 UTC 2017
selfserv_9122 with PID 13730 started at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9682: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13730 at Tue May  2 15:48:09 UTC 2017
kill -USR1 13730
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13730 killed at Tue May  2 15:48:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13786 >/dev/null 2>/dev/null
selfserv_9122 with PID 13786 found at Tue May  2 15:48:09 UTC 2017
selfserv_9122 with PID 13786 started at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9683: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13786 at Tue May  2 15:48:09 UTC 2017
kill -USR1 13786
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13786 killed at Tue May  2 15:48:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13842 >/dev/null 2>/dev/null
selfserv_9122 with PID 13842 found at Tue May  2 15:48:09 UTC 2017
selfserv_9122 with PID 13842 started at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9684: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13842 at Tue May  2 15:48:09 UTC 2017
kill -USR1 13842
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13842 killed at Tue May  2 15:48:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:09 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13910 >/dev/null 2>/dev/null
selfserv_9122 with PID 13910 found at Tue May  2 15:48:09 UTC 2017
selfserv_9122 with PID 13910 started at Tue May  2 15:48:09 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9685: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 13910 at Tue May  2 15:48:10 UTC 2017
kill -USR1 13910
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13910 killed at Tue May  2 15:48:10 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13966 >/dev/null 2>/dev/null
selfserv_9122 with PID 13966 found at Tue May  2 15:48:10 UTC 2017
selfserv_9122 with PID 13966 started at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9686: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 13966 at Tue May  2 15:48:10 UTC 2017
kill -USR1 13966
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 13966 killed at Tue May  2 15:48:10 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14022 >/dev/null 2>/dev/null
selfserv_9122 with PID 14022 found at Tue May  2 15:48:10 UTC 2017
selfserv_9122 with PID 14022 started at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9687: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14022 at Tue May  2 15:48:10 UTC 2017
kill -USR1 14022
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14022 killed at Tue May  2 15:48:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14090 >/dev/null 2>/dev/null
selfserv_9122 with PID 14090 found at Tue May  2 15:48:10 UTC 2017
selfserv_9122 with PID 14090 started at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9688: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14090 at Tue May  2 15:48:10 UTC 2017
kill -USR1 14090
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14090 killed at Tue May  2 15:48:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:10 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14146 >/dev/null 2>/dev/null
selfserv_9122 with PID 14146 found at Tue May  2 15:48:10 UTC 2017
selfserv_9122 with PID 14146 started at Tue May  2 15:48:10 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9689: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14146 at Tue May  2 15:48:11 UTC 2017
kill -USR1 14146
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14146 killed at Tue May  2 15:48:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14202 >/dev/null 2>/dev/null
selfserv_9122 with PID 14202 found at Tue May  2 15:48:11 UTC 2017
selfserv_9122 with PID 14202 started at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9690: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14202 at Tue May  2 15:48:11 UTC 2017
kill -USR1 14202
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14202 killed at Tue May  2 15:48:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14270 >/dev/null 2>/dev/null
selfserv_9122 with PID 14270 found at Tue May  2 15:48:11 UTC 2017
selfserv_9122 with PID 14270 started at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9691: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14270 at Tue May  2 15:48:11 UTC 2017
kill -USR1 14270
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14270 killed at Tue May  2 15:48:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14326 >/dev/null 2>/dev/null
selfserv_9122 with PID 14326 found at Tue May  2 15:48:11 UTC 2017
selfserv_9122 with PID 14326 started at Tue May  2 15:48:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9692: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 14326 at Tue May  2 15:48:11 UTC 2017
kill -USR1 14326
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14326 killed at Tue May  2 15:48:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14382 >/dev/null 2>/dev/null
selfserv_9122 with PID 14382 found at Tue May  2 15:48:12 UTC 2017
selfserv_9122 with PID 14382 started at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9693: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14382 at Tue May  2 15:48:12 UTC 2017
kill -USR1 14382
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14382 killed at Tue May  2 15:48:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14450 >/dev/null 2>/dev/null
selfserv_9122 with PID 14450 found at Tue May  2 15:48:12 UTC 2017
selfserv_9122 with PID 14450 started at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9694: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 14450 at Tue May  2 15:48:12 UTC 2017
kill -USR1 14450
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14450 killed at Tue May  2 15:48:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14506 >/dev/null 2>/dev/null
selfserv_9122 with PID 14506 found at Tue May  2 15:48:12 UTC 2017
selfserv_9122 with PID 14506 started at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9695: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 14506 at Tue May  2 15:48:12 UTC 2017
kill -USR1 14506
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14506 killed at Tue May  2 15:48:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:12 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14562 >/dev/null 2>/dev/null
selfserv_9122 with PID 14562 found at Tue May  2 15:48:12 UTC 2017
selfserv_9122 with PID 14562 started at Tue May  2 15:48:12 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9696: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 14562 at Tue May  2 15:48:13 UTC 2017
kill -USR1 14562
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14562 killed at Tue May  2 15:48:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14630 >/dev/null 2>/dev/null
selfserv_9122 with PID 14630 found at Tue May  2 15:48:13 UTC 2017
selfserv_9122 with PID 14630 started at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9697: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14630 at Tue May  2 15:48:13 UTC 2017
kill -USR1 14630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14630 killed at Tue May  2 15:48:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14686 >/dev/null 2>/dev/null
selfserv_9122 with PID 14686 found at Tue May  2 15:48:13 UTC 2017
selfserv_9122 with PID 14686 started at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9698: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 14686 at Tue May  2 15:48:13 UTC 2017
kill -USR1 14686
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14686 killed at Tue May  2 15:48:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14742 >/dev/null 2>/dev/null
selfserv_9122 with PID 14742 found at Tue May  2 15:48:13 UTC 2017
selfserv_9122 with PID 14742 started at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9699: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14742 at Tue May  2 15:48:13 UTC 2017
kill -USR1 14742
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14742 killed at Tue May  2 15:48:13 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:13 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14810 >/dev/null 2>/dev/null
selfserv_9122 with PID 14810 found at Tue May  2 15:48:13 UTC 2017
selfserv_9122 with PID 14810 started at Tue May  2 15:48:13 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9700: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14810 at Tue May  2 15:48:14 UTC 2017
kill -USR1 14810
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14810 killed at Tue May  2 15:48:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14866 >/dev/null 2>/dev/null
selfserv_9122 with PID 14866 found at Tue May  2 15:48:14 UTC 2017
selfserv_9122 with PID 14866 started at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9701: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14866 at Tue May  2 15:48:14 UTC 2017
kill -USR1 14866
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14866 killed at Tue May  2 15:48:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14922 >/dev/null 2>/dev/null
selfserv_9122 with PID 14922 found at Tue May  2 15:48:14 UTC 2017
selfserv_9122 with PID 14922 started at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9702: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14922 at Tue May  2 15:48:14 UTC 2017
kill -USR1 14922
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14922 killed at Tue May  2 15:48:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14990 >/dev/null 2>/dev/null
selfserv_9122 with PID 14990 found at Tue May  2 15:48:14 UTC 2017
selfserv_9122 with PID 14990 started at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9703: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 14990 at Tue May  2 15:48:14 UTC 2017
kill -USR1 14990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 14990 killed at Tue May  2 15:48:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:14 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15046 >/dev/null 2>/dev/null
selfserv_9122 with PID 15046 found at Tue May  2 15:48:14 UTC 2017
selfserv_9122 with PID 15046 started at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9704: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15046 at Tue May  2 15:48:15 UTC 2017
kill -USR1 15046
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15046 killed at Tue May  2 15:48:15 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15102 >/dev/null 2>/dev/null
selfserv_9122 with PID 15102 found at Tue May  2 15:48:15 UTC 2017
selfserv_9122 with PID 15102 started at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9705: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 15102 at Tue May  2 15:48:15 UTC 2017
kill -USR1 15102
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15102 killed at Tue May  2 15:48:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15170 >/dev/null 2>/dev/null
selfserv_9122 with PID 15170 found at Tue May  2 15:48:15 UTC 2017
selfserv_9122 with PID 15170 started at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9706: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15170 at Tue May  2 15:48:15 UTC 2017
kill -USR1 15170
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15170 killed at Tue May  2 15:48:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15226 >/dev/null 2>/dev/null
selfserv_9122 with PID 15226 found at Tue May  2 15:48:15 UTC 2017
selfserv_9122 with PID 15226 started at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9707: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15226 at Tue May  2 15:48:15 UTC 2017
kill -USR1 15226
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15226 killed at Tue May  2 15:48:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15282 >/dev/null 2>/dev/null
selfserv_9122 with PID 15282 found at Tue May  2 15:48:15 UTC 2017
selfserv_9122 with PID 15282 started at Tue May  2 15:48:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9708: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15282 at Tue May  2 15:48:16 UTC 2017
kill -USR1 15282
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15282 killed at Tue May  2 15:48:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15350 >/dev/null 2>/dev/null
selfserv_9122 with PID 15350 found at Tue May  2 15:48:16 UTC 2017
selfserv_9122 with PID 15350 started at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9709: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15350 at Tue May  2 15:48:16 UTC 2017
kill -USR1 15350
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15350 killed at Tue May  2 15:48:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15406 >/dev/null 2>/dev/null
selfserv_9122 with PID 15406 found at Tue May  2 15:48:16 UTC 2017
selfserv_9122 with PID 15406 started at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9710: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15406 at Tue May  2 15:48:16 UTC 2017
kill -USR1 15406
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15406 killed at Tue May  2 15:48:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:16 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15462 >/dev/null 2>/dev/null
selfserv_9122 with PID 15462 found at Tue May  2 15:48:16 UTC 2017
selfserv_9122 with PID 15462 started at Tue May  2 15:48:16 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9711: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15462 at Tue May  2 15:48:17 UTC 2017
kill -USR1 15462
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15462 killed at Tue May  2 15:48:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15530 >/dev/null 2>/dev/null
selfserv_9122 with PID 15530 found at Tue May  2 15:48:17 UTC 2017
selfserv_9122 with PID 15530 started at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9712: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15530 at Tue May  2 15:48:17 UTC 2017
kill -USR1 15530
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15530 killed at Tue May  2 15:48:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15587 >/dev/null 2>/dev/null
selfserv_9122 with PID 15587 found at Tue May  2 15:48:17 UTC 2017
selfserv_9122 with PID 15587 started at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9713: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15587 at Tue May  2 15:48:17 UTC 2017
kill -USR1 15587
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15587 killed at Tue May  2 15:48:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:17 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15643 >/dev/null 2>/dev/null
selfserv_9122 with PID 15643 found at Tue May  2 15:48:17 UTC 2017
selfserv_9122 with PID 15643 started at Tue May  2 15:48:17 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9714: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15643 at Tue May  2 15:48:18 UTC 2017
kill -USR1 15643
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15643 killed at Tue May  2 15:48:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15711 >/dev/null 2>/dev/null
selfserv_9122 with PID 15711 found at Tue May  2 15:48:18 UTC 2017
selfserv_9122 with PID 15711 started at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9715: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15711 at Tue May  2 15:48:18 UTC 2017
kill -USR1 15711
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15711 killed at Tue May  2 15:48:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15767 >/dev/null 2>/dev/null
selfserv_9122 with PID 15767 found at Tue May  2 15:48:18 UTC 2017
selfserv_9122 with PID 15767 started at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9716: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15767 at Tue May  2 15:48:18 UTC 2017
kill -USR1 15767
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15767 killed at Tue May  2 15:48:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:18 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15823 >/dev/null 2>/dev/null
selfserv_9122 with PID 15823 found at Tue May  2 15:48:18 UTC 2017
selfserv_9122 with PID 15823 started at Tue May  2 15:48:18 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9717: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 15823 at Tue May  2 15:48:19 UTC 2017
kill -USR1 15823
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15823 killed at Tue May  2 15:48:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15891 >/dev/null 2>/dev/null
selfserv_9122 with PID 15891 found at Tue May  2 15:48:19 UTC 2017
selfserv_9122 with PID 15891 started at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9718: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15891 at Tue May  2 15:48:19 UTC 2017
kill -USR1 15891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15891 killed at Tue May  2 15:48:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15947 >/dev/null 2>/dev/null
selfserv_9122 with PID 15947 found at Tue May  2 15:48:19 UTC 2017
selfserv_9122 with PID 15947 started at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9719: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 15947 at Tue May  2 15:48:19 UTC 2017
kill -USR1 15947
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 15947 killed at Tue May  2 15:48:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16003 >/dev/null 2>/dev/null
selfserv_9122 with PID 16003 found at Tue May  2 15:48:19 UTC 2017
selfserv_9122 with PID 16003 started at Tue May  2 15:48:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9720: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16003 at Tue May  2 15:48:20 UTC 2017
kill -USR1 16003
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16003 killed at Tue May  2 15:48:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16071 >/dev/null 2>/dev/null
selfserv_9122 with PID 16071 found at Tue May  2 15:48:20 UTC 2017
selfserv_9122 with PID 16071 started at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9721: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16071 at Tue May  2 15:48:20 UTC 2017
kill -USR1 16071
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16071 killed at Tue May  2 15:48:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16127 >/dev/null 2>/dev/null
selfserv_9122 with PID 16127 found at Tue May  2 15:48:20 UTC 2017
selfserv_9122 with PID 16127 started at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9722: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16127 at Tue May  2 15:48:20 UTC 2017
kill -USR1 16127
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16127 killed at Tue May  2 15:48:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:20 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16183 >/dev/null 2>/dev/null
selfserv_9122 with PID 16183 found at Tue May  2 15:48:20 UTC 2017
selfserv_9122 with PID 16183 started at Tue May  2 15:48:20 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9723: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16183 at Tue May  2 15:48:21 UTC 2017
kill -USR1 16183
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16183 killed at Tue May  2 15:48:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16251 >/dev/null 2>/dev/null
selfserv_9122 with PID 16251 found at Tue May  2 15:48:21 UTC 2017
selfserv_9122 with PID 16251 started at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9724: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16251 at Tue May  2 15:48:21 UTC 2017
kill -USR1 16251
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16251 killed at Tue May  2 15:48:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16307 >/dev/null 2>/dev/null
selfserv_9122 with PID 16307 found at Tue May  2 15:48:21 UTC 2017
selfserv_9122 with PID 16307 started at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9725: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16307 at Tue May  2 15:48:21 UTC 2017
kill -USR1 16307
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16307 killed at Tue May  2 15:48:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:21 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16363 >/dev/null 2>/dev/null
selfserv_9122 with PID 16363 found at Tue May  2 15:48:21 UTC 2017
selfserv_9122 with PID 16363 started at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9726: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16363 at Tue May  2 15:48:22 UTC 2017
kill -USR1 16363
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16363 killed at Tue May  2 15:48:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16432 >/dev/null 2>/dev/null
selfserv_9122 with PID 16432 found at Tue May  2 15:48:22 UTC 2017
selfserv_9122 with PID 16432 started at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9727: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16432 at Tue May  2 15:48:22 UTC 2017
kill -USR1 16432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16432 killed at Tue May  2 15:48:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16488 >/dev/null 2>/dev/null
selfserv_9122 with PID 16488 found at Tue May  2 15:48:22 UTC 2017
selfserv_9122 with PID 16488 started at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9728: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16488 at Tue May  2 15:48:22 UTC 2017
kill -USR1 16488
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16488 killed at Tue May  2 15:48:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16544 >/dev/null 2>/dev/null
selfserv_9122 with PID 16544 found at Tue May  2 15:48:22 UTC 2017
selfserv_9122 with PID 16544 started at Tue May  2 15:48:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16544 at Tue May  2 15:48:23 UTC 2017
kill -USR1 16544
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16544 killed at Tue May  2 15:48:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16612 >/dev/null 2>/dev/null
selfserv_9122 with PID 16612 found at Tue May  2 15:48:23 UTC 2017
selfserv_9122 with PID 16612 started at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9730: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16612 at Tue May  2 15:48:23 UTC 2017
kill -USR1 16612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16612 killed at Tue May  2 15:48:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16668 >/dev/null 2>/dev/null
selfserv_9122 with PID 16668 found at Tue May  2 15:48:23 UTC 2017
selfserv_9122 with PID 16668 started at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9731: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16668 at Tue May  2 15:48:23 UTC 2017
kill -USR1 16668
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16668 killed at Tue May  2 15:48:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16724 >/dev/null 2>/dev/null
selfserv_9122 with PID 16724 found at Tue May  2 15:48:23 UTC 2017
selfserv_9122 with PID 16724 started at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9732: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16724 at Tue May  2 15:48:23 UTC 2017
kill -USR1 16724
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16724 killed at Tue May  2 15:48:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:23 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:23 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16792 >/dev/null 2>/dev/null
selfserv_9122 with PID 16792 found at Tue May  2 15:48:23 UTC 2017
selfserv_9122 with PID 16792 started at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9733: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16792 at Tue May  2 15:48:24 UTC 2017
kill -USR1 16792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16792 killed at Tue May  2 15:48:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16848 >/dev/null 2>/dev/null
selfserv_9122 with PID 16848 found at Tue May  2 15:48:24 UTC 2017
selfserv_9122 with PID 16848 started at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9734: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 16848 at Tue May  2 15:48:24 UTC 2017
kill -USR1 16848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16848 killed at Tue May  2 15:48:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16904 >/dev/null 2>/dev/null
selfserv_9122 with PID 16904 found at Tue May  2 15:48:24 UTC 2017
selfserv_9122 with PID 16904 started at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9735: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16904 at Tue May  2 15:48:24 UTC 2017
kill -USR1 16904
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16904 killed at Tue May  2 15:48:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:24 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16972 >/dev/null 2>/dev/null
selfserv_9122 with PID 16972 found at Tue May  2 15:48:24 UTC 2017
selfserv_9122 with PID 16972 started at Tue May  2 15:48:24 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9736: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 16972 at Tue May  2 15:48:25 UTC 2017
kill -USR1 16972
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 16972 killed at Tue May  2 15:48:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17028 >/dev/null 2>/dev/null
selfserv_9122 with PID 17028 found at Tue May  2 15:48:25 UTC 2017
selfserv_9122 with PID 17028 started at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9737: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17028 at Tue May  2 15:48:25 UTC 2017
kill -USR1 17028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17028 killed at Tue May  2 15:48:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9122 starting at Tue May  2 15:48:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17084 >/dev/null 2>/dev/null
selfserv_9122 with PID 17084 found at Tue May  2 15:48:25 UTC 2017
selfserv_9122 with PID 17084 started at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9738: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17084 at Tue May  2 15:48:25 UTC 2017
kill -USR1 17084
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17084 killed at Tue May  2 15:48:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17152 >/dev/null 2>/dev/null
selfserv_9122 with PID 17152 found at Tue May  2 15:48:25 UTC 2017
selfserv_9122 with PID 17152 started at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9739: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17152 at Tue May  2 15:48:25 UTC 2017
kill -USR1 17152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17152 killed at Tue May  2 15:48:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:25 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17208 >/dev/null 2>/dev/null
selfserv_9122 with PID 17208 found at Tue May  2 15:48:25 UTC 2017
selfserv_9122 with PID 17208 started at Tue May  2 15:48:25 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9740: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9122 with PID 17208 at Tue May  2 15:48:26 UTC 2017
kill -USR1 17208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17208 killed at Tue May  2 15:48:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17265 >/dev/null 2>/dev/null
selfserv_9122 with PID 17265 found at Tue May  2 15:48:26 UTC 2017
selfserv_9122 with PID 17265 started at Tue May  2 15:48:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9741: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 17265 at Tue May  2 15:48:26 UTC 2017
kill -USR1 17265
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17265 killed at Tue May  2 15:48:26 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9122 starting at Tue May  2 15:48:26 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:26 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:26 UTC 2017
selfserv_9122 with PID 17328 started at Tue May  2 15:48:26 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #9742: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #9743: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #9744: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9745: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9746: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9747: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9748: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9749: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9750: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #9751: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9752: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9753: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9754: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9755: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9756: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9757: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9758: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #9759: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9760: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9761: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9762: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9763: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9764: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9765: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9766: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #9767: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9768: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9769: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9770: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9771: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9772: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9773: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9774: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #9775: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9776: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9777: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9778: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9779: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9780: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9781: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17328 >/dev/null 2>/dev/null
selfserv_9122 with PID 17328 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #9782: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 17328 at Tue May  2 15:48:31 UTC 2017
kill -USR1 17328
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 17328 killed at Tue May  2 15:48:31 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:31 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:31 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:31 UTC 2017
selfserv_9122 with PID 18754 started at Tue May  2 15:48:31 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9783: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9784: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9785: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9786: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9787: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9788: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9789: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #9790: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9791: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9792: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9793: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9794: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9795: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9796: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9797: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #9798: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9799: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9800: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9801: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9802: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9803: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9804: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9805: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #9806: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9807: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9808: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9809: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9810: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9811: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9812: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9813: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #9814: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9815: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9816: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9817: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9818: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9819: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9820: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9821: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #9822: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18754 >/dev/null 2>/dev/null
selfserv_9122 with PID 18754 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9823: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 18754 at Tue May  2 15:48:37 UTC 2017
kill -USR1 18754
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 18754 killed at Tue May  2 15:48:37 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:37 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:37 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
selfserv_9122 with PID 20176 started at Tue May  2 15:48:37 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9824: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9825: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9826: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9827: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #9828: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9829: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9830: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9831: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9832: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9833: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #9834: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9835: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9836: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9837: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9838: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9839: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9840: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #9841: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9842: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9843: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9844: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9845: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9846: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9847: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #9848: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #9849: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #9850: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9851: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #9852: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #9853: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #9854: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9855: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9856: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9857: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9858: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9859: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9860: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #9861: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9862: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9863: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20176 >/dev/null 2>/dev/null
selfserv_9122 with PID 20176 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9864: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 20176 at Tue May  2 15:48:43 UTC 2017
kill -USR1 20176
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 20176 killed at Tue May  2 15:48:43 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:43 UTC 2017
selfserv_9122 with PID 21598 started at Tue May  2 15:48:43 UTC 2017
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9865: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9866: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #9867: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9868: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9869: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9870: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9871: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9872: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9873: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #9874: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9875: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9876: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9877: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9878: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9879: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9880: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #9881: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9882: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9883: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9884: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9885: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9886: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9887: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #9888: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9889: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9890: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9891: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9892: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9893: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9894: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9895: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #9896: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9897: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9898: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9899: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9900: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9901: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9902: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #9903: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #9904: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21598 >/dev/null 2>/dev/null
selfserv_9122 with PID 21598 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #9905: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9122 with PID 21598 at Tue May  2 15:48:49 UTC 2017
kill -USR1 21598
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 21598 killed at Tue May  2 15:48:49 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23023 >/dev/null 2>/dev/null
selfserv_9122 with PID 23023 found at Tue May  2 15:48:49 UTC 2017
selfserv_9122 with PID 23023 started at Tue May  2 15:48:49 UTC 2017
trying to kill selfserv_9122 with PID 23023 at Tue May  2 15:48:49 UTC 2017
kill -USR1 23023
./ssl.sh: line 183: 23023 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23023 killed at Tue May  2 15:48:49 UTC 2017
selfserv_9122 starting at Tue May  2 15:48:49 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:49 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:49 UTC 2017
selfserv_9122 with PID 23057 started at Tue May  2 15:48:49 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #9906: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #9907: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #9908: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9909: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9910: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9911: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9912: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9913: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #9914: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #9915: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #9916: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #9917: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #9918: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9919: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #9920: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9921: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9922: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9923: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9924: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9925: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #9926: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #9927: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #9928: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #9929: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #9930: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #9931: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #9932: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9933: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #9934: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #9935: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #9936: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #9937: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9938: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9939: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9940: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9941: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9942: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #9943: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #9944: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #9945: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23057 >/dev/null 2>/dev/null
selfserv_9122 with PID 23057 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #9946: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 23057 at Tue May  2 15:48:56 UTC 2017
kill -USR1 23057
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 23057 killed at Tue May  2 15:48:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:48:56 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:48:56 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:56 UTC 2017
selfserv_9122 with PID 24482 started at Tue May  2 15:48:56 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #9947: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #9948: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #9949: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #9950: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #9951: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #9952: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #9953: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #9954: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #9955: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #9956: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #9957: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #9958: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #9959: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9960: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #9961: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #9962: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #9963: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #9964: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #9965: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #9966: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #9967: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #9968: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #9969: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #9970: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #9971: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #9972: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #9973: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9974: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #9975: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #9976: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #9977: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #9978: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #9979: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #9980: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #9981: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #9982: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #9983: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #9984: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #9985: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #9986: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24482 >/dev/null 2>/dev/null
selfserv_9122 with PID 24482 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #9987: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 24482 at Tue May  2 15:49:04 UTC 2017
kill -USR1 24482
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 24482 killed at Tue May  2 15:49:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:04 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:04 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:04 UTC 2017
selfserv_9122 with PID 25904 started at Tue May  2 15:49:04 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9988: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9989: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9990: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9991: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9992: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #9993: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9994: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9995: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9996: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9997: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9998: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #9999: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #10000: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10001: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #10002: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #10003: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #10004: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #10005: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #10006: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10007: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10008: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10009: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10010: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10011: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10012: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #10013: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #10014: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10015: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #10016: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #10017: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #10018: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #10019: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10020: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10021: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10022: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10023: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10024: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10025: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #10026: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #10027: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25904 >/dev/null 2>/dev/null
selfserv_9122 with PID 25904 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #10028: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 25904 at Tue May  2 15:49:11 UTC 2017
kill -USR1 25904
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 25904 killed at Tue May  2 15:49:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:11 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:11 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:11 UTC 2017
selfserv_9122 with PID 27327 started at Tue May  2 15:49:11 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #10029: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #10030: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #10031: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #10032: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #10033: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #10034: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #10035: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #10036: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #10037: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #10038: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #10039: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #10040: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #10041: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10042: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #10043: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #10044: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #10045: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #10046: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #10047: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #10048: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #10049: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #10050: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #10051: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #10052: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #10053: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #10054: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #10055: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10056: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #10057: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #10058: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #10059: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #10060: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #10061: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10062: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10063: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10064: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10065: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10066: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:18 UTC 2017
ssl.sh: #10067: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:19 UTC 2017
ssl.sh: #10068: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27327 >/dev/null 2>/dev/null
selfserv_9122 with PID 27327 found at Tue May  2 15:49:19 UTC 2017
ssl.sh: #10069: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 27327 at Tue May  2 15:49:19 UTC 2017
kill -USR1 27327
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 27327 killed at Tue May  2 15:49:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:19 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:19 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:19 UTC 2017
selfserv_9122 with PID 28749 started at Tue May  2 15:49:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:19 UTC 2017
ssl.sh: #10070: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:19 UTC 2017
ssl.sh: #10071: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:20 UTC 2017
ssl.sh: #10072: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:20 UTC 2017
ssl.sh: #10073: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:20 UTC 2017
ssl.sh: #10074: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:20 UTC 2017
ssl.sh: #10075: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:21 UTC 2017
ssl.sh: #10076: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:21 UTC 2017
ssl.sh: #10077: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:21 UTC 2017
ssl.sh: #10078: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:21 UTC 2017
ssl.sh: #10079: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:21 UTC 2017
ssl.sh: #10080: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:22 UTC 2017
ssl.sh: #10081: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:22 UTC 2017
ssl.sh: #10082: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10083: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:22 UTC 2017
ssl.sh: #10084: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:23 UTC 2017
ssl.sh: #10085: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:23 UTC 2017
ssl.sh: #10086: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:23 UTC 2017
ssl.sh: #10087: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:23 UTC 2017
ssl.sh: #10088: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:23 UTC 2017
ssl.sh: #10089: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:24 UTC 2017
ssl.sh: #10090: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:24 UTC 2017
ssl.sh: #10091: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:24 UTC 2017
ssl.sh: #10092: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:24 UTC 2017
ssl.sh: #10093: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:24 UTC 2017
ssl.sh: #10094: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:25 UTC 2017
ssl.sh: #10095: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:25 UTC 2017
ssl.sh: #10096: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10097: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:25 UTC 2017
ssl.sh: #10098: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:26 UTC 2017
ssl.sh: #10099: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:26 UTC 2017
ssl.sh: #10100: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:26 UTC 2017
ssl.sh: #10101: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:27 UTC 2017
ssl.sh: #10102: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:27 UTC 2017
ssl.sh: #10103: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:27 UTC 2017
ssl.sh: #10104: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:27 UTC 2017
ssl.sh: #10105: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:28 UTC 2017
ssl.sh: #10106: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:28 UTC 2017
ssl.sh: #10107: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:28 UTC 2017
ssl.sh: #10108: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:28 UTC 2017
ssl.sh: #10109: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28749 >/dev/null 2>/dev/null
selfserv_9122 with PID 28749 found at Tue May  2 15:49:28 UTC 2017
ssl.sh: #10110: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 28749 at Tue May  2 15:49:28 UTC 2017
kill -USR1 28749
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 28749 killed at Tue May  2 15:49:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:28 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:28 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:28 UTC 2017
selfserv_9122 with PID 30172 started at Tue May  2 15:49:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:29 UTC 2017
ssl.sh: #10111: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:29 UTC 2017
ssl.sh: #10112: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:29 UTC 2017
ssl.sh: #10113: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:29 UTC 2017
ssl.sh: #10114: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:29 UTC 2017
ssl.sh: #10115: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10116: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10117: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10118: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10119: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10120: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:30 UTC 2017
ssl.sh: #10121: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
ssl.sh: #10122: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
ssl.sh: #10123: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
ssl.sh: #10125: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
ssl.sh: #10126: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:31 UTC 2017
ssl.sh: #10127: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10128: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10129: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10130: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10131: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10132: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:32 UTC 2017
ssl.sh: #10133: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
ssl.sh: #10134: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
ssl.sh: #10135: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
ssl.sh: #10136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
ssl.sh: #10137: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:33 UTC 2017
ssl.sh: #10139: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10140: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10141: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10142: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10143: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10144: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:34 UTC 2017
ssl.sh: #10145: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10147: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10148: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10149: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10150: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30172 >/dev/null 2>/dev/null
selfserv_9122 with PID 30172 found at Tue May  2 15:49:35 UTC 2017
ssl.sh: #10151: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 30172 at Tue May  2 15:49:35 UTC 2017
kill -USR1 30172
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 30172 killed at Tue May  2 15:49:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:35 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:35 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31596 >/dev/null 2>/dev/null
selfserv_9122 with PID 31596 found at Tue May  2 15:49:36 UTC 2017
selfserv_9122 with PID 31596 started at Tue May  2 15:49:36 UTC 2017
trying to kill selfserv_9122 with PID 31596 at Tue May  2 15:49:36 UTC 2017
kill -USR1 31596
./ssl.sh: line 183: 31596 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31596 killed at Tue May  2 15:49:36 UTC 2017
selfserv_9122 starting at Tue May  2 15:49:36 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:36 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:36 UTC 2017
selfserv_9122 with PID 31630 started at Tue May  2 15:49:36 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:36 UTC 2017
ssl.sh: #10152: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:36 UTC 2017
ssl.sh: #10153: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:36 UTC 2017
ssl.sh: #10154: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:36 UTC 2017
ssl.sh: #10155: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10156: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10157: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10158: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10159: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10160: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:37 UTC 2017
ssl.sh: #10161: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
ssl.sh: #10162: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
ssl.sh: #10163: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
ssl.sh: #10164: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10165: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
ssl.sh: #10166: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:38 UTC 2017
ssl.sh: #10167: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10168: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10169: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10170: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10171: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10172: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:39 UTC 2017
ssl.sh: #10173: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
ssl.sh: #10174: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
ssl.sh: #10175: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
ssl.sh: #10176: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
ssl.sh: #10177: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
ssl.sh: #10178: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10179: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10180: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10181: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10182: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10183: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10184: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:41 UTC 2017
ssl.sh: #10185: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:42 UTC 2017
ssl.sh: #10186: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:42 UTC 2017
ssl.sh: #10187: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:42 UTC 2017
ssl.sh: #10188: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:42 UTC 2017
ssl.sh: #10189: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:42 UTC 2017
ssl.sh: #10190: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:43 UTC 2017
ssl.sh: #10191: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31630 >/dev/null 2>/dev/null
selfserv_9122 with PID 31630 found at Tue May  2 15:49:43 UTC 2017
ssl.sh: #10192: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 31630 at Tue May  2 15:49:43 UTC 2017
kill -USR1 31630
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 31630 killed at Tue May  2 15:49:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:43 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:43 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:43 UTC 2017
selfserv_9122 with PID 612 started at Tue May  2 15:49:43 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:43 UTC 2017
ssl.sh: #10193: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:43 UTC 2017
ssl.sh: #10194: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:43 UTC 2017
ssl.sh: #10195: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:44 UTC 2017
ssl.sh: #10196: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:44 UTC 2017
ssl.sh: #10197: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:44 UTC 2017
ssl.sh: #10198: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:44 UTC 2017
ssl.sh: #10199: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:44 UTC 2017
ssl.sh: #10200: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:45 UTC 2017
ssl.sh: #10201: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:45 UTC 2017
ssl.sh: #10202: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:45 UTC 2017
ssl.sh: #10203: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:45 UTC 2017
ssl.sh: #10204: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:45 UTC 2017
ssl.sh: #10205: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:46 UTC 2017
ssl.sh: #10207: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:46 UTC 2017
ssl.sh: #10208: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:46 UTC 2017
ssl.sh: #10209: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:46 UTC 2017
ssl.sh: #10210: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:47 UTC 2017
ssl.sh: #10211: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:47 UTC 2017
ssl.sh: #10212: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:47 UTC 2017
ssl.sh: #10213: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:47 UTC 2017
ssl.sh: #10214: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:47 UTC 2017
ssl.sh: #10215: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:48 UTC 2017
ssl.sh: #10216: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:48 UTC 2017
ssl.sh: #10217: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:48 UTC 2017
ssl.sh: #10218: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:48 UTC 2017
ssl.sh: #10219: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10221: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10222: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10223: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10224: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10225: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:49 UTC 2017
ssl.sh: #10226: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:50 UTC 2017
ssl.sh: #10227: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:50 UTC 2017
ssl.sh: #10228: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:50 UTC 2017
ssl.sh: #10229: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:50 UTC 2017
ssl.sh: #10230: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:50 UTC 2017
ssl.sh: #10231: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:51 UTC 2017
ssl.sh: #10232: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 612 >/dev/null 2>/dev/null
selfserv_9122 with PID 612 found at Tue May  2 15:49:51 UTC 2017
ssl.sh: #10233: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 612 at Tue May  2 15:49:51 UTC 2017
kill -USR1 612
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 612 killed at Tue May  2 15:49:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:51 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:51 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:51 UTC 2017
selfserv_9122 with PID 2101 started at Tue May  2 15:49:51 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:51 UTC 2017
ssl.sh: #10234: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:51 UTC 2017
ssl.sh: #10235: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:51 UTC 2017
ssl.sh: #10236: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10237: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10238: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10239: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10240: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10241: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10242: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:52 UTC 2017
ssl.sh: #10243: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
ssl.sh: #10244: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
ssl.sh: #10245: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
ssl.sh: #10246: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
ssl.sh: #10248: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:53 UTC 2017
ssl.sh: #10249: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10250: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10251: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10252: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10253: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10254: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10255: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:54 UTC 2017
ssl.sh: #10256: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
ssl.sh: #10257: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
ssl.sh: #10258: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
ssl.sh: #10259: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
ssl.sh: #10260: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:55 UTC 2017
ssl.sh: #10262: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10263: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10264: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10265: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10266: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10267: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10268: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:56 UTC 2017
ssl.sh: #10269: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:57 UTC 2017
ssl.sh: #10270: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:57 UTC 2017
ssl.sh: #10271: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:57 UTC 2017
ssl.sh: #10272: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:57 UTC 2017
ssl.sh: #10273: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2101 >/dev/null 2>/dev/null
selfserv_9122 with PID 2101 found at Tue May  2 15:49:57 UTC 2017
ssl.sh: #10274: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 2101 at Tue May  2 15:49:57 UTC 2017
kill -USR1 2101
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 2101 killed at Tue May  2 15:49:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9122 starting at Tue May  2 15:49:57 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:49:57 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:57 UTC 2017
selfserv_9122 with PID 3523 started at Tue May  2 15:49:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:58 UTC 2017
ssl.sh: #10275: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:58 UTC 2017
ssl.sh: #10276: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:58 UTC 2017
ssl.sh: #10277: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:58 UTC 2017
ssl.sh: #10278: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:58 UTC 2017
ssl.sh: #10279: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:59 UTC 2017
ssl.sh: #10280: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:59 UTC 2017
ssl.sh: #10281: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:59 UTC 2017
ssl.sh: #10282: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:59 UTC 2017
ssl.sh: #10283: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:49:59 UTC 2017
ssl.sh: #10284: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:00 UTC 2017
ssl.sh: #10285: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:00 UTC 2017
ssl.sh: #10286: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:00 UTC 2017
ssl.sh: #10287: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10288: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:00 UTC 2017
ssl.sh: #10289: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:01 UTC 2017
ssl.sh: #10290: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:01 UTC 2017
ssl.sh: #10291: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:01 UTC 2017
ssl.sh: #10292: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:01 UTC 2017
ssl.sh: #10293: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:01 UTC 2017
ssl.sh: #10294: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:02 UTC 2017
ssl.sh: #10295: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:02 UTC 2017
ssl.sh: #10296: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:02 UTC 2017
ssl.sh: #10297: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:02 UTC 2017
ssl.sh: #10298: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:02 UTC 2017
ssl.sh: #10299: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:03 UTC 2017
ssl.sh: #10300: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:03 UTC 2017
ssl.sh: #10301: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10302: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:03 UTC 2017
ssl.sh: #10303: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:03 UTC 2017
ssl.sh: #10304: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:04 UTC 2017
ssl.sh: #10305: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:04 UTC 2017
ssl.sh: #10306: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:04 UTC 2017
ssl.sh: #10307: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:04 UTC 2017
ssl.sh: #10308: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:04 UTC 2017
ssl.sh: #10309: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:05 UTC 2017
ssl.sh: #10310: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:05 UTC 2017
ssl.sh: #10311: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:05 UTC 2017
ssl.sh: #10312: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:05 UTC 2017
ssl.sh: #10313: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:05 UTC 2017
ssl.sh: #10314: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3523 >/dev/null 2>/dev/null
selfserv_9122 with PID 3523 found at Tue May  2 15:50:06 UTC 2017
ssl.sh: #10315: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 3523 at Tue May  2 15:50:06 UTC 2017
kill -USR1 3523
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 3523 killed at Tue May  2 15:50:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:50:06 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:50:06 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:06 UTC 2017
selfserv_9122 with PID 4948 started at Tue May  2 15:50:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:06 UTC 2017
ssl.sh: #10316: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:06 UTC 2017
ssl.sh: #10317: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:06 UTC 2017
ssl.sh: #10318: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:07 UTC 2017
ssl.sh: #10319: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:07 UTC 2017
ssl.sh: #10320: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:07 UTC 2017
ssl.sh: #10321: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:07 UTC 2017
ssl.sh: #10322: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:07 UTC 2017
ssl.sh: #10323: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:08 UTC 2017
ssl.sh: #10324: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:08 UTC 2017
ssl.sh: #10325: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:08 UTC 2017
ssl.sh: #10326: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:08 UTC 2017
ssl.sh: #10327: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:09 UTC 2017
ssl.sh: #10328: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:09 UTC 2017
ssl.sh: #10330: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:09 UTC 2017
ssl.sh: #10331: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:09 UTC 2017
ssl.sh: #10332: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:10 UTC 2017
ssl.sh: #10333: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:10 UTC 2017
ssl.sh: #10334: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:10 UTC 2017
ssl.sh: #10335: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:10 UTC 2017
ssl.sh: #10336: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:11 UTC 2017
ssl.sh: #10337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:11 UTC 2017
ssl.sh: #10338: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:11 UTC 2017
ssl.sh: #10339: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:11 UTC 2017
ssl.sh: #10340: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:11 UTC 2017
ssl.sh: #10341: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:12 UTC 2017
ssl.sh: #10342: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:12 UTC 2017
ssl.sh: #10344: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:12 UTC 2017
ssl.sh: #10345: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:13 UTC 2017
ssl.sh: #10346: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:13 UTC 2017
ssl.sh: #10347: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:13 UTC 2017
ssl.sh: #10348: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:13 UTC 2017
ssl.sh: #10349: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:13 UTC 2017
ssl.sh: #10350: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:14 UTC 2017
ssl.sh: #10351: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:14 UTC 2017
ssl.sh: #10352: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:14 UTC 2017
ssl.sh: #10353: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:14 UTC 2017
ssl.sh: #10354: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:14 UTC 2017
ssl.sh: #10355: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4948 >/dev/null 2>/dev/null
selfserv_9122 with PID 4948 found at Tue May  2 15:50:15 UTC 2017
ssl.sh: #10356: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 4948 at Tue May  2 15:50:15 UTC 2017
kill -USR1 4948
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 4948 killed at Tue May  2 15:50:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:50:15 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:50:15 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:15 UTC 2017
selfserv_9122 with PID 6372 started at Tue May  2 15:50:15 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:15 UTC 2017
ssl.sh: #10357: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:15 UTC 2017
ssl.sh: #10358: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:15 UTC 2017
ssl.sh: #10359: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:15 UTC 2017
ssl.sh: #10360: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:16 UTC 2017
ssl.sh: #10361: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:16 UTC 2017
ssl.sh: #10362: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:16 UTC 2017
ssl.sh: #10363: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:16 UTC 2017
ssl.sh: #10364: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:16 UTC 2017
ssl.sh: #10365: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
ssl.sh: #10366: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
ssl.sh: #10367: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
ssl.sh: #10368: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
ssl.sh: #10369: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:17 UTC 2017
ssl.sh: #10371: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10372: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10373: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10374: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10375: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10376: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:18 UTC 2017
ssl.sh: #10377: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:19 UTC 2017
ssl.sh: #10378: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:19 UTC 2017
ssl.sh: #10379: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:19 UTC 2017
ssl.sh: #10380: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:19 UTC 2017
ssl.sh: #10381: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:19 UTC 2017
ssl.sh: #10382: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
ssl.sh: #10383: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
ssl.sh: #10385: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
ssl.sh: #10386: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
ssl.sh: #10387: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:20 UTC 2017
ssl.sh: #10388: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10389: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10390: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10391: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10392: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10393: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:21 UTC 2017
ssl.sh: #10394: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:22 UTC 2017
ssl.sh: #10395: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:22 UTC 2017
ssl.sh: #10396: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9122 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6372 >/dev/null 2>/dev/null
selfserv_9122 with PID 6372 found at Tue May  2 15:50:22 UTC 2017
ssl.sh: #10397: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 6372 at Tue May  2 15:50:22 UTC 2017
kill -USR1 6372
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 6372 killed at Tue May  2 15:50:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9122 starting at Tue May  2 15:50:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:50:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7795 >/dev/null 2>/dev/null
selfserv_9122 with PID 7795 found at Tue May  2 15:50:22 UTC 2017
selfserv_9122 with PID 7795 started at Tue May  2 15:50:22 UTC 2017
trying to kill selfserv_9122 with PID 7795 at Tue May  2 15:50:22 UTC 2017
kill -USR1 7795
./ssl.sh: line 183:  7795 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9122 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7795 killed at Tue May  2 15:50:22 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9122 starting at Tue May  2 15:50:22 UTC 2017
selfserv_9122 -D -p 9122 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.12777\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9122 at Tue May  2 15:50:22 UTC 2017
tstclnt -p 9122 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7830 >/dev/null 2>/dev/null
selfserv_9122 with PID 7830 found at Tue May  2 15:50:22 UTC 2017
selfserv_9122 with PID 7830 started at Tue May  2 15:50:22 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10398: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10399: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10400: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10401: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10402: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10403: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10404: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10405: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10406: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10407: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10408: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10409: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10410: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10411: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10412: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10413: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10414: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10415: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9122 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10416: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9122 with PID 7830 at Tue May  2 15:50:24 UTC 2017
kill -USR1 7830
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9122 -b -p 9122 2>/dev/null;
selfserv_9122 with PID 7830 killed at Tue May  2 15:50:24 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:50:24 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:50:24 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.12777 -t "Test1"
sdr.sh: #10417: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.12777 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10418: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.12777 -t "1234567"
sdr.sh: #10419: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.12777 -t "Test1"
sdr.sh: #10420: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.12777 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10421: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.12777 -t "1234567"
sdr.sh: #10422: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #10423: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10424: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10425: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10426: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10427: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10428: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:46:40 2017
            Not After : Mon May 02 15:46:40 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:da:99:58:d3:f9:a8:b7:51:b8:df:cd:9a:6e:e2:b2:
                    e1:22:d4:09:4f:b3:03:1a:9b:dd:82:0a:cb:37:61:7f:
                    f3:1b:1e:89:8c:c9:cc:3e:b7:11:6e:18:1c:4a:96:75:
                    66:0d:94:17:28:cd:20:85:f2:ea:bc:6d:58:f4:af:b4:
                    a1:29:0e:79:b7:54:34:d8:0b:26:aa:c4:6e:ac:4b:9e:
                    ef:67:77:9b:13:dd:2a:e3:62:62:aa:67:01:60:10:d3:
                    a9:e9:fc:4b:17:98:ea:57:ef:50:09:c6:0c:02:03:aa:
                    4d:1f:cc:93:61:aa:94:87:51:33:49:be:16:7d:c3:4a:
                    a8:f2:67:62:da:ca:60:84:a3:1a:30:2f:ee:d5:a1:f0:
                    27:05:49:93:b4:72:77:c4:ea:a8:27:9b:a9:e7:9b:c4:
                    63:6a:6b:03:e4:17:12:5e:bb:38:54:86:42:85:06:61:
                    91:4d:58:a5:8c:8f:58:af:1e:54:cb:3f:43:ad:ba:6f:
                    d1:09:6d:35:4a:40:30:43:9b:96:41:0c:74:c6:8a:0b:
                    fe:0d:3e:d5:ea:a6:14:eb:5f:b5:13:95:a1:95:ef:86:
                    3a:4d:31:bd:3e:5f:6a:6d:ef:d2:39:61:2f:ba:94:8f:
                    b8:63:8a:85:dc:de:45:f8:46:0b:01:51:aa:6e:42:25
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:66:3b:15:4a:43:6c:1b:ef:22:e2:8b:f3:ee:6f:91:
        1c:ff:44:80:2e:a5:08:a8:2f:b3:97:3d:a6:d7:1e:0f:
        6f:ed:1f:5e:c3:ff:3e:a5:15:05:08:af:e1:c1:54:fd:
        76:c2:21:0a:ae:67:ff:22:09:f5:b3:af:ca:e2:9f:9a:
        21:d4:40:fe:e0:fd:41:59:ce:34:dc:07:44:fc:45:69:
        58:77:77:85:fb:59:ff:51:0a:f4:9e:fc:99:e6:b1:d8:
        b0:a1:97:d6:49:92:82:84:8a:7e:0e:9b:29:8b:f0:32:
        a6:53:36:9c:18:28:c9:7d:5c:7a:a0:e5:41:6c:13:a1:
        9c:5a:c6:53:67:21:92:7a:61:4d:fb:06:c9:07:69:9c:
        68:98:14:41:f5:45:14:8f:c3:29:89:c2:ec:46:c3:f3:
        5b:27:38:a0:d1:df:d4:5e:6d:fc:ac:5e:bf:ad:74:42:
        1f:42:f0:f9:b2:d9:8f:d8:3c:1b:44:14:6e:0a:7f:2a:
        f2:12:35:e6:0b:a3:84:62:61:a3:d1:e2:e0:86:a8:04:
        88:30:71:00:29:bc:f4:4c:22:bc:32:b4:a6:ac:06:f7:
        f6:ff:42:23:94:19:ca:e3:3b:5e:33:6a:ff:6c:76:62:
        38:32:c3:1d:4a:6a:3a:26:52:5e:82:e7:12:60:02:ed
    Fingerprint (SHA-256):
        74:62:96:76:25:25:D9:00:48:C3:A3:06:99:74:0C:D4:7F:65:EF:4A:22:A3:F2:B7:B7:DF:FA:05:FB:2E:B2:42
    Fingerprint (SHA1):
        AC:C9:8F:01:95:62:68:7E:CD:E0:AB:F0:E8:46:31:CC:9D:02:D1:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10429: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:46:43 2017
            Not After : Mon May 02 15:46:43 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:18:10:30:7c:03:96:e9:bb:1c:e0:0c:09:98:31:11:
                    13:88:68:43:7a:38:74:b3:f0:db:97:ba:90:ab:10:03:
                    e3:74:bd:d4:0b:79:b8:b3:f2:9e:80:7f:c6:77:b7:17:
                    b6:05:78:d8:bc:89:96:c1:35:42:87:ef:d2:f6:1d:67:
                    ad:4f:e0:f2:a8:4c:f6:78:0b:ae:15:ed:ba:1f:a5:4d:
                    c8:ce:3b:ac:10:ea:51:55:c2:04:9a:ab:3c:3a:78:ca:
                    90:42:7c:b6:0b:80:83:be:32:7d:c6:f8:5d:d7:dd:ec:
                    69:d4:da:dc:b7:81:53:5f:cd:4c:43:73:06:2b:bd:00:
                    bf:69:db:69:8e:de:92:b8:29:78:2a:6f:99:5b:f9:81:
                    67:64:d7:0d:c3:09:64:37:10:66:50:39:d9:b3:15:43:
                    ac:5e:65:87:48:02:e1:c5:f0:42:ca:69:50:4a:52:b5:
                    80:49:8d:26:68:d1:19:2a:3e:18:03:24:b9:96:a4:d4:
                    4f:38:46:40:d1:a5:0f:bb:27:d2:f1:b4:27:4f:fc:c4:
                    6e:e0:f2:04:e1:72:ed:67:26:c1:67:a6:ea:03:dd:4b:
                    84:c7:c9:aa:cb:ea:e5:61:c2:ef:dd:41:40:4c:3b:f9:
                    e9:ad:7b:75:b3:a5:87:e9:43:f7:65:4b:c9:66:5d:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:9f:42:20:ad:c1:01:bd:44:8b:b5:8b:86:89:dd:76:
        04:1b:95:42:35:9b:4a:08:e5:82:33:da:1b:42:c0:9b:
        8d:e4:cc:43:9c:89:c4:f4:f9:c0:e1:38:ff:7a:c7:58:
        ee:c5:06:cb:bf:1e:d2:ce:10:b4:b1:6a:92:5b:25:88:
        ef:bb:04:72:3e:1e:cd:aa:00:01:b4:57:bb:a5:e2:64:
        07:be:ad:d3:11:85:b7:fc:9b:bb:18:cc:00:6c:e6:d1:
        2d:86:bd:03:41:98:15:4f:27:8a:20:da:c5:da:6a:28:
        d5:b5:93:9d:8b:ec:b2:53:c9:79:6a:9e:80:ad:46:54:
        d8:22:d2:06:8f:75:2d:36:54:73:97:44:04:d0:ef:9d:
        34:b9:73:51:6e:d1:ce:12:99:01:c8:43:ed:b9:39:ce:
        05:3d:31:ca:b0:20:4c:af:3a:5d:83:c5:bc:04:b8:83:
        5e:3d:a0:bb:89:81:45:83:25:6b:f2:c6:f7:be:f2:6d:
        ae:6d:5e:b4:aa:47:11:45:ee:44:0f:12:48:af:e4:c4:
        fe:dc:97:7d:7b:c0:46:78:db:61:eb:57:4e:ab:22:2a:
        c0:68:3b:d3:d3:20:06:7a:45:f5:30:1e:96:96:8c:41:
        16:56:6d:f8:19:61:9c:6c:6f:0a:7b:a1:39:39:82:d3
    Fingerprint (SHA-256):
        8B:07:6D:F3:AB:A7:11:4C:0C:DE:18:7A:39:50:9D:BB:F9:F1:72:42:E0:94:18:A9:7D:4A:61:C2:2C:C1:02:B1
    Fingerprint (SHA1):
        7D:04:90:55:27:B2:35:B4:3E:37:EE:CF:9E:D8:D6:BC:F0:5D:D9:30
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10430: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10431: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-1-clientCA                                             ,,   
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
chain-2-clientCA-dsa                                         ,,   
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.12777 -t Test2 -f ../tests.pw
merge.sh: #10432: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.12777 -t Test1 -f ../tests.pw
merge.sh: #10433: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10434: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10435: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10436: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:47:03 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:45:30 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:46:58 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10437: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 15:50:28 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:50:28 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #10438: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155029 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10439: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #10440: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10441: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #10442: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10443: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10444: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10445: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10446: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #10447: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10448: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10449: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10450: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10451: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #10452: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10453: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10454: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10455: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10456: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #10457: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10458: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10459: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10460: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #10461: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10462: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10463: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10464: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #10465: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10466: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10467: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10468: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #10469: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10470: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10471: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10472: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #10473: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10474: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10475: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10476: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #10477: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10478: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10479: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10480: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #10481: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10482: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10483: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10484: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #10485: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10486: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10487: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10488: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #10489: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10490: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10491: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10492: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #10493: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10494: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9132/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10495: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10496: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #10497: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10498: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9133
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10499: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10500: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502155041Z
nextupdate=20180502155041Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:50:41 2017
    Next Update: Wed May 02 15:50:41 2018
    CRL Extensions:
chains.sh: #10501: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502155042Z
addcert 2 20170502155042Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:50:42 2017
    Next Update: Wed May 02 15:50:41 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:42 2017
    CRL Extensions:
chains.sh: #10502: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502155042Z
nextupdate=20180502155042Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:50:42 2017
    Next Update: Wed May 02 15:50:42 2018
    CRL Extensions:
chains.sh: #10503: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502155043Z
addcert 2 20170502155043Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:50:43 2017
    Next Update: Wed May 02 15:50:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:43 2017
    CRL Extensions:
chains.sh: #10504: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502155044Z
addcert 4 20170502155044Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:50:44 2017
    Next Update: Wed May 02 15:50:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:43 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:50:44 2017
    CRL Extensions:
chains.sh: #10505: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502155044Z
nextupdate=20180502155044Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:50:44 2017
    Next Update: Wed May 02 15:50:44 2018
    CRL Extensions:
chains.sh: #10506: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502155045Z
addcert 2 20170502155045Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:50:45 2017
    Next Update: Wed May 02 15:50:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:45 2017
    CRL Extensions:
chains.sh: #10507: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502155046Z
addcert 3 20170502155046Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:50:46 2017
    Next Update: Wed May 02 15:50:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:45 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:50:46 2017
    CRL Extensions:
chains.sh: #10508: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502155047Z
nextupdate=20180502155047Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:50:47 2017
    Next Update: Wed May 02 15:50:47 2018
    CRL Extensions:
chains.sh: #10509: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502155048Z
addcert 2 20170502155048Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:50:48 2017
    Next Update: Wed May 02 15:50:47 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:48 2017
    CRL Extensions:
chains.sh: #10510: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502155049Z
addcert 3 20170502155049Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:50:49 2017
    Next Update: Wed May 02 15:50:47 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:50:48 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:50:49 2017
    CRL Extensions:
chains.sh: #10511: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #10512: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #10513: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10514: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10515: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10516: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10517: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_x86_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10518: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #10519: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #10520: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10521: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #10522: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #10523: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #10524: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #10525: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #10526: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #10527: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #10528: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #10529: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #10530: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #10531: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #10532: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #10533: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #10534: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #10535: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:50:54 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:50:54 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 10353 >/dev/null 2>/dev/null
httpserv with PID 10353 found at Tue May  2 15:50:54 UTC 2017
httpserv with PID 10353 started at Tue May  2 15:50:54 UTC 2017
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #10536: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155029 (0x1dee4715)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:50:28 2017
            Not After : Mon May 02 15:50:28 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:1e:8c:8b:98:f0:8a:82:7a:cf:ac:ed:7c:5f:44:91:
                    4a:e4:99:16:e1:e2:b9:7c:af:0e:da:e1:20:49:95:fa:
                    bc:bf:f6:5a:cc:16:0a:82:57:52:fc:e9:7a:9b:0b:fd:
                    0d:38:14:e1:31:f8:35:ed:2b:85:61:83:1e:be:26:9f:
                    19:31:06:bb:02:12:c0:3b:51:22:b1:fa:63:ea:39:af:
                    66:f7:b2:e5:06:e3:f2:0a:42:ea:e7:cc:9c:57:bc:74:
                    d7:7c:9a:57:1d:98:49:ba:c0:9f:f3:81:6a:b3:91:67:
                    9a:00:23:d8:01:90:c7:f8:db:c2:97:58:8e:90:0f:9e:
                    6d:cd:6d:e3:63:c5:a8:c4:c7:64:d5:60:ba:f7:be:05:
                    a3:c3:57:84:91:65:bc:10:bb:b0:3f:79:4b:6e:6f:ec:
                    ea:3a:b6:37:2c:c2:5b:2f:a6:af:6c:ab:bd:61:72:a8:
                    fb:bc:7a:2e:2b:ff:cc:65:e3:46:51:34:a6:52:48:b0:
                    33:3f:0f:ab:84:67:ff:a2:b1:ee:05:66:27:dd:d5:c4:
                    ad:5d:02:b3:e7:f4:78:9b:d4:ce:2d:5d:07:84:0f:aa:
                    95:fb:5f:21:ca:9b:0b:e6:e3:6a:a9:3d:d7:22:31:37:
                    5b:e4:7d:47:76:8c:b5:08:51:5b:88:4b:9c:67:6f:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:90:33:1a:3c:e5:f5:ac:2f:ed:a3:6b:2c:fa:dd:de:
        94:84:47:91:bf:46:59:c7:5a:7b:98:0c:f6:dd:be:81:
        d5:4d:c7:f5:72:15:88:b8:69:d4:99:c3:e3:e6:94:8a:
        7d:ae:df:b7:96:1c:88:9a:1b:8f:d8:ed:d0:c7:2c:df:
        a8:8a:6c:4d:c4:9e:0a:37:76:3f:6d:e5:0e:cc:da:65:
        67:aa:e1:2c:28:a3:2f:9d:d7:64:6f:df:29:94:19:61:
        c5:d0:ea:3d:62:ea:79:25:68:55:a0:5d:39:78:19:13:
        27:03:cd:ae:c1:43:73:02:0f:3c:e3:db:25:ad:4a:c5:
        df:01:d7:d2:8e:7b:1d:92:46:a3:eb:b3:fa:df:d4:41:
        67:5b:86:2e:45:74:a7:f8:bd:5a:1d:e1:a5:b6:e1:f2:
        5c:e0:49:7a:25:d5:49:88:ae:3f:c1:0c:6b:5d:eb:c3:
        f1:e8:46:17:d0:b3:e4:31:ab:21:b9:94:47:da:6c:fb:
        a3:10:fd:57:1c:6e:18:94:e8:c8:64:7e:41:ce:bd:cd:
        cd:7a:44:b2:42:43:bd:3d:b2:c4:76:ac:ea:0e:09:6d:
        4f:99:a8:09:ad:db:1a:ec:e2:b6:f8:b5:ff:8e:d9:43:
        94:27:3f:02:e1:3f:1a:90:df:06:01:7e:c4:50:e7:6c
    Fingerprint (SHA-256):
        A2:4B:42:67:C1:BC:D1:08:C1:E6:CB:97:BA:CE:75:C4:E1:5C:8F:44:CC:BC:8A:D3:38:18:C2:86:88:36:3C:EC
    Fingerprint (SHA1):
        0B:2C:B5:2B:A3:8D:74:63:CD:9D:C8:76:47:F3:98:E5:4C:A5:2B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10537: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10538: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10539: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 10353 at Tue May  2 15:50:55 UTC 2017
kill -USR1 10353
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 10353 killed at Tue May  2 15:50:55 UTC 2017
httpserv starting at Tue May  2 15:50:55 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:50:55 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 10522 >/dev/null 2>/dev/null
httpserv with PID 10522 found at Tue May  2 15:50:55 UTC 2017
httpserv with PID 10522 started at Tue May  2 15:50:55 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10540: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10541: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10542: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9132 -q -t 20
chains.sh: #10543: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155029 (0x1dee4715)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:50:28 2017
            Not After : Mon May 02 15:50:28 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:1e:8c:8b:98:f0:8a:82:7a:cf:ac:ed:7c:5f:44:91:
                    4a:e4:99:16:e1:e2:b9:7c:af:0e:da:e1:20:49:95:fa:
                    bc:bf:f6:5a:cc:16:0a:82:57:52:fc:e9:7a:9b:0b:fd:
                    0d:38:14:e1:31:f8:35:ed:2b:85:61:83:1e:be:26:9f:
                    19:31:06:bb:02:12:c0:3b:51:22:b1:fa:63:ea:39:af:
                    66:f7:b2:e5:06:e3:f2:0a:42:ea:e7:cc:9c:57:bc:74:
                    d7:7c:9a:57:1d:98:49:ba:c0:9f:f3:81:6a:b3:91:67:
                    9a:00:23:d8:01:90:c7:f8:db:c2:97:58:8e:90:0f:9e:
                    6d:cd:6d:e3:63:c5:a8:c4:c7:64:d5:60:ba:f7:be:05:
                    a3:c3:57:84:91:65:bc:10:bb:b0:3f:79:4b:6e:6f:ec:
                    ea:3a:b6:37:2c:c2:5b:2f:a6:af:6c:ab:bd:61:72:a8:
                    fb:bc:7a:2e:2b:ff:cc:65:e3:46:51:34:a6:52:48:b0:
                    33:3f:0f:ab:84:67:ff:a2:b1:ee:05:66:27:dd:d5:c4:
                    ad:5d:02:b3:e7:f4:78:9b:d4:ce:2d:5d:07:84:0f:aa:
                    95:fb:5f:21:ca:9b:0b:e6:e3:6a:a9:3d:d7:22:31:37:
                    5b:e4:7d:47:76:8c:b5:08:51:5b:88:4b:9c:67:6f:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:90:33:1a:3c:e5:f5:ac:2f:ed:a3:6b:2c:fa:dd:de:
        94:84:47:91:bf:46:59:c7:5a:7b:98:0c:f6:dd:be:81:
        d5:4d:c7:f5:72:15:88:b8:69:d4:99:c3:e3:e6:94:8a:
        7d:ae:df:b7:96:1c:88:9a:1b:8f:d8:ed:d0:c7:2c:df:
        a8:8a:6c:4d:c4:9e:0a:37:76:3f:6d:e5:0e:cc:da:65:
        67:aa:e1:2c:28:a3:2f:9d:d7:64:6f:df:29:94:19:61:
        c5:d0:ea:3d:62:ea:79:25:68:55:a0:5d:39:78:19:13:
        27:03:cd:ae:c1:43:73:02:0f:3c:e3:db:25:ad:4a:c5:
        df:01:d7:d2:8e:7b:1d:92:46:a3:eb:b3:fa:df:d4:41:
        67:5b:86:2e:45:74:a7:f8:bd:5a:1d:e1:a5:b6:e1:f2:
        5c:e0:49:7a:25:d5:49:88:ae:3f:c1:0c:6b:5d:eb:c3:
        f1:e8:46:17:d0:b3:e4:31:ab:21:b9:94:47:da:6c:fb:
        a3:10:fd:57:1c:6e:18:94:e8:c8:64:7e:41:ce:bd:cd:
        cd:7a:44:b2:42:43:bd:3d:b2:c4:76:ac:ea:0e:09:6d:
        4f:99:a8:09:ad:db:1a:ec:e2:b6:f8:b5:ff:8e:d9:43:
        94:27:3f:02:e1:3f:1a:90:df:06:01:7e:c4:50:e7:6c
    Fingerprint (SHA-256):
        A2:4B:42:67:C1:BC:D1:08:C1:E6:CB:97:BA:CE:75:C4:E1:5C:8F:44:CC:BC:8A:D3:38:18:C2:86:88:36:3C:EC
    Fingerprint (SHA1):
        0B:2C:B5:2B:A3:8D:74:63:CD:9D:C8:76:47:F3:98:E5:4C:A5:2B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10544: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10545: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10546: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 10522 at Tue May  2 15:50:55 UTC 2017
kill -USR1 10522
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 10522 killed at Tue May  2 15:50:55 UTC 2017
httpserv starting at Tue May  2 15:50:55 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:50:55 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 10769 >/dev/null 2>/dev/null
httpserv with PID 10769 found at Tue May  2 15:50:55 UTC 2017
httpserv with PID 10769 started at Tue May  2 15:50:55 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10547: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #10548: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155030 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10549: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #10550: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #10551: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155031 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10552: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #10553: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #10554: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10555: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155032 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10556: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10557: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155033 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10558: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10559: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #10560: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10561: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10562: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502155034   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10563: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10564: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10565: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #10566: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #10567: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155031 (0x1dee4717)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:57 2017
            Not After : Mon May 02 15:50:57 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:77:f3:5a:28:ee:f5:ce:b8:1f:5c:9e:bb:e6:ff:b2:
                    1e:16:11:2e:61:07:f5:91:65:d3:f6:33:57:71:34:0a:
                    f2:b3:bc:db:58:8b:ed:8f:4e:48:1b:cb:a9:24:b5:30:
                    fc:5f:36:d4:69:86:1e:32:37:e3:84:34:49:e6:f2:0c:
                    ab:e8:11:f4:23:09:63:75:87:78:b0:c5:a9:2b:b0:a7:
                    69:71:2d:c0:56:c4:4b:7a:66:01:a8:96:55:be:48:f2:
                    ac:8b:21:a8:90:7b:75:8e:95:1b:3d:27:1a:53:15:e5:
                    09:87:c6:33:f0:ed:89:6b:3f:09:3a:26:01:84:d8:28:
                    55:99:7a:f6:a4:92:ce:bb:b3:f2:43:31:8b:8e:f3:8f:
                    4e:16:58:6f:42:fd:86:30:2a:67:62:14:ad:62:a8:30:
                    e1:df:a1:93:be:28:05:b9:35:3a:0b:a8:f5:1b:da:ac:
                    23:af:b4:57:40:b0:e5:7b:da:f5:99:7d:2f:e6:3d:bd:
                    e0:a3:17:6c:6f:88:ca:cb:c3:d4:c6:39:97:44:a0:95:
                    05:53:46:d8:60:58:6c:c2:63:c6:d6:2c:66:49:a6:35:
                    46:d0:ce:02:d4:5a:90:f6:d6:6d:5c:1a:bd:50:27:41:
                    f5:d2:b1:00:d7:7c:2c:de:7c:a6:9f:c2:dd:2a:8c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:27:01:13:e8:60:bc:8d:74:d7:71:af:c3:bc:bd:ea:
        99:69:7c:82:5d:2f:2b:89:42:bd:b6:d6:18:a6:80:6d:
        ed:ca:95:b7:21:25:66:2b:25:33:8f:73:15:b1:4b:55:
        b4:3f:96:4e:e6:e2:d6:c9:5a:f1:82:b1:ea:3d:bf:1a:
        04:b1:53:e7:16:fc:d9:54:3c:a1:20:79:ad:f9:69:18:
        67:6f:ee:d7:c2:f5:9f:18:05:42:8c:68:f7:11:b8:99:
        d1:5f:66:7e:d0:54:25:9e:23:bc:dc:ff:e5:5a:d7:5d:
        04:5d:72:85:b5:ab:77:f7:fc:04:7a:ad:88:79:25:f0:
        a2:4f:82:3f:47:ce:9b:eb:87:f4:62:e0:71:29:a7:63:
        26:e1:5c:17:67:36:5d:7a:cd:9d:d9:83:0e:94:4d:9e:
        70:b2:c4:2a:96:a0:f8:86:12:3e:84:82:c5:37:ef:65:
        5d:bb:46:de:04:0b:63:de:17:0d:c8:dd:70:7b:1f:9a:
        01:b5:2a:71:da:60:71:ec:50:7a:56:2e:6f:eb:1e:1d:
        6f:dc:04:58:29:88:aa:cb:a7:c6:e3:59:30:13:2f:64:
        ac:68:39:d2:86:02:11:9e:a3:1d:76:08:17:b0:da:90:
        20:e1:55:32:cf:12:4f:ff:4e:7f:fe:66:a6:6f:25:60
    Fingerprint (SHA-256):
        AD:A4:C4:19:56:FB:07:14:8E:EA:CC:20:C0:CA:91:D6:60:2C:85:67:BD:60:D1:77:57:40:81:71:9E:5D:1A:EB
    Fingerprint (SHA1):
        F0:30:BC:32:6A:B6:16:7C:5A:9E:75:39:62:9B:C2:2D:C9:2C:DE:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10568: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155030 (0x1dee4716)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e8:06:2f:47:d2:a3:ce:b0:02:fd:73:f7:28:e7:fe:
                    4d:14:3d:79:7e:12:4c:fc:8a:d3:f4:dc:f8:8e:a6:30:
                    e2:1a:85:6b:1f:e6:30:c3:eb:32:02:20:6e:ca:e0:8f:
                    04:46:f6:9c:70:87:a6:66:67:a0:73:04:19:62:9a:5d:
                    62:cb:a2:e9:dc:96:1a:b5:cd:b4:14:17:2e:a0:df:27:
                    43:6e:b7:ca:94:b9:54:35:49:34:3f:72:6f:13:30:8c:
                    3e:31:05:e0:7f:a7:53:d7:59:20:55:e0:36:8d:95:a8:
                    a7:9d:bb:08:6d:42:7a:62:91:83:2a:ce:98:00:9f:e0:
                    02:40:8a:35:f2:db:24:d8:30:fc:a3:d9:1b:ca:05:b7:
                    e7:4a:88:8c:65:93:d0:de:2b:77:57:6f:5b:30:9c:1d:
                    e4:1e:ca:22:2e:c0:db:25:3e:f3:53:ec:97:bc:a6:3d:
                    35:5e:d6:1b:22:5d:0b:29:7e:dc:15:60:8c:7d:10:5b:
                    18:b8:b0:1e:8b:44:fb:49:8c:38:cc:08:05:fb:89:1f:
                    59:28:a8:10:96:51:47:cc:7d:1c:db:cd:ee:e7:1b:b7:
                    fd:65:36:d6:7a:ef:b7:fd:98:e9:7d:1c:70:af:f2:3a:
                    c5:7a:48:b5:58:13:00:75:26:15:55:08:aa:4a:96:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:fc:d4:4e:9f:5c:a0:98:31:7f:7a:a6:d4:c2:c5:29:
        f1:e8:b2:8d:6a:ab:4b:22:04:b0:14:75:fe:e7:38:32:
        6d:fe:94:61:61:1f:01:77:78:af:ab:44:f9:8a:01:c3:
        00:94:44:0f:b2:fb:05:2f:a1:2d:52:e8:bf:af:f4:1d:
        a2:91:e2:a8:cf:19:a4:8f:78:85:88:42:b1:ae:04:3a:
        a6:4d:3a:7b:11:89:f6:f2:c3:92:40:57:b7:e0:15:15:
        82:55:ce:be:6f:11:1a:15:c6:64:89:39:64:71:d7:1e:
        6a:84:2a:9e:3f:69:c9:4c:f0:1b:4b:7b:6c:ba:16:15:
        a9:f6:26:62:19:60:32:cf:34:76:ba:f8:ec:23:24:89:
        58:86:e6:f5:2b:b0:12:1e:7c:ad:66:ca:08:62:ce:8d:
        0b:93:bc:a3:61:99:4c:4b:15:bd:18:20:76:a4:89:72:
        78:7f:d8:9f:e8:3d:3c:65:93:22:d6:3f:cd:27:75:b6:
        7d:4f:42:82:42:84:f7:e1:f0:40:94:2a:45:56:ae:80:
        b5:bb:b3:06:b2:ca:52:9e:98:1d:e2:6d:e4:c1:c3:1a:
        2b:f7:5c:35:b4:79:9d:4e:96:b1:a7:b6:89:73:09:d5:
        69:4d:eb:f0:1c:ff:03:77:8e:11:a5:c0:12:5d:18:ce
    Fingerprint (SHA-256):
        13:58:3D:86:49:0C:40:28:04:C5:B1:D3:25:AA:DE:9B:3B:03:3E:78:BD:6B:1D:FF:B8:17:69:31:F5:6C:7D:4E
    Fingerprint (SHA1):
        55:1A:3E:AF:97:A6:B6:67:44:DF:FF:ED:8B:09:A4:DA:7A:A0:FF:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10569: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10570: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #10571: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #10572: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155030 (0x1dee4716)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e8:06:2f:47:d2:a3:ce:b0:02:fd:73:f7:28:e7:fe:
                    4d:14:3d:79:7e:12:4c:fc:8a:d3:f4:dc:f8:8e:a6:30:
                    e2:1a:85:6b:1f:e6:30:c3:eb:32:02:20:6e:ca:e0:8f:
                    04:46:f6:9c:70:87:a6:66:67:a0:73:04:19:62:9a:5d:
                    62:cb:a2:e9:dc:96:1a:b5:cd:b4:14:17:2e:a0:df:27:
                    43:6e:b7:ca:94:b9:54:35:49:34:3f:72:6f:13:30:8c:
                    3e:31:05:e0:7f:a7:53:d7:59:20:55:e0:36:8d:95:a8:
                    a7:9d:bb:08:6d:42:7a:62:91:83:2a:ce:98:00:9f:e0:
                    02:40:8a:35:f2:db:24:d8:30:fc:a3:d9:1b:ca:05:b7:
                    e7:4a:88:8c:65:93:d0:de:2b:77:57:6f:5b:30:9c:1d:
                    e4:1e:ca:22:2e:c0:db:25:3e:f3:53:ec:97:bc:a6:3d:
                    35:5e:d6:1b:22:5d:0b:29:7e:dc:15:60:8c:7d:10:5b:
                    18:b8:b0:1e:8b:44:fb:49:8c:38:cc:08:05:fb:89:1f:
                    59:28:a8:10:96:51:47:cc:7d:1c:db:cd:ee:e7:1b:b7:
                    fd:65:36:d6:7a:ef:b7:fd:98:e9:7d:1c:70:af:f2:3a:
                    c5:7a:48:b5:58:13:00:75:26:15:55:08:aa:4a:96:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:fc:d4:4e:9f:5c:a0:98:31:7f:7a:a6:d4:c2:c5:29:
        f1:e8:b2:8d:6a:ab:4b:22:04:b0:14:75:fe:e7:38:32:
        6d:fe:94:61:61:1f:01:77:78:af:ab:44:f9:8a:01:c3:
        00:94:44:0f:b2:fb:05:2f:a1:2d:52:e8:bf:af:f4:1d:
        a2:91:e2:a8:cf:19:a4:8f:78:85:88:42:b1:ae:04:3a:
        a6:4d:3a:7b:11:89:f6:f2:c3:92:40:57:b7:e0:15:15:
        82:55:ce:be:6f:11:1a:15:c6:64:89:39:64:71:d7:1e:
        6a:84:2a:9e:3f:69:c9:4c:f0:1b:4b:7b:6c:ba:16:15:
        a9:f6:26:62:19:60:32:cf:34:76:ba:f8:ec:23:24:89:
        58:86:e6:f5:2b:b0:12:1e:7c:ad:66:ca:08:62:ce:8d:
        0b:93:bc:a3:61:99:4c:4b:15:bd:18:20:76:a4:89:72:
        78:7f:d8:9f:e8:3d:3c:65:93:22:d6:3f:cd:27:75:b6:
        7d:4f:42:82:42:84:f7:e1:f0:40:94:2a:45:56:ae:80:
        b5:bb:b3:06:b2:ca:52:9e:98:1d:e2:6d:e4:c1:c3:1a:
        2b:f7:5c:35:b4:79:9d:4e:96:b1:a7:b6:89:73:09:d5:
        69:4d:eb:f0:1c:ff:03:77:8e:11:a5:c0:12:5d:18:ce
    Fingerprint (SHA-256):
        13:58:3D:86:49:0C:40:28:04:C5:B1:D3:25:AA:DE:9B:3B:03:3E:78:BD:6B:1D:FF:B8:17:69:31:F5:6C:7D:4E
    Fingerprint (SHA1):
        55:1A:3E:AF:97:A6:B6:67:44:DF:FF:ED:8B:09:A4:DA:7A:A0:FF:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10573: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155031 (0x1dee4717)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:57 2017
            Not After : Mon May 02 15:50:57 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:77:f3:5a:28:ee:f5:ce:b8:1f:5c:9e:bb:e6:ff:b2:
                    1e:16:11:2e:61:07:f5:91:65:d3:f6:33:57:71:34:0a:
                    f2:b3:bc:db:58:8b:ed:8f:4e:48:1b:cb:a9:24:b5:30:
                    fc:5f:36:d4:69:86:1e:32:37:e3:84:34:49:e6:f2:0c:
                    ab:e8:11:f4:23:09:63:75:87:78:b0:c5:a9:2b:b0:a7:
                    69:71:2d:c0:56:c4:4b:7a:66:01:a8:96:55:be:48:f2:
                    ac:8b:21:a8:90:7b:75:8e:95:1b:3d:27:1a:53:15:e5:
                    09:87:c6:33:f0:ed:89:6b:3f:09:3a:26:01:84:d8:28:
                    55:99:7a:f6:a4:92:ce:bb:b3:f2:43:31:8b:8e:f3:8f:
                    4e:16:58:6f:42:fd:86:30:2a:67:62:14:ad:62:a8:30:
                    e1:df:a1:93:be:28:05:b9:35:3a:0b:a8:f5:1b:da:ac:
                    23:af:b4:57:40:b0:e5:7b:da:f5:99:7d:2f:e6:3d:bd:
                    e0:a3:17:6c:6f:88:ca:cb:c3:d4:c6:39:97:44:a0:95:
                    05:53:46:d8:60:58:6c:c2:63:c6:d6:2c:66:49:a6:35:
                    46:d0:ce:02:d4:5a:90:f6:d6:6d:5c:1a:bd:50:27:41:
                    f5:d2:b1:00:d7:7c:2c:de:7c:a6:9f:c2:dd:2a:8c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:27:01:13:e8:60:bc:8d:74:d7:71:af:c3:bc:bd:ea:
        99:69:7c:82:5d:2f:2b:89:42:bd:b6:d6:18:a6:80:6d:
        ed:ca:95:b7:21:25:66:2b:25:33:8f:73:15:b1:4b:55:
        b4:3f:96:4e:e6:e2:d6:c9:5a:f1:82:b1:ea:3d:bf:1a:
        04:b1:53:e7:16:fc:d9:54:3c:a1:20:79:ad:f9:69:18:
        67:6f:ee:d7:c2:f5:9f:18:05:42:8c:68:f7:11:b8:99:
        d1:5f:66:7e:d0:54:25:9e:23:bc:dc:ff:e5:5a:d7:5d:
        04:5d:72:85:b5:ab:77:f7:fc:04:7a:ad:88:79:25:f0:
        a2:4f:82:3f:47:ce:9b:eb:87:f4:62:e0:71:29:a7:63:
        26:e1:5c:17:67:36:5d:7a:cd:9d:d9:83:0e:94:4d:9e:
        70:b2:c4:2a:96:a0:f8:86:12:3e:84:82:c5:37:ef:65:
        5d:bb:46:de:04:0b:63:de:17:0d:c8:dd:70:7b:1f:9a:
        01:b5:2a:71:da:60:71:ec:50:7a:56:2e:6f:eb:1e:1d:
        6f:dc:04:58:29:88:aa:cb:a7:c6:e3:59:30:13:2f:64:
        ac:68:39:d2:86:02:11:9e:a3:1d:76:08:17:b0:da:90:
        20:e1:55:32:cf:12:4f:ff:4e:7f:fe:66:a6:6f:25:60
    Fingerprint (SHA-256):
        AD:A4:C4:19:56:FB:07:14:8E:EA:CC:20:C0:CA:91:D6:60:2C:85:67:BD:60:D1:77:57:40:81:71:9E:5D:1A:EB
    Fingerprint (SHA1):
        F0:30:BC:32:6A:B6:16:7C:5A:9E:75:39:62:9B:C2:2D:C9:2C:DE:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10574: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #10575: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #10576: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10577: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10578: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10579: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155031 (0x1dee4717)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:57 2017
            Not After : Mon May 02 15:50:57 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:77:f3:5a:28:ee:f5:ce:b8:1f:5c:9e:bb:e6:ff:b2:
                    1e:16:11:2e:61:07:f5:91:65:d3:f6:33:57:71:34:0a:
                    f2:b3:bc:db:58:8b:ed:8f:4e:48:1b:cb:a9:24:b5:30:
                    fc:5f:36:d4:69:86:1e:32:37:e3:84:34:49:e6:f2:0c:
                    ab:e8:11:f4:23:09:63:75:87:78:b0:c5:a9:2b:b0:a7:
                    69:71:2d:c0:56:c4:4b:7a:66:01:a8:96:55:be:48:f2:
                    ac:8b:21:a8:90:7b:75:8e:95:1b:3d:27:1a:53:15:e5:
                    09:87:c6:33:f0:ed:89:6b:3f:09:3a:26:01:84:d8:28:
                    55:99:7a:f6:a4:92:ce:bb:b3:f2:43:31:8b:8e:f3:8f:
                    4e:16:58:6f:42:fd:86:30:2a:67:62:14:ad:62:a8:30:
                    e1:df:a1:93:be:28:05:b9:35:3a:0b:a8:f5:1b:da:ac:
                    23:af:b4:57:40:b0:e5:7b:da:f5:99:7d:2f:e6:3d:bd:
                    e0:a3:17:6c:6f:88:ca:cb:c3:d4:c6:39:97:44:a0:95:
                    05:53:46:d8:60:58:6c:c2:63:c6:d6:2c:66:49:a6:35:
                    46:d0:ce:02:d4:5a:90:f6:d6:6d:5c:1a:bd:50:27:41:
                    f5:d2:b1:00:d7:7c:2c:de:7c:a6:9f:c2:dd:2a:8c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:27:01:13:e8:60:bc:8d:74:d7:71:af:c3:bc:bd:ea:
        99:69:7c:82:5d:2f:2b:89:42:bd:b6:d6:18:a6:80:6d:
        ed:ca:95:b7:21:25:66:2b:25:33:8f:73:15:b1:4b:55:
        b4:3f:96:4e:e6:e2:d6:c9:5a:f1:82:b1:ea:3d:bf:1a:
        04:b1:53:e7:16:fc:d9:54:3c:a1:20:79:ad:f9:69:18:
        67:6f:ee:d7:c2:f5:9f:18:05:42:8c:68:f7:11:b8:99:
        d1:5f:66:7e:d0:54:25:9e:23:bc:dc:ff:e5:5a:d7:5d:
        04:5d:72:85:b5:ab:77:f7:fc:04:7a:ad:88:79:25:f0:
        a2:4f:82:3f:47:ce:9b:eb:87:f4:62:e0:71:29:a7:63:
        26:e1:5c:17:67:36:5d:7a:cd:9d:d9:83:0e:94:4d:9e:
        70:b2:c4:2a:96:a0:f8:86:12:3e:84:82:c5:37:ef:65:
        5d:bb:46:de:04:0b:63:de:17:0d:c8:dd:70:7b:1f:9a:
        01:b5:2a:71:da:60:71:ec:50:7a:56:2e:6f:eb:1e:1d:
        6f:dc:04:58:29:88:aa:cb:a7:c6:e3:59:30:13:2f:64:
        ac:68:39:d2:86:02:11:9e:a3:1d:76:08:17:b0:da:90:
        20:e1:55:32:cf:12:4f:ff:4e:7f:fe:66:a6:6f:25:60
    Fingerprint (SHA-256):
        AD:A4:C4:19:56:FB:07:14:8E:EA:CC:20:C0:CA:91:D6:60:2C:85:67:BD:60:D1:77:57:40:81:71:9E:5D:1A:EB
    Fingerprint (SHA1):
        F0:30:BC:32:6A:B6:16:7C:5A:9E:75:39:62:9B:C2:2D:C9:2C:DE:54
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10580: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155031 (0x1dee4717)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:57 2017
            Not After : Mon May 02 15:50:57 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:77:f3:5a:28:ee:f5:ce:b8:1f:5c:9e:bb:e6:ff:b2:
                    1e:16:11:2e:61:07:f5:91:65:d3:f6:33:57:71:34:0a:
                    f2:b3:bc:db:58:8b:ed:8f:4e:48:1b:cb:a9:24:b5:30:
                    fc:5f:36:d4:69:86:1e:32:37:e3:84:34:49:e6:f2:0c:
                    ab:e8:11:f4:23:09:63:75:87:78:b0:c5:a9:2b:b0:a7:
                    69:71:2d:c0:56:c4:4b:7a:66:01:a8:96:55:be:48:f2:
                    ac:8b:21:a8:90:7b:75:8e:95:1b:3d:27:1a:53:15:e5:
                    09:87:c6:33:f0:ed:89:6b:3f:09:3a:26:01:84:d8:28:
                    55:99:7a:f6:a4:92:ce:bb:b3:f2:43:31:8b:8e:f3:8f:
                    4e:16:58:6f:42:fd:86:30:2a:67:62:14:ad:62:a8:30:
                    e1:df:a1:93:be:28:05:b9:35:3a:0b:a8:f5:1b:da:ac:
                    23:af:b4:57:40:b0:e5:7b:da:f5:99:7d:2f:e6:3d:bd:
                    e0:a3:17:6c:6f:88:ca:cb:c3:d4:c6:39:97:44:a0:95:
                    05:53:46:d8:60:58:6c:c2:63:c6:d6:2c:66:49:a6:35:
                    46:d0:ce:02:d4:5a:90:f6:d6:6d:5c:1a:bd:50:27:41:
                    f5:d2:b1:00:d7:7c:2c:de:7c:a6:9f:c2:dd:2a:8c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:27:01:13:e8:60:bc:8d:74:d7:71:af:c3:bc:bd:ea:
        99:69:7c:82:5d:2f:2b:89:42:bd:b6:d6:18:a6:80:6d:
        ed:ca:95:b7:21:25:66:2b:25:33:8f:73:15:b1:4b:55:
        b4:3f:96:4e:e6:e2:d6:c9:5a:f1:82:b1:ea:3d:bf:1a:
        04:b1:53:e7:16:fc:d9:54:3c:a1:20:79:ad:f9:69:18:
        67:6f:ee:d7:c2:f5:9f:18:05:42:8c:68:f7:11:b8:99:
        d1:5f:66:7e:d0:54:25:9e:23:bc:dc:ff:e5:5a:d7:5d:
        04:5d:72:85:b5:ab:77:f7:fc:04:7a:ad:88:79:25:f0:
        a2:4f:82:3f:47:ce:9b:eb:87:f4:62:e0:71:29:a7:63:
        26:e1:5c:17:67:36:5d:7a:cd:9d:d9:83:0e:94:4d:9e:
        70:b2:c4:2a:96:a0:f8:86:12:3e:84:82:c5:37:ef:65:
        5d:bb:46:de:04:0b:63:de:17:0d:c8:dd:70:7b:1f:9a:
        01:b5:2a:71:da:60:71:ec:50:7a:56:2e:6f:eb:1e:1d:
        6f:dc:04:58:29:88:aa:cb:a7:c6:e3:59:30:13:2f:64:
        ac:68:39:d2:86:02:11:9e:a3:1d:76:08:17:b0:da:90:
        20:e1:55:32:cf:12:4f:ff:4e:7f:fe:66:a6:6f:25:60
    Fingerprint (SHA-256):
        AD:A4:C4:19:56:FB:07:14:8E:EA:CC:20:C0:CA:91:D6:60:2C:85:67:BD:60:D1:77:57:40:81:71:9E:5D:1A:EB
    Fingerprint (SHA1):
        F0:30:BC:32:6A:B6:16:7C:5A:9E:75:39:62:9B:C2:2D:C9:2C:DE:54
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10581: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #10582: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #10583: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10584: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10585: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10586: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155030 (0x1dee4716)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e8:06:2f:47:d2:a3:ce:b0:02:fd:73:f7:28:e7:fe:
                    4d:14:3d:79:7e:12:4c:fc:8a:d3:f4:dc:f8:8e:a6:30:
                    e2:1a:85:6b:1f:e6:30:c3:eb:32:02:20:6e:ca:e0:8f:
                    04:46:f6:9c:70:87:a6:66:67:a0:73:04:19:62:9a:5d:
                    62:cb:a2:e9:dc:96:1a:b5:cd:b4:14:17:2e:a0:df:27:
                    43:6e:b7:ca:94:b9:54:35:49:34:3f:72:6f:13:30:8c:
                    3e:31:05:e0:7f:a7:53:d7:59:20:55:e0:36:8d:95:a8:
                    a7:9d:bb:08:6d:42:7a:62:91:83:2a:ce:98:00:9f:e0:
                    02:40:8a:35:f2:db:24:d8:30:fc:a3:d9:1b:ca:05:b7:
                    e7:4a:88:8c:65:93:d0:de:2b:77:57:6f:5b:30:9c:1d:
                    e4:1e:ca:22:2e:c0:db:25:3e:f3:53:ec:97:bc:a6:3d:
                    35:5e:d6:1b:22:5d:0b:29:7e:dc:15:60:8c:7d:10:5b:
                    18:b8:b0:1e:8b:44:fb:49:8c:38:cc:08:05:fb:89:1f:
                    59:28:a8:10:96:51:47:cc:7d:1c:db:cd:ee:e7:1b:b7:
                    fd:65:36:d6:7a:ef:b7:fd:98:e9:7d:1c:70:af:f2:3a:
                    c5:7a:48:b5:58:13:00:75:26:15:55:08:aa:4a:96:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:fc:d4:4e:9f:5c:a0:98:31:7f:7a:a6:d4:c2:c5:29:
        f1:e8:b2:8d:6a:ab:4b:22:04:b0:14:75:fe:e7:38:32:
        6d:fe:94:61:61:1f:01:77:78:af:ab:44:f9:8a:01:c3:
        00:94:44:0f:b2:fb:05:2f:a1:2d:52:e8:bf:af:f4:1d:
        a2:91:e2:a8:cf:19:a4:8f:78:85:88:42:b1:ae:04:3a:
        a6:4d:3a:7b:11:89:f6:f2:c3:92:40:57:b7:e0:15:15:
        82:55:ce:be:6f:11:1a:15:c6:64:89:39:64:71:d7:1e:
        6a:84:2a:9e:3f:69:c9:4c:f0:1b:4b:7b:6c:ba:16:15:
        a9:f6:26:62:19:60:32:cf:34:76:ba:f8:ec:23:24:89:
        58:86:e6:f5:2b:b0:12:1e:7c:ad:66:ca:08:62:ce:8d:
        0b:93:bc:a3:61:99:4c:4b:15:bd:18:20:76:a4:89:72:
        78:7f:d8:9f:e8:3d:3c:65:93:22:d6:3f:cd:27:75:b6:
        7d:4f:42:82:42:84:f7:e1:f0:40:94:2a:45:56:ae:80:
        b5:bb:b3:06:b2:ca:52:9e:98:1d:e2:6d:e4:c1:c3:1a:
        2b:f7:5c:35:b4:79:9d:4e:96:b1:a7:b6:89:73:09:d5:
        69:4d:eb:f0:1c:ff:03:77:8e:11:a5:c0:12:5d:18:ce
    Fingerprint (SHA-256):
        13:58:3D:86:49:0C:40:28:04:C5:B1:D3:25:AA:DE:9B:3B:03:3E:78:BD:6B:1D:FF:B8:17:69:31:F5:6C:7D:4E
    Fingerprint (SHA1):
        55:1A:3E:AF:97:A6:B6:67:44:DF:FF:ED:8B:09:A4:DA:7A:A0:FF:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10587: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155030 (0x1dee4716)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e8:06:2f:47:d2:a3:ce:b0:02:fd:73:f7:28:e7:fe:
                    4d:14:3d:79:7e:12:4c:fc:8a:d3:f4:dc:f8:8e:a6:30:
                    e2:1a:85:6b:1f:e6:30:c3:eb:32:02:20:6e:ca:e0:8f:
                    04:46:f6:9c:70:87:a6:66:67:a0:73:04:19:62:9a:5d:
                    62:cb:a2:e9:dc:96:1a:b5:cd:b4:14:17:2e:a0:df:27:
                    43:6e:b7:ca:94:b9:54:35:49:34:3f:72:6f:13:30:8c:
                    3e:31:05:e0:7f:a7:53:d7:59:20:55:e0:36:8d:95:a8:
                    a7:9d:bb:08:6d:42:7a:62:91:83:2a:ce:98:00:9f:e0:
                    02:40:8a:35:f2:db:24:d8:30:fc:a3:d9:1b:ca:05:b7:
                    e7:4a:88:8c:65:93:d0:de:2b:77:57:6f:5b:30:9c:1d:
                    e4:1e:ca:22:2e:c0:db:25:3e:f3:53:ec:97:bc:a6:3d:
                    35:5e:d6:1b:22:5d:0b:29:7e:dc:15:60:8c:7d:10:5b:
                    18:b8:b0:1e:8b:44:fb:49:8c:38:cc:08:05:fb:89:1f:
                    59:28:a8:10:96:51:47:cc:7d:1c:db:cd:ee:e7:1b:b7:
                    fd:65:36:d6:7a:ef:b7:fd:98:e9:7d:1c:70:af:f2:3a:
                    c5:7a:48:b5:58:13:00:75:26:15:55:08:aa:4a:96:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:fc:d4:4e:9f:5c:a0:98:31:7f:7a:a6:d4:c2:c5:29:
        f1:e8:b2:8d:6a:ab:4b:22:04:b0:14:75:fe:e7:38:32:
        6d:fe:94:61:61:1f:01:77:78:af:ab:44:f9:8a:01:c3:
        00:94:44:0f:b2:fb:05:2f:a1:2d:52:e8:bf:af:f4:1d:
        a2:91:e2:a8:cf:19:a4:8f:78:85:88:42:b1:ae:04:3a:
        a6:4d:3a:7b:11:89:f6:f2:c3:92:40:57:b7:e0:15:15:
        82:55:ce:be:6f:11:1a:15:c6:64:89:39:64:71:d7:1e:
        6a:84:2a:9e:3f:69:c9:4c:f0:1b:4b:7b:6c:ba:16:15:
        a9:f6:26:62:19:60:32:cf:34:76:ba:f8:ec:23:24:89:
        58:86:e6:f5:2b:b0:12:1e:7c:ad:66:ca:08:62:ce:8d:
        0b:93:bc:a3:61:99:4c:4b:15:bd:18:20:76:a4:89:72:
        78:7f:d8:9f:e8:3d:3c:65:93:22:d6:3f:cd:27:75:b6:
        7d:4f:42:82:42:84:f7:e1:f0:40:94:2a:45:56:ae:80:
        b5:bb:b3:06:b2:ca:52:9e:98:1d:e2:6d:e4:c1:c3:1a:
        2b:f7:5c:35:b4:79:9d:4e:96:b1:a7:b6:89:73:09:d5:
        69:4d:eb:f0:1c:ff:03:77:8e:11:a5:c0:12:5d:18:ce
    Fingerprint (SHA-256):
        13:58:3D:86:49:0C:40:28:04:C5:B1:D3:25:AA:DE:9B:3B:03:3E:78:BD:6B:1D:FF:B8:17:69:31:F5:6C:7D:4E
    Fingerprint (SHA1):
        55:1A:3E:AF:97:A6:B6:67:44:DF:FF:ED:8B:09:A4:DA:7A:A0:FF:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10588: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #10589: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155035 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10590: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #10591: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #10592: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155036 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10593: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #10594: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #10595: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155037 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10596: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #10597: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #10598: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155038 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10599: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #10600: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #10601: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155039 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10602: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #10603: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #10604: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155040 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10605: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #10606: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #10607: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155041 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10608: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #10609: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #10610: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155042 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10611: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #10612: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #10613: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155043 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10614: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #10615: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #10616: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10617: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502155044 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10618: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10619: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502155045 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10620: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10621: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502155046 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10622: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10623: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #10624: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #10625: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10626: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502155047 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10627: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10628: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502155048 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10629: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10630: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502155049 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10631: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10632: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #10633: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #10634: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10635: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502155050 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10636: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10637: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502155051 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10638: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10639: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502155052 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10640: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10641: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #10642: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #10643: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10644: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502155053 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10645: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10646: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502155054 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10647: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10648: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502155055 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10649: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10650: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #10651: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10652: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10653: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502155056   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10654: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10655: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10656: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10657: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155057   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10658: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10659: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155035 (0x1dee471b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:01 2017
            Not After : Mon May 02 15:51:01 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:ce:1d:60:66:3d:1d:ef:a0:8e:44:d9:ee:68:19:54:
                    09:87:57:81:a0:6b:74:b8:67:7e:ef:0e:cd:a0:ce:30:
                    0a:e3:47:b8:b5:6b:1b:e8:77:89:0e:d4:d9:81:a9:90:
                    5f:af:4f:96:e4:c2:cb:fe:1b:c0:19:ba:2a:fe:73:76:
                    ce:ec:b6:33:44:a9:9e:97:c4:68:8c:c3:02:fb:04:60:
                    a5:17:5e:01:f1:b9:ee:07:0a:9a:9d:7e:98:f6:06:a1:
                    4d:f2:bb:fa:d4:60:2d:78:90:22:3b:d0:a4:11:84:74:
                    1e:08:00:5f:5c:18:96:1b:ff:b7:e8:30:a4:45:67:f6:
                    e9:15:56:32:24:2e:ab:a2:ae:74:09:b4:f7:25:24:16:
                    c7:a5:3f:42:3c:0f:73:52:dd:af:17:59:c8:3f:04:3a:
                    b1:fb:9a:78:a6:02:05:97:d6:e9:2f:8e:4f:2e:eb:3f:
                    20:69:db:fa:41:5d:f6:df:7b:c0:3d:eb:1f:d9:ec:ce:
                    d9:d8:49:1d:28:75:c5:9c:5d:ed:c9:fc:37:c0:2d:ae:
                    51:b5:e7:2b:17:03:84:ea:14:b6:b8:4b:a5:99:e9:fa:
                    79:52:21:e9:e6:36:b7:2b:c6:12:d6:98:eb:fe:c1:44:
                    6b:73:2c:60:70:d9:9f:64:c9:56:5b:93:cc:92:46:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:ee:53:1d:a2:52:9f:ce:d8:64:c9:7f:62:7a:e3:b0:
        aa:00:03:e5:09:62:c0:f4:c7:dc:31:90:5d:7e:1c:a3:
        d7:39:3e:57:52:50:6a:d5:24:1f:f9:43:62:d4:05:80:
        91:61:0b:6a:4e:ed:73:7f:8a:7b:2e:6d:2b:b8:23:7e:
        b8:a5:ce:12:7d:fb:2f:70:ba:af:f2:db:eb:b0:c0:65:
        e1:00:0d:f2:ea:24:70:e4:cc:bd:a2:35:c7:d3:6b:df:
        2e:0e:e6:7b:6b:db:7c:ae:e8:38:79:cc:af:65:79:69:
        a6:1b:98:51:ea:34:6c:00:76:a3:d5:37:88:5b:19:3b:
        c9:70:f4:cc:6d:ab:5e:dc:57:e8:8c:59:70:30:1e:c7:
        62:34:83:92:58:d9:d4:64:b8:62:17:34:46:13:28:f9:
        ba:ac:63:4a:4a:fe:52:14:ae:85:cf:50:30:56:b3:3b:
        42:e7:92:eb:bd:10:af:42:74:c3:bf:57:3a:f7:5c:58:
        34:b8:86:8f:af:27:ef:68:49:30:40:32:0c:34:ae:a6:
        6a:9c:82:13:a1:7b:cc:10:aa:8a:62:0f:af:f7:a6:f0:
        ac:6b:c9:ce:45:29:97:1e:5b:2e:84:44:a9:e9:b7:a6:
        f0:dc:88:12:82:37:65:ae:b8:f1:e3:e9:40:0b:9b:45
    Fingerprint (SHA-256):
        6F:F6:B6:74:35:3B:AB:D4:0D:3B:4F:37:85:C9:3B:E2:C3:F9:69:15:2F:F2:5D:85:2A:F7:DE:38:0A:A9:07:58
    Fingerprint (SHA1):
        FD:6C:0D:E8:C1:CD:93:DC:DC:FE:CA:E4:F3:FE:48:E3:D7:C6:DA:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10660: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155036 (0x1dee471c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:51:02 2017
            Not After : Mon May 02 15:51:02 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:99:f6:33:7b:43:5e:ad:bd:dd:67:59:39:f5:22:eb:
                    2d:85:f5:52:a8:67:90:01:e8:29:71:6b:3a:46:2b:0b:
                    d4:09:21:b0:58:11:0f:63:42:a2:f6:87:49:2a:6d:3f:
                    16:5a:2c:a0:a2:04:d3:51:b8:be:d4:cf:7d:d2:e6:1b:
                    c8:b2:6f:96:06:52:35:f0:95:af:1d:21:11:01:9f:a2:
                    d2:5a:91:8a:ec:3e:98:34:d3:ba:34:ea:77:0d:1a:cc:
                    91:a1:75:0b:31:dd:2e:df:da:28:d4:3b:1b:fa:91:85:
                    8c:27:5d:91:08:e7:fb:b6:95:70:91:15:7c:a1:81:11:
                    f1:b3:27:db:1b:d3:e6:4f:5f:0c:41:da:56:be:cb:a1:
                    fa:a0:2a:dd:8e:d0:b6:30:0f:16:65:18:61:d0:af:95:
                    91:f9:4e:f8:c1:cc:53:51:37:a0:aa:fe:55:83:70:67:
                    17:04:a3:45:e8:d1:4c:92:69:c0:91:25:64:d2:7f:e7:
                    c8:51:5e:7e:7a:8a:07:21:69:64:44:c9:12:90:bd:f6:
                    b4:f1:df:26:d6:a2:d5:41:cf:c5:2e:0f:fb:03:c9:00:
                    b4:ff:b6:67:64:85:cf:a1:51:08:58:a7:44:27:4d:8c:
                    b4:09:27:0c:d0:dd:3e:4c:00:e0:4c:9b:24:d6:a6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:6f:1e:09:b1:d1:3b:d1:38:47:b5:83:ec:f1:06:b4:
        f8:a5:58:f0:69:28:08:0c:e6:e1:80:fb:e1:4a:c5:8c:
        e3:f4:96:5e:57:87:17:fa:52:0f:22:2b:67:19:ef:77:
        c1:54:d0:1d:82:ff:9b:56:d7:d4:e0:24:03:cb:19:95:
        10:70:bd:57:1b:3e:f4:a9:50:43:f7:7a:f7:52:f7:a3:
        98:4b:b6:87:11:09:d5:b3:28:f9:5e:91:6b:0c:12:44:
        6b:bb:ef:24:0a:6f:2e:a5:46:98:98:61:ec:20:b6:58:
        51:4e:e7:c1:5d:be:6c:e1:14:41:7f:b4:25:3e:2e:fa:
        e9:c8:94:b0:60:96:7b:e2:03:ed:de:75:cc:e6:75:08:
        26:cb:b0:8e:dd:41:c9:f9:b0:8b:ad:8f:71:91:d1:45:
        0b:b5:00:53:eb:68:fa:8c:74:28:c9:dd:d2:17:e6:3a:
        35:47:49:33:ef:6d:77:68:61:fa:45:f9:2b:17:94:d0:
        3d:10:fa:13:f1:fe:91:26:e9:e0:22:f4:9b:63:38:64:
        e1:c1:7e:d5:1f:1e:d7:5c:53:71:ed:e3:31:78:7a:5e:
        29:c4:a1:0c:36:05:d8:e9:26:c8:01:5c:6e:d0:db:b4:
        42:c0:c9:ea:d8:f9:3d:ae:b9:4c:ff:f7:8f:04:db:6a
    Fingerprint (SHA-256):
        06:98:52:89:67:EF:FB:8D:FF:8F:09:14:C4:F4:D9:8F:C7:A7:5B:30:88:DA:23:03:6D:00:30:03:57:E6:3D:E5
    Fingerprint (SHA1):
        BE:E1:C7:EA:3C:E5:E0:D5:68:CF:64:83:B5:82:B7:D3:AB:47:1A:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10661: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155037 (0x1dee471d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:51:03 2017
            Not After : Mon May 02 15:51:03 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:1f:73:e1:fd:9f:f5:cc:61:ae:0d:fe:15:e9:83:3b:
                    7b:42:50:5b:95:dc:aa:64:5b:d4:f3:14:4a:4b:c1:58:
                    ae:20:a3:66:e9:ae:02:90:36:98:e2:fe:19:bc:46:36:
                    4e:fa:cd:76:2e:b4:4b:13:2a:59:e2:ff:a9:cc:39:ea:
                    58:03:1b:7b:ad:c6:90:68:d8:b3:4c:e9:eb:70:4e:eb:
                    dd:7e:8e:7f:b8:8b:9d:8b:7c:c5:91:b0:0d:1f:14:c0:
                    b7:5c:4d:bc:e5:5d:7a:da:88:b2:2d:d1:8e:ce:11:76:
                    e2:bf:cd:d5:97:78:b1:c5:cd:c4:80:ef:14:b4:a6:3c:
                    9b:36:80:9e:e7:1a:53:8f:3b:9d:22:b7:28:e9:45:00:
                    cd:82:24:71:e1:32:34:31:38:6d:70:0c:70:56:06:aa:
                    f8:f0:ea:bf:e0:6e:a7:d5:7c:1d:12:36:6a:ca:6d:c1:
                    05:73:0c:1d:b0:ea:71:08:e7:7e:64:82:68:54:e5:7e:
                    44:40:b2:8a:75:b7:f2:52:fd:fc:b1:82:b4:47:fb:26:
                    1b:0b:16:61:4e:46:b0:5b:66:31:01:7d:e3:fc:a7:a0:
                    ff:e7:39:2a:c1:6e:81:6a:ee:2d:9a:f4:2e:4c:91:3f:
                    9e:86:3f:c7:fc:b2:ba:ec:8c:1d:93:dc:5a:0e:e5:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:e5:92:8b:1a:68:0d:80:f1:a8:37:66:0e:59:bf:68:
        ab:f0:70:bc:80:ad:a7:a0:25:46:d8:6e:8f:c7:47:dd:
        f1:ec:b2:97:f5:c7:31:50:78:ed:d4:85:18:cf:e5:2e:
        0d:b1:ca:0a:7d:8c:56:db:fa:1c:de:e0:b0:8f:e7:93:
        c8:70:dd:38:25:10:cc:a7:a9:01:0b:cb:24:a1:17:a8:
        3e:ec:65:83:09:11:dd:ce:bb:f6:0b:98:b6:61:d4:e2:
        b4:2e:2b:2c:ff:e4:83:bc:bb:74:31:34:f8:23:07:02:
        48:fa:d1:0a:d0:c6:46:9b:fb:5d:ba:be:9f:b7:22:5a:
        51:47:d7:99:21:d2:17:53:45:d1:c1:8c:33:a8:10:c6:
        9e:59:9b:69:1c:de:74:b0:38:5d:92:8c:ba:88:17:10:
        30:81:7d:47:29:34:75:c2:17:31:dc:65:26:5a:9f:4a:
        48:aa:b2:cf:4c:e2:5a:7b:c2:42:74:7e:70:94:8a:0e:
        75:64:68:90:7b:72:2d:3f:df:6a:24:b5:15:46:e8:fc:
        e7:f4:5a:01:5f:d5:d8:94:5d:ad:53:53:fc:7a:07:4e:
        a0:05:d2:41:01:97:39:de:4a:95:53:12:77:c4:b6:c8:
        0a:00:04:4c:7b:68:e2:ac:41:ea:38:55:55:46:6f:d6
    Fingerprint (SHA-256):
        35:95:72:09:CA:F3:AE:61:45:BE:42:AF:D2:78:95:7F:0F:BF:DC:59:7B:9B:74:B1:58:23:EC:E8:A9:A4:4F:CE
    Fingerprint (SHA1):
        F4:1A:83:E0:74:A6:19:E3:D2:F5:20:5E:7B:76:72:F5:C3:E4:EF:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10662: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155038 (0x1dee471e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:51:03 2017
            Not After : Mon May 02 15:51:03 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:d8:7b:8b:d1:df:19:24:62:57:81:bc:7f:38:30:6c:
                    d2:42:52:bd:e1:d3:ff:63:66:30:aa:2a:54:f9:83:ce:
                    9f:92:24:d3:1f:e5:c6:2b:46:ea:16:f0:97:f7:a4:3d:
                    77:c3:47:11:67:24:0b:9d:14:32:3a:15:54:ac:aa:ec:
                    b2:de:22:5b:d5:a6:d0:aa:c3:e1:42:8e:67:13:ea:89:
                    b7:06:be:f7:c1:13:96:e8:16:6a:f8:90:25:14:95:06:
                    66:ea:2f:bf:16:d2:17:94:3a:7a:d2:7a:d2:0a:76:ad:
                    47:a7:29:1d:b9:0c:3e:0f:4c:ee:65:96:fe:fd:c9:c4:
                    2f:ac:1a:6f:d7:9d:99:21:3a:72:6c:bd:1d:0c:d5:94:
                    72:5c:a5:87:f1:ec:58:dd:99:10:c5:71:58:58:6f:87:
                    c7:b0:f4:17:4b:45:60:a7:b9:f5:d0:9c:c2:0b:dc:0c:
                    7d:db:1a:8d:38:3f:28:de:d8:f6:f3:89:ac:83:ea:d5:
                    eb:d0:31:da:55:ce:0c:62:a9:57:77:99:39:d5:af:8b:
                    47:93:a9:b3:8c:38:a6:c6:cf:78:8e:a9:38:3c:f6:51:
                    a6:3c:52:98:f2:63:4c:46:4a:d7:50:43:70:10:65:fb:
                    ab:15:69:e4:d6:7f:b0:6a:c9:9a:c9:e1:2e:fd:5a:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:55:af:cc:7e:d1:b6:6a:3f:d7:a6:98:1a:a6:f7:72:
        dd:cb:44:56:7b:e2:30:30:c7:56:74:b7:c2:4d:e1:00:
        8d:8a:3c:a3:e3:a1:eb:c9:2d:d6:2a:60:ec:4c:de:0e:
        4a:a1:62:54:af:81:ac:a3:ff:35:10:89:4c:9f:37:cd:
        48:ca:a8:ad:72:48:7f:e4:e6:10:b8:17:c6:6f:0d:59:
        8d:a1:45:1c:e2:c0:12:2e:81:6b:a7:ee:8a:e4:9d:52:
        cd:12:00:92:67:f5:94:af:bd:78:20:0f:ad:a3:d0:36:
        d0:f6:4e:5d:3c:c0:a4:5b:71:24:f9:bf:55:5d:58:a0:
        b5:cf:f9:48:c7:3b:c5:a5:d5:6f:91:dd:94:48:36:05:
        58:3f:b6:b3:3a:70:1d:ef:a7:30:a6:7e:f5:90:4d:35:
        3c:b6:e2:7f:4a:10:e5:3b:67:88:4e:19:0a:f7:bd:cf:
        14:75:d8:e3:d5:b4:70:9e:ed:73:8c:bd:a5:71:a4:40:
        b4:4b:a3:98:a4:16:cb:00:4a:0c:ed:6d:d3:15:91:d2:
        2a:c2:41:4a:42:16:2b:ab:67:fd:02:bd:b0:98:98:3d:
        06:dc:83:65:77:be:13:81:34:c4:7e:90:88:aa:3a:61:
        a4:aa:47:55:d2:49:cc:d0:83:11:78:6d:f7:7b:0d:45
    Fingerprint (SHA-256):
        EE:2A:D7:85:1C:E3:BB:8B:68:02:3D:1E:48:F4:14:99:C5:3A:4B:F9:21:A7:60:39:F9:48:B3:83:60:AC:F3:E8
    Fingerprint (SHA1):
        F7:86:97:F3:C3:76:55:B5:63:97:F4:A1:61:D1:BB:53:53:86:3F:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10663: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155039 (0x1dee471f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:51:04 2017
            Not After : Mon May 02 15:51:04 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:01:80:51:fc:64:f7:5e:55:26:bc:e0:01:79:c8:f3:
                    f4:88:3e:84:ef:c2:69:c0:8e:8e:74:c3:33:9c:76:8c:
                    d4:f5:18:8a:e0:6d:90:f4:9e:72:8b:77:62:88:b8:b9:
                    16:01:93:43:d6:6b:44:19:03:ec:f1:4c:9a:be:43:81:
                    56:4c:6c:3c:81:0d:01:e3:2f:06:9e:eb:37:aa:94:36:
                    71:f0:01:6c:e8:e1:9d:fb:0b:6a:59:ff:34:33:bf:80:
                    c2:8d:6b:bc:36:c0:0d:09:70:a0:10:c7:bf:3d:9e:1c:
                    33:8a:33:8f:ca:08:0c:2e:42:96:2b:57:fa:14:d0:8c:
                    4a:5e:35:65:ee:ac:8c:8d:5e:f4:5b:14:0f:e3:94:4d:
                    e4:87:a1:c3:58:28:da:7b:75:56:94:43:0b:91:72:87:
                    68:9b:39:3c:dc:61:cc:cc:36:b3:87:75:a4:1c:ba:27:
                    e8:29:26:e8:16:61:79:a7:30:ed:81:c5:6e:eb:21:d9:
                    04:40:bc:1b:d4:b1:40:1b:7e:fd:79:51:65:c9:dc:83:
                    7b:5c:6b:1a:97:1f:d3:b4:b7:dd:09:3a:8a:55:ab:27:
                    51:fc:66:8e:f3:66:3d:a5:17:cb:80:f7:10:17:3d:5c:
                    c5:29:8f:cc:a5:ae:af:9c:cb:f6:17:77:e0:af:3a:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:bd:11:f5:55:a2:a2:37:be:42:b5:e8:4e:0a:e4:d1:
        60:64:0c:e7:eb:fa:0d:e3:51:e1:d9:c9:8c:0f:68:80:
        14:e0:47:62:a9:1e:0f:46:18:a8:d6:5f:57:c7:a1:0c:
        60:3a:69:a0:b3:63:4a:49:b6:1a:39:bd:a7:11:74:83:
        ac:17:21:cd:c2:d1:19:f7:26:b6:83:c6:45:d7:90:4b:
        e0:c0:9a:95:6e:49:13:0a:d7:a0:4a:37:95:06:39:ba:
        06:cd:02:bb:5d:e9:20:8e:66:f1:3d:79:17:12:38:fd:
        f9:e9:b0:56:4c:8a:7e:0c:1e:7f:a5:63:da:d3:58:5b:
        13:f0:d5:ac:df:87:f7:b3:41:62:f2:bb:57:d9:21:0f:
        bd:bb:38:60:da:77:01:be:1c:37:5e:07:94:25:61:89:
        51:ca:e4:f6:49:5c:99:e4:e3:d5:3a:5f:db:dd:42:8e:
        56:b1:de:8e:98:46:bc:a7:3b:a1:10:33:d7:6f:47:d8:
        99:cc:5d:f8:56:cc:3d:7a:48:d4:cb:a2:bf:1f:b5:43:
        92:7c:46:f5:62:43:54:33:9c:0c:59:ef:e4:10:3d:4a:
        6e:ba:d7:6b:d7:ea:a2:2d:70:a9:1e:42:43:9d:2b:45:
        f3:f9:44:eb:36:6e:f2:e1:ac:9c:c6:5c:48:e7:0c:6c
    Fingerprint (SHA-256):
        33:DB:99:9A:75:50:4C:2F:5A:02:5D:44:55:AD:75:73:8A:B1:CC:6D:35:56:18:57:ED:9C:A7:83:1F:62:9F:74
    Fingerprint (SHA1):
        1F:8F:F8:15:58:63:CE:E4:A2:E5:C6:9A:F1:07:0C:1F:29:46:C5:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10664: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155040 (0x1dee4720)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:51:05 2017
            Not After : Mon May 02 15:51:05 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:d5:a1:5c:5b:47:7e:43:5f:f6:af:f3:14:61:85:a7:
                    22:b0:7d:12:da:69:8e:60:55:cd:59:f0:c6:55:16:f0:
                    30:41:f6:ff:39:f7:41:f1:29:91:c2:16:ef:eb:ee:dc:
                    db:67:68:c7:84:19:b9:83:fa:cb:fe:24:b4:6c:fe:12:
                    94:6a:ed:75:f7:9c:4e:96:a0:9e:4f:6b:6b:df:d0:c6:
                    78:03:72:e6:48:92:8c:40:f6:d1:88:48:2b:d4:31:54:
                    d5:58:8c:fe:3e:ed:d8:46:33:7d:be:4a:da:5f:5f:f9:
                    ab:e0:fa:c3:bb:52:aa:d4:5f:ac:2a:92:1c:66:19:ea:
                    35:e2:03:9c:33:a2:58:09:d1:2b:e0:2b:57:fe:c2:f7:
                    83:82:88:18:d4:1d:8e:ef:dc:37:40:42:26:e3:c4:6b:
                    e8:22:ec:c7:cb:42:4e:f6:d4:c0:43:a3:95:28:3e:4d:
                    06:c8:aa:2f:1d:1f:ca:56:58:10:a0:60:57:e7:1e:94:
                    5c:dd:30:1c:2d:d9:3f:d0:e9:ff:1d:9c:1d:64:95:b1:
                    7d:96:ce:1c:fd:26:4c:8d:cd:8b:cf:1c:08:54:0e:39:
                    7d:f7:f5:cc:12:27:50:2f:a9:4f:12:99:f1:29:c5:04:
                    b4:a0:e2:b9:bd:0e:47:f2:1e:9b:c5:9e:55:91:29:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:00:e9:87:74:2f:f2:a4:9d:1f:44:c4:19:55:b7:35:
        30:22:31:07:37:0d:1c:40:d9:ba:ae:84:87:8c:0c:31:
        f3:a5:61:9a:e9:2b:36:82:fa:79:db:ed:be:ea:01:65:
        c9:63:c8:5d:03:3e:f1:a6:36:94:02:ad:dd:30:e9:3e:
        e6:2f:45:10:20:61:b1:5f:b5:2b:40:b8:99:8d:9b:00:
        50:43:34:72:5d:8a:6b:0e:c0:82:ef:ef:2a:6a:b9:d6:
        7b:93:ad:53:f5:ac:1c:8b:f4:55:b8:44:01:34:0d:76:
        2f:6e:97:87:f0:5e:61:cc:9b:df:49:14:b0:46:09:4e:
        31:6c:2e:d8:b7:fd:46:1f:e6:8e:22:4c:58:18:6e:68:
        4a:76:5d:af:64:a0:14:c1:54:a4:99:b9:af:a4:38:cb:
        d4:71:90:da:ab:24:62:b6:0f:d5:4e:ef:89:65:b0:de:
        9c:66:9d:68:12:ee:71:24:54:6f:98:37:9f:c0:c3:0a:
        c4:43:f9:e8:64:6a:37:1c:3d:59:dc:6c:f9:98:a5:ec:
        15:b4:71:e2:c5:cb:66:38:e0:5a:cc:70:a1:3a:a3:00:
        9c:9d:ce:9f:96:40:10:17:83:cd:bb:de:a8:31:23:fb:
        74:6c:50:96:87:ef:6e:a0:6d:25:a8:56:dd:a8:4f:aa
    Fingerprint (SHA-256):
        DC:22:E8:81:89:86:51:B7:EF:DE:4D:20:E2:92:F4:1E:0A:75:8F:6A:14:99:69:E3:9B:EA:4B:C7:59:F5:FC:7F
    Fingerprint (SHA1):
        B4:F0:96:A7:1C:D8:8C:6B:30:99:D3:D1:9C:1B:5F:AD:6F:9B:FB:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10665: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155041 (0x1dee4721)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:51:06 2017
            Not After : Mon May 02 15:51:06 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:54:c3:7e:73:45:2c:b9:80:96:36:a5:c6:92:0a:59:
                    04:bf:b9:42:39:e2:d2:54:c7:85:ff:76:48:4c:97:b9:
                    5f:a5:fd:16:ca:5b:32:c7:ba:f5:84:da:6d:ad:cc:34:
                    61:58:c0:fa:80:c6:de:f2:b8:d9:65:a4:bd:4c:71:e8:
                    a9:13:1e:88:d9:f9:2c:eb:52:35:de:b3:a9:27:1c:3b:
                    dd:54:e3:10:e1:bb:62:8c:d8:dd:c2:32:af:34:03:ba:
                    15:b1:a3:23:ef:03:d6:de:de:58:81:da:39:fe:83:74:
                    fc:1a:b9:b0:3b:97:3d:34:a7:66:af:06:c9:b9:1e:67:
                    c1:7c:79:9f:69:51:db:1d:af:73:2e:ad:88:7e:f2:0a:
                    6d:1c:5e:e9:fd:00:52:70:61:e7:a7:df:6d:9c:62:85:
                    22:62:65:df:20:65:6b:b0:54:7a:65:cb:bd:3e:6f:2a:
                    02:f8:b0:d5:b5:04:6d:a5:61:9e:c4:a8:53:81:42:6e:
                    e3:79:89:1b:eb:ec:0a:f9:df:ee:cc:98:39:2f:10:15:
                    24:7e:c9:b7:bb:96:64:da:d5:31:60:17:9e:a0:09:71:
                    8a:f9:d0:1a:36:7e:32:43:14:63:9f:39:a4:b9:86:65:
                    ef:fe:87:d4:bd:af:11:4e:ad:8d:99:08:30:7e:49:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:8b:95:b8:cc:36:cf:50:58:a1:54:51:7c:74:6e:40:
        63:6b:76:8d:5a:97:3e:62:d7:e5:01:56:11:7c:dc:b5:
        b7:3f:2f:9e:e6:81:fa:4a:06:b0:02:23:0e:b0:ba:e1:
        e6:1a:e6:9f:34:07:e4:1f:dd:ad:5a:80:de:2a:6c:54:
        37:7a:91:b3:4e:ec:dd:48:a7:bb:df:e1:43:a4:84:72:
        1d:68:37:91:13:87:a0:db:f9:22:3b:b4:7a:8f:76:6e:
        72:32:b4:3c:80:5f:d4:18:27:d7:f6:41:9e:39:f9:7d:
        7c:2a:6a:cb:d3:7f:19:d9:97:d4:5b:52:ba:71:e2:3d:
        22:d2:c6:47:a3:6c:1c:c7:b5:22:1a:a1:5b:33:ee:5a:
        7a:e9:b2:c6:ab:09:ba:84:e0:ab:a1:0c:19:b7:99:1a:
        8c:48:67:cf:25:a0:bc:be:5d:7a:95:c5:e1:2f:89:20:
        d9:00:3c:0e:96:ad:38:71:ed:b1:15:35:d0:58:96:1a:
        7b:e7:3e:b0:40:47:df:cb:60:c8:95:8c:90:f8:0b:15:
        c8:40:3a:f6:f8:75:07:07:98:52:f0:67:dc:c2:6a:65:
        fb:8d:87:f1:d7:5d:76:04:ec:9c:bd:bd:f0:cc:47:a6:
        7d:99:e4:c8:00:e5:00:49:84:2c:0f:58:12:1f:71:75
    Fingerprint (SHA-256):
        33:24:62:9A:80:99:A4:3F:5F:27:10:19:68:86:98:9E:B0:57:88:8C:EC:C6:C8:EA:33:CD:C8:9B:79:02:17:EE
    Fingerprint (SHA1):
        3A:DC:55:52:1A:91:58:E6:DF:4A:FC:9A:69:60:89:4B:EA:98:92:6F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10666: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155042 (0x1dee4722)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:51:06 2017
            Not After : Mon May 02 15:51:06 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:56:b4:51:50:bd:10:b1:27:16:13:84:e6:e8:4e:6f:
                    3b:d0:fb:55:b2:69:c1:d3:8f:d7:89:f9:67:87:98:c6:
                    f9:bc:27:70:11:15:74:4c:23:7f:8b:85:cb:2a:48:34:
                    32:23:db:d7:9f:73:cd:48:bc:2e:ef:48:59:fb:3f:15:
                    d5:19:7a:e8:26:d0:d2:61:4a:be:04:90:78:e2:b4:e2:
                    f8:a8:93:e7:9b:03:18:2e:b8:de:6f:e5:73:73:93:a8:
                    72:a8:b2:e3:c3:33:96:fc:14:7b:fa:9c:b0:55:3b:55:
                    fb:3a:5f:f9:19:36:1b:e5:65:dc:5d:11:c0:75:cd:80:
                    a5:37:90:0e:dc:8a:f4:24:d3:99:23:b6:bf:0f:20:cd:
                    d0:7b:82:34:76:74:a0:aa:1a:e2:90:17:64:48:b7:3e:
                    61:9f:ec:04:bd:dd:1e:40:28:80:54:6d:7b:b2:42:35:
                    91:58:c8:3d:dd:bd:97:4e:3f:66:7b:7a:9f:8e:ed:93:
                    02:1b:31:5d:54:f5:1c:2b:c7:9d:ad:71:de:4e:d3:26:
                    ee:51:96:64:f1:9e:1b:7e:3b:17:ff:1c:5c:99:d3:52:
                    33:41:7d:b5:b7:b1:8c:68:e6:01:d6:fe:75:02:e3:77:
                    ea:d1:28:56:7d:67:b0:9e:68:3a:0c:38:f5:ab:5a:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:79:67:b5:21:dc:89:1d:49:c4:6a:27:d5:e9:13:31:
        b5:23:43:45:3c:e5:f3:1b:d4:d0:27:4f:da:d8:8f:36:
        6c:44:ec:fe:59:7a:08:e8:f4:70:01:34:72:45:58:d1:
        6a:db:c2:65:01:84:7c:22:9d:54:c3:1f:a1:86:eb:f5:
        50:3d:67:aa:69:65:80:cd:0f:28:a1:a7:50:08:59:95:
        97:23:3e:eb:32:71:f7:3d:e0:d9:58:51:da:85:37:13:
        f5:e4:5a:58:9e:7f:ae:20:59:80:14:e3:db:26:5d:31:
        17:43:21:3a:5d:90:73:f3:3b:5f:1c:9e:a3:91:6f:f9:
        27:27:8a:73:8f:9c:9f:d7:06:fc:06:03:e1:68:17:88:
        24:e0:c5:62:10:7f:b8:94:be:01:e9:21:ef:87:e2:83:
        32:4c:e4:ae:48:36:be:8f:75:2f:de:61:e4:41:6c:d8:
        1c:b0:70:28:a0:6f:45:d9:5d:1e:29:a3:80:43:dc:d6:
        fe:98:d6:e9:0c:5f:39:33:df:d9:1a:b4:b8:ee:58:f8:
        d5:f1:c6:94:c5:8a:c9:d0:e6:3d:fb:ad:71:05:63:b1:
        c5:a2:b0:45:be:37:1a:67:e8:8a:1b:f7:3d:05:cb:9c:
        43:78:13:f2:45:1f:ee:f0:99:82:66:d4:56:90:b8:07
    Fingerprint (SHA-256):
        9B:BB:AD:3D:A4:31:73:B9:FE:01:A7:7E:21:DE:41:18:EC:A3:04:5B:4B:AD:D8:58:91:E3:AE:2D:18:A5:FE:A4
    Fingerprint (SHA1):
        6E:EE:8D:AA:16:EC:92:11:B7:E2:78:A5:BE:5B:42:F0:4E:72:68:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10667: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155043 (0x1dee4723)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:51:07 2017
            Not After : Mon May 02 15:51:07 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:1d:5b:b0:06:04:0d:4c:31:bf:d9:db:18:18:06:12:
                    1a:73:f8:81:a5:61:1f:04:27:a8:c5:89:03:39:49:e2:
                    e2:44:33:1e:06:ed:a9:cf:6e:7d:1c:32:b6:57:2b:6a:
                    84:8d:eb:87:1d:7c:d5:a9:62:39:7f:7f:d9:18:4e:58:
                    ee:40:e6:ea:bc:ae:af:45:5b:95:1d:dd:19:a3:64:54:
                    fc:3a:1b:bd:0d:1a:27:e5:82:92:f6:9e:2b:95:c3:24:
                    9f:17:ab:61:1c:a2:44:8e:a0:19:50:33:b8:87:a6:41:
                    ba:45:d4:c6:ab:fb:a1:2d:bf:bb:0f:7d:0e:d4:94:21:
                    94:be:c7:93:09:88:26:90:2f:e7:4e:7d:2e:03:92:c8:
                    cb:45:85:96:d7:e4:a8:6f:44:7e:ae:f4:e1:d5:ca:de:
                    b2:cf:f0:71:48:a6:a5:85:7a:c4:0f:a7:18:d5:c8:ce:
                    2d:7c:17:6c:af:bc:34:84:54:6c:ce:12:cf:f5:2c:ad:
                    e4:d7:e2:dd:6b:47:6b:34:22:e1:b2:8c:00:aa:ca:66:
                    ed:c2:f1:48:6a:04:72:1e:0d:db:55:8d:7b:1c:f3:78:
                    33:9d:76:7d:5b:9e:43:5c:90:88:6f:52:4d:e8:4a:ec:
                    00:93:28:5e:7d:c2:e3:20:7f:c6:ee:90:d7:b6:71:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:9e:4e:cf:b6:b3:af:66:d8:0d:ad:47:95:df:7a:f3:
        43:99:31:65:3b:43:2c:02:aa:f2:53:f5:e8:2a:90:ff:
        4e:ff:bb:4b:7e:44:ba:37:e6:f2:32:38:ed:cf:b8:7f:
        d2:99:59:18:24:d5:dd:72:f3:24:56:5f:f8:94:33:9c:
        3c:90:f5:32:45:98:4a:54:a1:f2:96:12:ff:68:81:b2:
        64:22:b0:4b:1a:4d:fd:4f:98:26:cc:07:22:cd:de:fc:
        26:c2:a9:ec:26:69:84:82:6e:35:14:8c:71:97:9c:03:
        07:8f:a8:19:a7:a9:6e:42:bd:48:5a:0c:fa:db:3d:ca:
        82:7d:0a:e9:a2:47:31:d9:3b:61:18:ff:ec:a6:8b:15:
        e3:4a:60:7b:79:d9:f7:5e:80:e1:95:9d:fb:34:0d:0a:
        07:65:84:29:76:54:fb:be:7c:fc:eb:9a:ef:2e:70:c6:
        f3:ad:49:04:78:60:fd:39:75:f7:e2:f7:eb:71:b3:ad:
        dc:79:f6:3f:d3:71:d7:cd:ce:bb:86:86:1f:b2:bb:c3:
        93:4e:52:0c:0b:2f:8b:59:16:cb:ee:70:60:72:26:87:
        0a:4e:b7:61:54:f3:82:ba:31:04:bb:bb:f9:bc:a9:82:
        36:7c:16:cc:29:94:54:09:cc:28:4f:65:ac:04:08:99
    Fingerprint (SHA-256):
        52:A1:F8:8D:1A:B8:DB:89:15:C3:C3:89:02:2D:D0:85:4B:A7:BA:7F:7E:48:DD:50:25:E8:00:01:BE:60:0E:57
    Fingerprint (SHA1):
        E6:92:1C:2A:D9:40:22:E2:DF:2E:03:9C:59:9F:71:D1:87:AC:4F:10
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10668: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10669: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155058 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10670: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10671: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10672: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10673: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155059   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10674: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10675: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10676: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10677: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155060   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10678: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10679: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10680: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10681: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155061   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10682: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10683: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10684: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:15 2017
            Not After : Mon May 02 15:51:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:07:7d:7f:c5:a0:10:75:d9:13:1e:88:6e:05:a0:70:
                    77:0f:5e:e9:e5:ec:b1:b2:ba:2d:d7:ba:61:4f:d0:73:
                    ca:c7:6c:f8:78:6a:ea:d3:a0:62:4d:f4:b7:7f:d4:27:
                    50:2c:eb:cc:e2:da:ae:cf:70:d1:03:78:4c:12:88:58:
                    02:a8:1e:37:80:0e:5a:dc:e0:8f:f0:66:8d:ea:8f:5e:
                    e4:73:67:06:46:52:98:ad:13:f9:f7:ca:cd:04:e9:b1:
                    e4:dc:6f:de:4f:91:9e:10:6a:1a:c3:78:8b:e9:5f:65:
                    ce:67:e7:db:3d:11:e9:1c:fc:25:1e:9e:b3:1e:c0:dc:
                    5b:86:9b:96:1a:ca:39:c2:67:54:e3:1a:de:54:cd:35:
                    88:c6:97:6c:a7:98:ee:11:53:40:5b:06:16:2c:f7:d5:
                    37:b2:d8:8b:ca:d8:a6:af:0c:3d:5f:21:05:c1:3d:3d:
                    9e:cb:d8:db:ca:1c:17:10:36:18:27:a2:fd:77:45:12:
                    3a:5c:f1:4e:eb:d8:03:c5:42:20:3e:6f:95:84:18:33:
                    35:18:17:1f:09:30:33:11:e6:0d:3a:21:cd:b1:54:d4:
                    62:c5:14:d8:dc:fa:2c:b3:1f:33:c0:34:3b:2d:63:8c:
                    6a:50:ce:b5:37:5e:ea:f8:4b:1d:9d:21:ad:96:db:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:6e:8e:82:58:81:b7:a9:19:31:f3:f5:94:ce:a1:e7:
        2f:90:de:c5:fd:41:44:da:d9:8e:dd:dc:0d:ba:f2:8d:
        e4:33:f5:4f:fd:07:a3:b6:6a:91:71:18:78:ea:83:d1:
        4f:3b:d0:72:5a:73:6f:d3:6c:4c:64:da:5f:6d:b5:d5:
        c2:55:3b:87:aa:0d:ca:f6:bc:dc:58:97:9b:58:0b:52:
        cc:f4:fb:69:af:0c:e3:9b:7f:3e:0d:ef:fd:e9:b0:26:
        ba:7c:98:02:8e:1c:10:8d:c6:c7:3c:9c:de:65:a5:48:
        29:c7:ed:ce:6b:99:dd:3f:8e:0e:5d:8f:73:be:e3:7a:
        f3:b5:b1:ff:b1:85:23:f0:68:cb:b2:7c:d9:87:41:ab:
        2e:fa:89:ab:58:21:28:ea:3a:9d:de:8a:e7:e6:0d:32:
        96:8c:53:4d:5f:92:0f:7f:92:a3:83:c2:3a:d1:85:52:
        e2:52:3c:58:95:7c:21:e5:43:6d:c9:8c:c5:6f:db:fe:
        14:43:74:fe:b2:b2:37:a0:ec:38:13:d6:5b:3e:07:31:
        48:6c:4e:25:36:46:27:be:ce:d0:04:1e:47:3f:dd:dc:
        8f:90:c0:43:bb:cf:de:21:2d:52:1b:bf:1a:df:29:af:
        fe:1c:c7:05:de:fb:a3:7f:cc:94:eb:ab:d4:6f:cf:e7
    Fingerprint (SHA-256):
        0D:DF:26:47:5E:79:77:60:CF:83:FC:28:DD:CE:E3:C8:F6:60:FC:5A:F6:3D:60:40:18:6A:BB:23:95:38:68:64
    Fingerprint (SHA1):
        DF:4C:E9:B1:CA:5C:23:C4:99:69:3D:D8:13:B2:DC:AC:DC:C2:37:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10685: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10686: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:16 2017
            Not After : Mon May 02 15:51:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:c9:3e:c2:5f:a7:68:6a:ca:e6:0e:8b:e1:89:8b:4d:
                    ce:e2:7d:83:57:55:8d:6a:f8:77:d7:43:18:0e:d4:af:
                    7f:67:55:48:c8:6f:ac:19:20:ba:57:1e:37:ec:19:a5:
                    1b:e4:38:0d:14:79:f4:45:a3:f9:21:14:62:6e:e1:38:
                    12:74:bd:9b:69:d4:ab:b6:ce:7e:ee:55:94:61:55:6d:
                    cf:0d:ee:80:94:d4:5b:ed:69:87:67:1c:ad:b4:29:de:
                    2a:e5:ec:b5:b1:eb:e8:6b:1b:d0:92:4f:99:b3:7e:ea:
                    03:48:3d:f3:b1:55:0a:c3:1f:c0:f1:d9:3f:37:f5:d2:
                    2a:2a:eb:39:06:70:9a:57:48:f9:43:74:38:09:aa:23:
                    9b:b3:b5:5a:5d:6f:de:6e:45:b6:db:16:a6:b4:fd:e7:
                    2d:f9:47:ac:6b:66:97:0b:f7:aa:49:61:3c:df:bf:ed:
                    aa:3d:53:02:1b:c4:94:69:77:37:77:90:92:14:cd:57:
                    d0:44:58:2b:87:03:cc:99:69:fd:54:3b:79:7b:b8:d6:
                    f4:ff:2a:83:49:70:41:fd:d2:ca:8b:8d:b6:1f:49:d4:
                    0d:29:dd:52:4f:bc:a7:c3:bc:cf:a9:04:0c:a2:8b:8b:
                    42:66:a4:a0:1f:ca:f1:ee:ac:c1:3a:e8:ec:22:e6:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:43:0a:c2:5b:86:f6:0e:a4:96:18:48:34:63:5d:7f:
        b9:a2:77:f1:fe:85:a9:1f:82:6d:a1:2f:b6:07:87:0f:
        6c:b6:f3:b9:ed:5e:3b:83:fe:c4:ee:22:7b:3b:b9:29:
        38:58:f6:6e:c0:22:94:97:35:80:dc:ca:bb:ab:e7:ae:
        80:40:74:90:33:d5:8e:cb:03:c8:15:64:4f:05:87:e9:
        77:7a:72:fb:4a:66:9d:4f:55:cd:b7:a9:1a:80:d5:45:
        e9:de:ec:67:88:f2:27:25:58:a4:6b:82:34:2d:ee:77:
        fc:16:c0:71:2d:7c:55:1f:c2:bb:7f:9c:b9:48:29:61:
        df:b2:58:15:f0:35:31:a7:92:a3:b9:1e:75:c1:89:db:
        f8:75:75:14:ac:39:a0:7c:f2:07:75:e4:40:50:26:f1:
        99:76:32:af:5a:6f:0c:19:82:5b:12:b2:5c:5a:6a:83:
        06:06:37:44:1d:47:57:0b:59:8f:d5:2c:8f:c5:e9:24:
        de:3c:35:d8:db:48:8d:8d:c9:fd:fc:a0:cd:5c:80:57:
        5c:91:9e:2b:50:ff:a2:62:f9:d7:ff:23:78:e3:c6:89:
        d3:b9:22:c3:0f:02:44:40:f9:35:3d:1e:e9:ae:36:ec:
        21:9d:9c:d2:28:3b:3e:e0:7a:27:b0:9e:53:c2:d0:8d
    Fingerprint (SHA-256):
        05:3D:F7:41:BE:40:EC:B4:2E:28:91:CC:68:E2:2A:B8:80:C8:21:73:3C:96:EF:85:8F:9C:7E:B3:AF:81:04:7F
    Fingerprint (SHA1):
        E4:76:96:9A:18:1B:7A:5D:26:14:B0:90:1A:90:39:05:69:B3:45:B2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10687: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10688: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155060 (0x1dee4734)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:17 2017
            Not After : Mon May 02 15:51:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:76:d0:9a:aa:a9:e6:71:b9:0a:16:2b:9b:f8:89:40:
                    5b:21:eb:1e:8b:34:60:f0:b1:4e:66:54:c1:f7:3a:01:
                    d0:b6:74:62:51:a6:32:4e:cd:76:cc:d1:2a:7d:ad:03:
                    a9:18:78:9a:4f:46:75:ce:c6:37:4d:6a:3e:1a:8f:8d:
                    6a:b5:b4:4f:84:9c:66:4f:27:e9:da:a2:dc:6a:a5:8f:
                    bd:4b:2c:ba:c6:5b:8c:5c:d8:98:ba:f7:9e:70:33:c4:
                    94:f6:38:3d:72:2a:fa:55:5a:d8:66:b5:a9:7d:c4:11:
                    1c:98:4d:b3:26:9c:d1:8d:50:38:e3:fa:5a:64:54:28:
                    f8:4d:06:83:40:d6:17:d0:61:ce:50:77:b4:c6:6e:f8:
                    d5:a5:ac:da:5c:bc:76:13:c0:7b:d0:fb:42:77:b6:5d:
                    12:c1:5b:b0:a9:9e:1d:c2:da:de:11:62:90:7a:ae:60:
                    ab:c3:f0:0d:b1:b1:41:4c:f4:b1:3e:c6:7c:20:fc:b6:
                    1d:55:c3:c7:5b:05:8f:44:37:18:0b:f7:71:55:dd:66:
                    ad:ad:b4:b2:e5:f3:93:f3:99:f9:da:a4:6c:37:c7:19:
                    e4:e7:bd:d3:7a:17:16:70:a1:df:5e:da:a6:e3:9a:1e:
                    9a:90:47:63:85:0d:20:e5:71:64:cf:0e:74:0b:6c:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:e6:95:02:07:e7:2b:e6:52:9d:a4:3a:5b:07:d5:9b:
        44:6b:9c:b8:58:51:4e:6e:64:18:25:b9:7f:af:46:4b:
        7a:85:44:04:33:4d:6b:45:6e:ea:e5:79:ba:35:9a:c3:
        ee:77:7d:f0:f3:79:14:20:ba:93:13:e6:eb:6a:32:e0:
        37:31:9d:4f:db:cd:85:d1:fe:fe:4c:1f:3d:33:2e:12:
        ee:80:35:80:6b:67:3a:c7:1b:cd:e8:4b:d8:c8:b0:c4:
        7d:e4:81:74:cb:62:0c:4c:b7:84:a2:29:68:a0:18:6c:
        f5:73:31:5b:1f:47:b5:5f:7b:34:c0:8d:e4:d2:96:80:
        62:d0:2e:fc:85:59:e5:64:f2:df:94:1c:5d:f3:10:b4:
        80:6a:b6:b7:44:2b:7e:c1:dc:4f:f1:9e:e0:cd:17:93:
        5e:cf:cc:af:4b:0d:c4:ee:60:03:2e:91:e7:ba:ea:7a:
        59:34:6e:4f:42:6d:cb:b4:53:21:c1:c3:c0:0f:11:10:
        18:af:32:8a:11:38:35:02:a5:66:52:e5:fe:73:79:7a:
        95:66:3f:80:16:d8:01:0d:d4:93:c3:29:44:ea:17:ba:
        79:27:7b:42:4a:9f:f2:24:e6:bf:1e:ff:07:1b:7e:35:
        0b:f4:cf:21:c3:1d:c0:43:8a:84:09:15:5c:96:47:0c
    Fingerprint (SHA-256):
        16:4A:DC:94:DF:03:C7:30:54:7F:57:E3:A0:91:4C:60:F7:54:24:05:98:71:2D:FE:F3:1F:09:8C:89:7D:CD:15
    Fingerprint (SHA1):
        0D:37:B3:54:79:6F:C8:BB:22:E4:6E:55:89:DB:EF:0D:96:F5:17:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10689: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10690: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10691: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10692: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10693: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:15 2017
            Not After : Mon May 02 15:51:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:07:7d:7f:c5:a0:10:75:d9:13:1e:88:6e:05:a0:70:
                    77:0f:5e:e9:e5:ec:b1:b2:ba:2d:d7:ba:61:4f:d0:73:
                    ca:c7:6c:f8:78:6a:ea:d3:a0:62:4d:f4:b7:7f:d4:27:
                    50:2c:eb:cc:e2:da:ae:cf:70:d1:03:78:4c:12:88:58:
                    02:a8:1e:37:80:0e:5a:dc:e0:8f:f0:66:8d:ea:8f:5e:
                    e4:73:67:06:46:52:98:ad:13:f9:f7:ca:cd:04:e9:b1:
                    e4:dc:6f:de:4f:91:9e:10:6a:1a:c3:78:8b:e9:5f:65:
                    ce:67:e7:db:3d:11:e9:1c:fc:25:1e:9e:b3:1e:c0:dc:
                    5b:86:9b:96:1a:ca:39:c2:67:54:e3:1a:de:54:cd:35:
                    88:c6:97:6c:a7:98:ee:11:53:40:5b:06:16:2c:f7:d5:
                    37:b2:d8:8b:ca:d8:a6:af:0c:3d:5f:21:05:c1:3d:3d:
                    9e:cb:d8:db:ca:1c:17:10:36:18:27:a2:fd:77:45:12:
                    3a:5c:f1:4e:eb:d8:03:c5:42:20:3e:6f:95:84:18:33:
                    35:18:17:1f:09:30:33:11:e6:0d:3a:21:cd:b1:54:d4:
                    62:c5:14:d8:dc:fa:2c:b3:1f:33:c0:34:3b:2d:63:8c:
                    6a:50:ce:b5:37:5e:ea:f8:4b:1d:9d:21:ad:96:db:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:6e:8e:82:58:81:b7:a9:19:31:f3:f5:94:ce:a1:e7:
        2f:90:de:c5:fd:41:44:da:d9:8e:dd:dc:0d:ba:f2:8d:
        e4:33:f5:4f:fd:07:a3:b6:6a:91:71:18:78:ea:83:d1:
        4f:3b:d0:72:5a:73:6f:d3:6c:4c:64:da:5f:6d:b5:d5:
        c2:55:3b:87:aa:0d:ca:f6:bc:dc:58:97:9b:58:0b:52:
        cc:f4:fb:69:af:0c:e3:9b:7f:3e:0d:ef:fd:e9:b0:26:
        ba:7c:98:02:8e:1c:10:8d:c6:c7:3c:9c:de:65:a5:48:
        29:c7:ed:ce:6b:99:dd:3f:8e:0e:5d:8f:73:be:e3:7a:
        f3:b5:b1:ff:b1:85:23:f0:68:cb:b2:7c:d9:87:41:ab:
        2e:fa:89:ab:58:21:28:ea:3a:9d:de:8a:e7:e6:0d:32:
        96:8c:53:4d:5f:92:0f:7f:92:a3:83:c2:3a:d1:85:52:
        e2:52:3c:58:95:7c:21:e5:43:6d:c9:8c:c5:6f:db:fe:
        14:43:74:fe:b2:b2:37:a0:ec:38:13:d6:5b:3e:07:31:
        48:6c:4e:25:36:46:27:be:ce:d0:04:1e:47:3f:dd:dc:
        8f:90:c0:43:bb:cf:de:21:2d:52:1b:bf:1a:df:29:af:
        fe:1c:c7:05:de:fb:a3:7f:cc:94:eb:ab:d4:6f:cf:e7
    Fingerprint (SHA-256):
        0D:DF:26:47:5E:79:77:60:CF:83:FC:28:DD:CE:E3:C8:F6:60:FC:5A:F6:3D:60:40:18:6A:BB:23:95:38:68:64
    Fingerprint (SHA1):
        DF:4C:E9:B1:CA:5C:23:C4:99:69:3D:D8:13:B2:DC:AC:DC:C2:37:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10694: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10695: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:16 2017
            Not After : Mon May 02 15:51:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:c9:3e:c2:5f:a7:68:6a:ca:e6:0e:8b:e1:89:8b:4d:
                    ce:e2:7d:83:57:55:8d:6a:f8:77:d7:43:18:0e:d4:af:
                    7f:67:55:48:c8:6f:ac:19:20:ba:57:1e:37:ec:19:a5:
                    1b:e4:38:0d:14:79:f4:45:a3:f9:21:14:62:6e:e1:38:
                    12:74:bd:9b:69:d4:ab:b6:ce:7e:ee:55:94:61:55:6d:
                    cf:0d:ee:80:94:d4:5b:ed:69:87:67:1c:ad:b4:29:de:
                    2a:e5:ec:b5:b1:eb:e8:6b:1b:d0:92:4f:99:b3:7e:ea:
                    03:48:3d:f3:b1:55:0a:c3:1f:c0:f1:d9:3f:37:f5:d2:
                    2a:2a:eb:39:06:70:9a:57:48:f9:43:74:38:09:aa:23:
                    9b:b3:b5:5a:5d:6f:de:6e:45:b6:db:16:a6:b4:fd:e7:
                    2d:f9:47:ac:6b:66:97:0b:f7:aa:49:61:3c:df:bf:ed:
                    aa:3d:53:02:1b:c4:94:69:77:37:77:90:92:14:cd:57:
                    d0:44:58:2b:87:03:cc:99:69:fd:54:3b:79:7b:b8:d6:
                    f4:ff:2a:83:49:70:41:fd:d2:ca:8b:8d:b6:1f:49:d4:
                    0d:29:dd:52:4f:bc:a7:c3:bc:cf:a9:04:0c:a2:8b:8b:
                    42:66:a4:a0:1f:ca:f1:ee:ac:c1:3a:e8:ec:22:e6:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:43:0a:c2:5b:86:f6:0e:a4:96:18:48:34:63:5d:7f:
        b9:a2:77:f1:fe:85:a9:1f:82:6d:a1:2f:b6:07:87:0f:
        6c:b6:f3:b9:ed:5e:3b:83:fe:c4:ee:22:7b:3b:b9:29:
        38:58:f6:6e:c0:22:94:97:35:80:dc:ca:bb:ab:e7:ae:
        80:40:74:90:33:d5:8e:cb:03:c8:15:64:4f:05:87:e9:
        77:7a:72:fb:4a:66:9d:4f:55:cd:b7:a9:1a:80:d5:45:
        e9:de:ec:67:88:f2:27:25:58:a4:6b:82:34:2d:ee:77:
        fc:16:c0:71:2d:7c:55:1f:c2:bb:7f:9c:b9:48:29:61:
        df:b2:58:15:f0:35:31:a7:92:a3:b9:1e:75:c1:89:db:
        f8:75:75:14:ac:39:a0:7c:f2:07:75:e4:40:50:26:f1:
        99:76:32:af:5a:6f:0c:19:82:5b:12:b2:5c:5a:6a:83:
        06:06:37:44:1d:47:57:0b:59:8f:d5:2c:8f:c5:e9:24:
        de:3c:35:d8:db:48:8d:8d:c9:fd:fc:a0:cd:5c:80:57:
        5c:91:9e:2b:50:ff:a2:62:f9:d7:ff:23:78:e3:c6:89:
        d3:b9:22:c3:0f:02:44:40:f9:35:3d:1e:e9:ae:36:ec:
        21:9d:9c:d2:28:3b:3e:e0:7a:27:b0:9e:53:c2:d0:8d
    Fingerprint (SHA-256):
        05:3D:F7:41:BE:40:EC:B4:2E:28:91:CC:68:E2:2A:B8:80:C8:21:73:3C:96:EF:85:8F:9C:7E:B3:AF:81:04:7F
    Fingerprint (SHA1):
        E4:76:96:9A:18:1B:7A:5D:26:14:B0:90:1A:90:39:05:69:B3:45:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10696: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10697: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155060 (0x1dee4734)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:17 2017
            Not After : Mon May 02 15:51:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:76:d0:9a:aa:a9:e6:71:b9:0a:16:2b:9b:f8:89:40:
                    5b:21:eb:1e:8b:34:60:f0:b1:4e:66:54:c1:f7:3a:01:
                    d0:b6:74:62:51:a6:32:4e:cd:76:cc:d1:2a:7d:ad:03:
                    a9:18:78:9a:4f:46:75:ce:c6:37:4d:6a:3e:1a:8f:8d:
                    6a:b5:b4:4f:84:9c:66:4f:27:e9:da:a2:dc:6a:a5:8f:
                    bd:4b:2c:ba:c6:5b:8c:5c:d8:98:ba:f7:9e:70:33:c4:
                    94:f6:38:3d:72:2a:fa:55:5a:d8:66:b5:a9:7d:c4:11:
                    1c:98:4d:b3:26:9c:d1:8d:50:38:e3:fa:5a:64:54:28:
                    f8:4d:06:83:40:d6:17:d0:61:ce:50:77:b4:c6:6e:f8:
                    d5:a5:ac:da:5c:bc:76:13:c0:7b:d0:fb:42:77:b6:5d:
                    12:c1:5b:b0:a9:9e:1d:c2:da:de:11:62:90:7a:ae:60:
                    ab:c3:f0:0d:b1:b1:41:4c:f4:b1:3e:c6:7c:20:fc:b6:
                    1d:55:c3:c7:5b:05:8f:44:37:18:0b:f7:71:55:dd:66:
                    ad:ad:b4:b2:e5:f3:93:f3:99:f9:da:a4:6c:37:c7:19:
                    e4:e7:bd:d3:7a:17:16:70:a1:df:5e:da:a6:e3:9a:1e:
                    9a:90:47:63:85:0d:20:e5:71:64:cf:0e:74:0b:6c:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:e6:95:02:07:e7:2b:e6:52:9d:a4:3a:5b:07:d5:9b:
        44:6b:9c:b8:58:51:4e:6e:64:18:25:b9:7f:af:46:4b:
        7a:85:44:04:33:4d:6b:45:6e:ea:e5:79:ba:35:9a:c3:
        ee:77:7d:f0:f3:79:14:20:ba:93:13:e6:eb:6a:32:e0:
        37:31:9d:4f:db:cd:85:d1:fe:fe:4c:1f:3d:33:2e:12:
        ee:80:35:80:6b:67:3a:c7:1b:cd:e8:4b:d8:c8:b0:c4:
        7d:e4:81:74:cb:62:0c:4c:b7:84:a2:29:68:a0:18:6c:
        f5:73:31:5b:1f:47:b5:5f:7b:34:c0:8d:e4:d2:96:80:
        62:d0:2e:fc:85:59:e5:64:f2:df:94:1c:5d:f3:10:b4:
        80:6a:b6:b7:44:2b:7e:c1:dc:4f:f1:9e:e0:cd:17:93:
        5e:cf:cc:af:4b:0d:c4:ee:60:03:2e:91:e7:ba:ea:7a:
        59:34:6e:4f:42:6d:cb:b4:53:21:c1:c3:c0:0f:11:10:
        18:af:32:8a:11:38:35:02:a5:66:52:e5:fe:73:79:7a:
        95:66:3f:80:16:d8:01:0d:d4:93:c3:29:44:ea:17:ba:
        79:27:7b:42:4a:9f:f2:24:e6:bf:1e:ff:07:1b:7e:35:
        0b:f4:cf:21:c3:1d:c0:43:8a:84:09:15:5c:96:47:0c
    Fingerprint (SHA-256):
        16:4A:DC:94:DF:03:C7:30:54:7F:57:E3:A0:91:4C:60:F7:54:24:05:98:71:2D:FE:F3:1F:09:8C:89:7D:CD:15
    Fingerprint (SHA1):
        0D:37:B3:54:79:6F:C8:BB:22:E4:6E:55:89:DB:EF:0D:96:F5:17:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10698: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10699: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10700: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155062 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10701: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10702: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10703: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10704: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155063   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10705: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10706: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10707: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10708: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155064   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10709: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10710: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10711: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10712: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155065   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10713: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10714: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10715: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10716: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155066   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10717: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10718: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10719: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155062 (0x1dee4736)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:20 2017
            Not After : Mon May 02 15:51:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:27:9d:61:de:df:5a:ab:32:78:5d:69:1f:d9:d0:ce:
                    f0:fc:a8:c9:e8:86:9f:4f:24:05:d9:a3:5a:ce:b6:0b:
                    c8:77:8f:c5:98:b0:41:78:bc:2c:5a:eb:1e:51:0a:cf:
                    8a:0e:eb:f5:13:5a:78:7e:5d:8c:4e:1c:60:ca:80:eb:
                    3d:d1:3b:e6:81:26:aa:20:49:3e:fa:de:6f:00:e4:f6:
                    5d:d2:dc:b8:8c:3a:a0:27:96:fa:08:92:56:d1:b7:3a:
                    5a:b4:8d:66:ba:89:67:9d:a2:1c:09:d4:04:90:f2:0d:
                    7a:39:a7:bb:1c:df:77:33:9c:f0:34:b4:67:1c:51:43:
                    a3:77:ab:8b:e6:19:ba:2e:18:48:5f:99:5f:07:94:fb:
                    ea:25:75:59:5a:c8:30:d5:de:2a:aa:83:14:a2:22:17:
                    ae:d6:d8:14:37:26:99:45:dc:61:fd:f3:88:a0:f3:cd:
                    5f:7f:8e:e5:91:d6:14:a6:28:47:26:2c:28:2b:28:73:
                    75:69:1a:36:d6:60:b5:ae:72:b7:a0:ba:4c:fd:93:a9:
                    4b:80:53:7d:9b:71:24:29:cd:ee:af:9b:d7:37:10:5b:
                    25:a9:96:b2:6c:8e:14:df:91:e3:d8:ad:61:cc:81:d2:
                    3b:be:8e:eb:7e:f5:18:b8:f8:7a:a5:fd:20:f5:fe:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:81:90:37:e5:f1:30:fc:f4:f8:35:62:d2:2d:84:4a:
        a3:ec:66:f5:39:ac:ed:0a:1b:e7:fc:ea:ef:7d:dd:82:
        ce:27:05:10:3f:a2:7c:81:c9:42:a5:d5:b5:85:63:92:
        53:28:dc:74:36:a6:89:98:ac:8e:eb:e4:19:bd:54:9f:
        cb:d6:85:73:ff:64:0c:d7:30:f2:91:c5:88:4b:2c:cb:
        c4:74:d9:e5:eb:0d:01:19:9d:aa:c0:c0:f8:c9:04:1a:
        a6:89:ec:e8:b6:f3:7d:c6:b9:00:c2:e2:9d:48:08:09:
        d6:43:af:4a:93:3d:01:48:65:90:65:f0:c5:6f:df:29:
        b6:c1:fd:d9:3d:7d:22:d5:cf:29:84:9b:39:7e:33:f8:
        9d:e4:0b:a9:24:64:ee:38:b8:78:f5:88:fa:14:2c:ef:
        f7:5b:37:bc:a0:45:c7:33:ef:1c:c7:56:03:5b:19:a3:
        19:00:79:26:ac:e6:a7:89:db:d1:41:8d:ea:c5:8f:5c:
        36:31:f9:74:50:34:e7:d7:bb:cb:f1:52:a1:ab:5f:3e:
        32:2f:89:18:9b:7f:91:55:9a:13:b6:b9:71:b8:51:18:
        34:ee:46:b3:d7:41:dc:e6:83:ed:4f:d3:01:65:ee:34:
        35:73:55:e2:4f:d8:31:8e:36:30:d0:5f:4a:b5:9e:a4
    Fingerprint (SHA-256):
        49:A9:E2:24:FD:CA:CF:2C:01:D4:79:D3:74:66:C9:54:7F:9A:AF:E2:96:8A:10:F4:47:BB:61:CD:9B:B0:9D:50
    Fingerprint (SHA1):
        46:B0:C1:5B:2F:80:4C:24:CC:2C:D7:82:F3:63:73:40:FB:59:04:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10720: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10721: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155063 (0x1dee4737)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:8c:62:87:cd:76:62:b7:f8:20:db:40:9c:02:53:39:
                    f8:8a:e0:bf:4e:eb:c1:ff:9d:c7:a3:ce:ba:0f:87:63:
                    8f:a5:67:77:8e:08:11:a7:6b:92:43:84:39:26:08:6b:
                    b4:68:b4:88:06:06:ce:c1:d6:c5:db:ad:d2:0b:48:ce:
                    e5:c2:b1:0b:22:bb:59:9a:0e:1e:35:57:78:9b:9d:c9:
                    e5:33:e8:cd:9d:a8:53:62:66:cc:ee:c1:5e:e3:ee:cd:
                    4a:ab:83:68:f9:8b:a0:c0:a6:9b:e2:39:ec:50:12:b1:
                    29:a0:de:6b:89:8b:15:39:8b:3a:c8:88:d7:4b:a5:76:
                    c8:09:c7:15:aa:d9:1b:43:88:10:47:c1:33:8d:ff:57:
                    f0:e8:ed:c1:b0:f5:c9:5a:8d:ec:ca:b8:b3:c6:d9:a9:
                    8b:e6:bb:71:46:e5:8d:d9:fe:93:80:52:09:40:37:ac:
                    f6:21:f8:f4:32:ea:5f:7e:6d:a3:e5:11:b6:4f:4e:56:
                    b3:14:41:2a:a3:d1:7e:67:ee:62:40:5e:de:44:10:fd:
                    db:a5:3d:78:59:f9:aa:59:bc:13:58:cb:62:58:b1:10:
                    f0:a8:ba:4b:5f:05:1f:29:2b:60:92:63:87:66:be:82:
                    a6:9c:90:64:c1:7a:4c:75:59:de:e6:49:76:9f:c9:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:f4:bc:8b:fb:29:d4:67:8d:c0:06:eb:53:c8:e6:d5:
        07:48:de:a1:b9:2f:12:5f:30:46:12:9f:7f:07:84:51:
        31:0b:e9:e7:eb:8f:0c:b8:be:50:66:e1:3a:87:a0:83:
        81:f8:7d:d3:85:56:0f:cc:92:64:c3:03:7d:10:3a:34:
        ac:07:26:2f:02:6e:66:59:ed:da:3d:59:e2:22:ff:5a:
        e8:5a:72:e1:45:56:c1:21:39:a9:c7:38:f3:43:2c:f4:
        ee:2e:71:13:41:7c:a7:3f:ef:bf:08:f2:c1:e4:1b:b5:
        8e:ae:7c:3b:5a:be:5f:b2:4d:6a:ab:26:2e:ea:3d:2c:
        68:3d:03:b6:55:14:b9:9c:58:dd:cd:7a:3b:86:74:76:
        bb:6e:8a:8a:fd:ce:d4:c3:07:04:b5:6b:c4:e3:41:30:
        8c:3c:24:46:ce:20:2c:24:31:3c:c0:93:67:1e:1a:9e:
        59:6d:73:01:52:87:b6:d0:13:be:09:12:79:2a:71:14:
        b2:fa:aa:65:1b:03:f9:17:6b:18:72:cd:44:a9:70:37:
        7b:32:28:37:7a:85:87:c9:74:9e:36:f4:70:ee:95:d5:
        23:ee:c0:15:93:13:e8:cc:44:93:a3:04:f0:8d:5d:61:
        a0:a3:e6:e8:8c:6b:af:93:94:7e:76:e0:07:44:b1:ee
    Fingerprint (SHA-256):
        B8:A4:38:0F:73:30:DE:E2:7A:74:3A:3C:80:8D:DD:4D:29:2B:24:D5:73:D6:1F:72:C8:C0:4C:DD:89:75:54:01
    Fingerprint (SHA1):
        0B:1F:72:4F:A9:A5:F5:DE:14:11:58:C3:A2:33:AA:10:F7:7B:65:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10722: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10723: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155064 (0x1dee4738)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:01:0f:7e:ec:59:ed:29:95:36:7d:a5:f0:d8:92:b0:
                    18:87:4e:e8:3b:f6:4d:79:3c:b0:5c:f1:02:64:f8:52:
                    0c:6f:7d:dc:ed:b8:03:b1:5c:67:ed:c2:4e:be:75:52:
                    11:36:a2:16:49:26:58:eb:22:85:37:ed:f7:fc:40:de:
                    23:db:55:bf:27:41:3e:d8:81:7e:29:a5:da:b6:16:a3:
                    f0:14:68:0c:88:3c:ec:19:ad:ed:54:4f:67:bb:b9:f6:
                    06:5a:27:8c:de:04:b7:e3:f8:a0:13:c9:f5:83:6a:f7:
                    74:b9:d3:0d:06:cb:d3:10:db:24:9c:db:c1:d8:8c:27:
                    00:93:06:33:db:27:6a:df:d2:62:4c:a0:0e:93:1c:78:
                    c6:dd:97:ba:0f:d8:35:13:92:cc:0c:37:37:e6:0f:78:
                    a6:50:50:34:11:56:5d:95:35:a2:61:20:e6:fa:41:66:
                    54:c1:a3:f3:fa:63:45:e3:d3:08:13:82:4d:f1:0b:d9:
                    1a:fb:30:0e:39:1d:36:da:e1:f9:85:84:50:53:fc:3a:
                    3d:f4:ef:8a:a2:50:a4:9e:b5:84:13:26:f3:26:f0:fa:
                    ec:2a:77:2d:a8:97:39:f7:75:02:fe:12:20:26:14:e3:
                    6c:ff:77:ba:6d:b9:b9:96:fa:2f:96:20:7b:89:dd:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:1c:a4:f8:2d:f2:ab:ba:4a:94:fc:ad:52:22:e8:6c:
        5a:53:e9:87:e4:a0:0d:95:5e:b2:d4:ad:0c:af:91:4d:
        cc:17:59:e5:bf:c5:a1:9a:b5:73:cb:13:69:61:34:97:
        9a:07:4d:64:72:be:0a:65:bc:c6:5e:3d:75:75:66:a5:
        81:a0:3f:a3:30:67:c5:64:f0:6a:2b:b4:5d:22:66:52:
        3b:f1:e4:fb:1c:78:e8:e5:1d:ec:9f:a9:6d:85:6d:49:
        85:ba:5c:f7:b2:9f:3c:83:27:da:0f:07:ff:1f:1a:1c:
        2a:8e:55:9a:fd:d1:7e:ff:09:77:2a:87:39:2a:54:91:
        d9:1f:3b:fb:e8:db:10:df:73:0c:17:e1:a7:db:70:c4:
        81:64:1f:71:27:6d:58:cd:95:76:32:a5:24:c6:fa:fc:
        f0:8e:5d:9a:b6:87:58:03:a4:fd:e3:a9:89:fe:e9:99:
        a2:6c:6b:d1:ad:c6:ed:29:8f:3a:5f:07:19:96:c2:e5:
        7f:83:c7:f5:df:bd:06:2b:65:78:20:fd:31:b0:d5:cd:
        11:ea:3d:a6:fd:9f:f2:1e:c0:a2:96:5e:1f:1f:e8:d1:
        ea:bf:7c:e7:0a:bd:03:0a:df:ec:d4:00:c8:93:d8:e4:
        1a:42:42:b7:11:09:a5:51:09:67:d8:c7:5d:bd:4f:94
    Fingerprint (SHA-256):
        F8:E5:9A:15:D6:1D:FD:04:35:33:2E:27:44:68:01:66:44:2A:6F:09:BE:0A:4E:B9:EA:85:F8:5B:85:B3:5D:9B
    Fingerprint (SHA1):
        3D:51:96:51:E6:64:E3:85:4A:BF:7A:A9:65:85:01:13:3E:A2:4C:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10724: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10725: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10726: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10727: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10728: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155062 (0x1dee4736)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:20 2017
            Not After : Mon May 02 15:51:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:27:9d:61:de:df:5a:ab:32:78:5d:69:1f:d9:d0:ce:
                    f0:fc:a8:c9:e8:86:9f:4f:24:05:d9:a3:5a:ce:b6:0b:
                    c8:77:8f:c5:98:b0:41:78:bc:2c:5a:eb:1e:51:0a:cf:
                    8a:0e:eb:f5:13:5a:78:7e:5d:8c:4e:1c:60:ca:80:eb:
                    3d:d1:3b:e6:81:26:aa:20:49:3e:fa:de:6f:00:e4:f6:
                    5d:d2:dc:b8:8c:3a:a0:27:96:fa:08:92:56:d1:b7:3a:
                    5a:b4:8d:66:ba:89:67:9d:a2:1c:09:d4:04:90:f2:0d:
                    7a:39:a7:bb:1c:df:77:33:9c:f0:34:b4:67:1c:51:43:
                    a3:77:ab:8b:e6:19:ba:2e:18:48:5f:99:5f:07:94:fb:
                    ea:25:75:59:5a:c8:30:d5:de:2a:aa:83:14:a2:22:17:
                    ae:d6:d8:14:37:26:99:45:dc:61:fd:f3:88:a0:f3:cd:
                    5f:7f:8e:e5:91:d6:14:a6:28:47:26:2c:28:2b:28:73:
                    75:69:1a:36:d6:60:b5:ae:72:b7:a0:ba:4c:fd:93:a9:
                    4b:80:53:7d:9b:71:24:29:cd:ee:af:9b:d7:37:10:5b:
                    25:a9:96:b2:6c:8e:14:df:91:e3:d8:ad:61:cc:81:d2:
                    3b:be:8e:eb:7e:f5:18:b8:f8:7a:a5:fd:20:f5:fe:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:81:90:37:e5:f1:30:fc:f4:f8:35:62:d2:2d:84:4a:
        a3:ec:66:f5:39:ac:ed:0a:1b:e7:fc:ea:ef:7d:dd:82:
        ce:27:05:10:3f:a2:7c:81:c9:42:a5:d5:b5:85:63:92:
        53:28:dc:74:36:a6:89:98:ac:8e:eb:e4:19:bd:54:9f:
        cb:d6:85:73:ff:64:0c:d7:30:f2:91:c5:88:4b:2c:cb:
        c4:74:d9:e5:eb:0d:01:19:9d:aa:c0:c0:f8:c9:04:1a:
        a6:89:ec:e8:b6:f3:7d:c6:b9:00:c2:e2:9d:48:08:09:
        d6:43:af:4a:93:3d:01:48:65:90:65:f0:c5:6f:df:29:
        b6:c1:fd:d9:3d:7d:22:d5:cf:29:84:9b:39:7e:33:f8:
        9d:e4:0b:a9:24:64:ee:38:b8:78:f5:88:fa:14:2c:ef:
        f7:5b:37:bc:a0:45:c7:33:ef:1c:c7:56:03:5b:19:a3:
        19:00:79:26:ac:e6:a7:89:db:d1:41:8d:ea:c5:8f:5c:
        36:31:f9:74:50:34:e7:d7:bb:cb:f1:52:a1:ab:5f:3e:
        32:2f:89:18:9b:7f:91:55:9a:13:b6:b9:71:b8:51:18:
        34:ee:46:b3:d7:41:dc:e6:83:ed:4f:d3:01:65:ee:34:
        35:73:55:e2:4f:d8:31:8e:36:30:d0:5f:4a:b5:9e:a4
    Fingerprint (SHA-256):
        49:A9:E2:24:FD:CA:CF:2C:01:D4:79:D3:74:66:C9:54:7F:9A:AF:E2:96:8A:10:F4:47:BB:61:CD:9B:B0:9D:50
    Fingerprint (SHA1):
        46:B0:C1:5B:2F:80:4C:24:CC:2C:D7:82:F3:63:73:40:FB:59:04:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10729: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10730: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155063 (0x1dee4737)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:8c:62:87:cd:76:62:b7:f8:20:db:40:9c:02:53:39:
                    f8:8a:e0:bf:4e:eb:c1:ff:9d:c7:a3:ce:ba:0f:87:63:
                    8f:a5:67:77:8e:08:11:a7:6b:92:43:84:39:26:08:6b:
                    b4:68:b4:88:06:06:ce:c1:d6:c5:db:ad:d2:0b:48:ce:
                    e5:c2:b1:0b:22:bb:59:9a:0e:1e:35:57:78:9b:9d:c9:
                    e5:33:e8:cd:9d:a8:53:62:66:cc:ee:c1:5e:e3:ee:cd:
                    4a:ab:83:68:f9:8b:a0:c0:a6:9b:e2:39:ec:50:12:b1:
                    29:a0:de:6b:89:8b:15:39:8b:3a:c8:88:d7:4b:a5:76:
                    c8:09:c7:15:aa:d9:1b:43:88:10:47:c1:33:8d:ff:57:
                    f0:e8:ed:c1:b0:f5:c9:5a:8d:ec:ca:b8:b3:c6:d9:a9:
                    8b:e6:bb:71:46:e5:8d:d9:fe:93:80:52:09:40:37:ac:
                    f6:21:f8:f4:32:ea:5f:7e:6d:a3:e5:11:b6:4f:4e:56:
                    b3:14:41:2a:a3:d1:7e:67:ee:62:40:5e:de:44:10:fd:
                    db:a5:3d:78:59:f9:aa:59:bc:13:58:cb:62:58:b1:10:
                    f0:a8:ba:4b:5f:05:1f:29:2b:60:92:63:87:66:be:82:
                    a6:9c:90:64:c1:7a:4c:75:59:de:e6:49:76:9f:c9:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:f4:bc:8b:fb:29:d4:67:8d:c0:06:eb:53:c8:e6:d5:
        07:48:de:a1:b9:2f:12:5f:30:46:12:9f:7f:07:84:51:
        31:0b:e9:e7:eb:8f:0c:b8:be:50:66:e1:3a:87:a0:83:
        81:f8:7d:d3:85:56:0f:cc:92:64:c3:03:7d:10:3a:34:
        ac:07:26:2f:02:6e:66:59:ed:da:3d:59:e2:22:ff:5a:
        e8:5a:72:e1:45:56:c1:21:39:a9:c7:38:f3:43:2c:f4:
        ee:2e:71:13:41:7c:a7:3f:ef:bf:08:f2:c1:e4:1b:b5:
        8e:ae:7c:3b:5a:be:5f:b2:4d:6a:ab:26:2e:ea:3d:2c:
        68:3d:03:b6:55:14:b9:9c:58:dd:cd:7a:3b:86:74:76:
        bb:6e:8a:8a:fd:ce:d4:c3:07:04:b5:6b:c4:e3:41:30:
        8c:3c:24:46:ce:20:2c:24:31:3c:c0:93:67:1e:1a:9e:
        59:6d:73:01:52:87:b6:d0:13:be:09:12:79:2a:71:14:
        b2:fa:aa:65:1b:03:f9:17:6b:18:72:cd:44:a9:70:37:
        7b:32:28:37:7a:85:87:c9:74:9e:36:f4:70:ee:95:d5:
        23:ee:c0:15:93:13:e8:cc:44:93:a3:04:f0:8d:5d:61:
        a0:a3:e6:e8:8c:6b:af:93:94:7e:76:e0:07:44:b1:ee
    Fingerprint (SHA-256):
        B8:A4:38:0F:73:30:DE:E2:7A:74:3A:3C:80:8D:DD:4D:29:2B:24:D5:73:D6:1F:72:C8:C0:4C:DD:89:75:54:01
    Fingerprint (SHA1):
        0B:1F:72:4F:A9:A5:F5:DE:14:11:58:C3:A2:33:AA:10:F7:7B:65:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10731: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10732: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155064 (0x1dee4738)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:01:0f:7e:ec:59:ed:29:95:36:7d:a5:f0:d8:92:b0:
                    18:87:4e:e8:3b:f6:4d:79:3c:b0:5c:f1:02:64:f8:52:
                    0c:6f:7d:dc:ed:b8:03:b1:5c:67:ed:c2:4e:be:75:52:
                    11:36:a2:16:49:26:58:eb:22:85:37:ed:f7:fc:40:de:
                    23:db:55:bf:27:41:3e:d8:81:7e:29:a5:da:b6:16:a3:
                    f0:14:68:0c:88:3c:ec:19:ad:ed:54:4f:67:bb:b9:f6:
                    06:5a:27:8c:de:04:b7:e3:f8:a0:13:c9:f5:83:6a:f7:
                    74:b9:d3:0d:06:cb:d3:10:db:24:9c:db:c1:d8:8c:27:
                    00:93:06:33:db:27:6a:df:d2:62:4c:a0:0e:93:1c:78:
                    c6:dd:97:ba:0f:d8:35:13:92:cc:0c:37:37:e6:0f:78:
                    a6:50:50:34:11:56:5d:95:35:a2:61:20:e6:fa:41:66:
                    54:c1:a3:f3:fa:63:45:e3:d3:08:13:82:4d:f1:0b:d9:
                    1a:fb:30:0e:39:1d:36:da:e1:f9:85:84:50:53:fc:3a:
                    3d:f4:ef:8a:a2:50:a4:9e:b5:84:13:26:f3:26:f0:fa:
                    ec:2a:77:2d:a8:97:39:f7:75:02:fe:12:20:26:14:e3:
                    6c:ff:77:ba:6d:b9:b9:96:fa:2f:96:20:7b:89:dd:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:1c:a4:f8:2d:f2:ab:ba:4a:94:fc:ad:52:22:e8:6c:
        5a:53:e9:87:e4:a0:0d:95:5e:b2:d4:ad:0c:af:91:4d:
        cc:17:59:e5:bf:c5:a1:9a:b5:73:cb:13:69:61:34:97:
        9a:07:4d:64:72:be:0a:65:bc:c6:5e:3d:75:75:66:a5:
        81:a0:3f:a3:30:67:c5:64:f0:6a:2b:b4:5d:22:66:52:
        3b:f1:e4:fb:1c:78:e8:e5:1d:ec:9f:a9:6d:85:6d:49:
        85:ba:5c:f7:b2:9f:3c:83:27:da:0f:07:ff:1f:1a:1c:
        2a:8e:55:9a:fd:d1:7e:ff:09:77:2a:87:39:2a:54:91:
        d9:1f:3b:fb:e8:db:10:df:73:0c:17:e1:a7:db:70:c4:
        81:64:1f:71:27:6d:58:cd:95:76:32:a5:24:c6:fa:fc:
        f0:8e:5d:9a:b6:87:58:03:a4:fd:e3:a9:89:fe:e9:99:
        a2:6c:6b:d1:ad:c6:ed:29:8f:3a:5f:07:19:96:c2:e5:
        7f:83:c7:f5:df:bd:06:2b:65:78:20:fd:31:b0:d5:cd:
        11:ea:3d:a6:fd:9f:f2:1e:c0:a2:96:5e:1f:1f:e8:d1:
        ea:bf:7c:e7:0a:bd:03:0a:df:ec:d4:00:c8:93:d8:e4:
        1a:42:42:b7:11:09:a5:51:09:67:d8:c7:5d:bd:4f:94
    Fingerprint (SHA-256):
        F8:E5:9A:15:D6:1D:FD:04:35:33:2E:27:44:68:01:66:44:2A:6F:09:BE:0A:4E:B9:EA:85:F8:5B:85:B3:5D:9B
    Fingerprint (SHA1):
        3D:51:96:51:E6:64:E3:85:4A:BF:7A:A9:65:85:01:13:3E:A2:4C:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10733: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10734: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155062 (0x1dee4736)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:20 2017
            Not After : Mon May 02 15:51:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:27:9d:61:de:df:5a:ab:32:78:5d:69:1f:d9:d0:ce:
                    f0:fc:a8:c9:e8:86:9f:4f:24:05:d9:a3:5a:ce:b6:0b:
                    c8:77:8f:c5:98:b0:41:78:bc:2c:5a:eb:1e:51:0a:cf:
                    8a:0e:eb:f5:13:5a:78:7e:5d:8c:4e:1c:60:ca:80:eb:
                    3d:d1:3b:e6:81:26:aa:20:49:3e:fa:de:6f:00:e4:f6:
                    5d:d2:dc:b8:8c:3a:a0:27:96:fa:08:92:56:d1:b7:3a:
                    5a:b4:8d:66:ba:89:67:9d:a2:1c:09:d4:04:90:f2:0d:
                    7a:39:a7:bb:1c:df:77:33:9c:f0:34:b4:67:1c:51:43:
                    a3:77:ab:8b:e6:19:ba:2e:18:48:5f:99:5f:07:94:fb:
                    ea:25:75:59:5a:c8:30:d5:de:2a:aa:83:14:a2:22:17:
                    ae:d6:d8:14:37:26:99:45:dc:61:fd:f3:88:a0:f3:cd:
                    5f:7f:8e:e5:91:d6:14:a6:28:47:26:2c:28:2b:28:73:
                    75:69:1a:36:d6:60:b5:ae:72:b7:a0:ba:4c:fd:93:a9:
                    4b:80:53:7d:9b:71:24:29:cd:ee:af:9b:d7:37:10:5b:
                    25:a9:96:b2:6c:8e:14:df:91:e3:d8:ad:61:cc:81:d2:
                    3b:be:8e:eb:7e:f5:18:b8:f8:7a:a5:fd:20:f5:fe:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:81:90:37:e5:f1:30:fc:f4:f8:35:62:d2:2d:84:4a:
        a3:ec:66:f5:39:ac:ed:0a:1b:e7:fc:ea:ef:7d:dd:82:
        ce:27:05:10:3f:a2:7c:81:c9:42:a5:d5:b5:85:63:92:
        53:28:dc:74:36:a6:89:98:ac:8e:eb:e4:19:bd:54:9f:
        cb:d6:85:73:ff:64:0c:d7:30:f2:91:c5:88:4b:2c:cb:
        c4:74:d9:e5:eb:0d:01:19:9d:aa:c0:c0:f8:c9:04:1a:
        a6:89:ec:e8:b6:f3:7d:c6:b9:00:c2:e2:9d:48:08:09:
        d6:43:af:4a:93:3d:01:48:65:90:65:f0:c5:6f:df:29:
        b6:c1:fd:d9:3d:7d:22:d5:cf:29:84:9b:39:7e:33:f8:
        9d:e4:0b:a9:24:64:ee:38:b8:78:f5:88:fa:14:2c:ef:
        f7:5b:37:bc:a0:45:c7:33:ef:1c:c7:56:03:5b:19:a3:
        19:00:79:26:ac:e6:a7:89:db:d1:41:8d:ea:c5:8f:5c:
        36:31:f9:74:50:34:e7:d7:bb:cb:f1:52:a1:ab:5f:3e:
        32:2f:89:18:9b:7f:91:55:9a:13:b6:b9:71:b8:51:18:
        34:ee:46:b3:d7:41:dc:e6:83:ed:4f:d3:01:65:ee:34:
        35:73:55:e2:4f:d8:31:8e:36:30:d0:5f:4a:b5:9e:a4
    Fingerprint (SHA-256):
        49:A9:E2:24:FD:CA:CF:2C:01:D4:79:D3:74:66:C9:54:7F:9A:AF:E2:96:8A:10:F4:47:BB:61:CD:9B:B0:9D:50
    Fingerprint (SHA1):
        46:B0:C1:5B:2F:80:4C:24:CC:2C:D7:82:F3:63:73:40:FB:59:04:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10735: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155062 (0x1dee4736)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:20 2017
            Not After : Mon May 02 15:51:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:27:9d:61:de:df:5a:ab:32:78:5d:69:1f:d9:d0:ce:
                    f0:fc:a8:c9:e8:86:9f:4f:24:05:d9:a3:5a:ce:b6:0b:
                    c8:77:8f:c5:98:b0:41:78:bc:2c:5a:eb:1e:51:0a:cf:
                    8a:0e:eb:f5:13:5a:78:7e:5d:8c:4e:1c:60:ca:80:eb:
                    3d:d1:3b:e6:81:26:aa:20:49:3e:fa:de:6f:00:e4:f6:
                    5d:d2:dc:b8:8c:3a:a0:27:96:fa:08:92:56:d1:b7:3a:
                    5a:b4:8d:66:ba:89:67:9d:a2:1c:09:d4:04:90:f2:0d:
                    7a:39:a7:bb:1c:df:77:33:9c:f0:34:b4:67:1c:51:43:
                    a3:77:ab:8b:e6:19:ba:2e:18:48:5f:99:5f:07:94:fb:
                    ea:25:75:59:5a:c8:30:d5:de:2a:aa:83:14:a2:22:17:
                    ae:d6:d8:14:37:26:99:45:dc:61:fd:f3:88:a0:f3:cd:
                    5f:7f:8e:e5:91:d6:14:a6:28:47:26:2c:28:2b:28:73:
                    75:69:1a:36:d6:60:b5:ae:72:b7:a0:ba:4c:fd:93:a9:
                    4b:80:53:7d:9b:71:24:29:cd:ee:af:9b:d7:37:10:5b:
                    25:a9:96:b2:6c:8e:14:df:91:e3:d8:ad:61:cc:81:d2:
                    3b:be:8e:eb:7e:f5:18:b8:f8:7a:a5:fd:20:f5:fe:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:81:90:37:e5:f1:30:fc:f4:f8:35:62:d2:2d:84:4a:
        a3:ec:66:f5:39:ac:ed:0a:1b:e7:fc:ea:ef:7d:dd:82:
        ce:27:05:10:3f:a2:7c:81:c9:42:a5:d5:b5:85:63:92:
        53:28:dc:74:36:a6:89:98:ac:8e:eb:e4:19:bd:54:9f:
        cb:d6:85:73:ff:64:0c:d7:30:f2:91:c5:88:4b:2c:cb:
        c4:74:d9:e5:eb:0d:01:19:9d:aa:c0:c0:f8:c9:04:1a:
        a6:89:ec:e8:b6:f3:7d:c6:b9:00:c2:e2:9d:48:08:09:
        d6:43:af:4a:93:3d:01:48:65:90:65:f0:c5:6f:df:29:
        b6:c1:fd:d9:3d:7d:22:d5:cf:29:84:9b:39:7e:33:f8:
        9d:e4:0b:a9:24:64:ee:38:b8:78:f5:88:fa:14:2c:ef:
        f7:5b:37:bc:a0:45:c7:33:ef:1c:c7:56:03:5b:19:a3:
        19:00:79:26:ac:e6:a7:89:db:d1:41:8d:ea:c5:8f:5c:
        36:31:f9:74:50:34:e7:d7:bb:cb:f1:52:a1:ab:5f:3e:
        32:2f:89:18:9b:7f:91:55:9a:13:b6:b9:71:b8:51:18:
        34:ee:46:b3:d7:41:dc:e6:83:ed:4f:d3:01:65:ee:34:
        35:73:55:e2:4f:d8:31:8e:36:30:d0:5f:4a:b5:9e:a4
    Fingerprint (SHA-256):
        49:A9:E2:24:FD:CA:CF:2C:01:D4:79:D3:74:66:C9:54:7F:9A:AF:E2:96:8A:10:F4:47:BB:61:CD:9B:B0:9D:50
    Fingerprint (SHA1):
        46:B0:C1:5B:2F:80:4C:24:CC:2C:D7:82:F3:63:73:40:FB:59:04:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10736: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155063 (0x1dee4737)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:8c:62:87:cd:76:62:b7:f8:20:db:40:9c:02:53:39:
                    f8:8a:e0:bf:4e:eb:c1:ff:9d:c7:a3:ce:ba:0f:87:63:
                    8f:a5:67:77:8e:08:11:a7:6b:92:43:84:39:26:08:6b:
                    b4:68:b4:88:06:06:ce:c1:d6:c5:db:ad:d2:0b:48:ce:
                    e5:c2:b1:0b:22:bb:59:9a:0e:1e:35:57:78:9b:9d:c9:
                    e5:33:e8:cd:9d:a8:53:62:66:cc:ee:c1:5e:e3:ee:cd:
                    4a:ab:83:68:f9:8b:a0:c0:a6:9b:e2:39:ec:50:12:b1:
                    29:a0:de:6b:89:8b:15:39:8b:3a:c8:88:d7:4b:a5:76:
                    c8:09:c7:15:aa:d9:1b:43:88:10:47:c1:33:8d:ff:57:
                    f0:e8:ed:c1:b0:f5:c9:5a:8d:ec:ca:b8:b3:c6:d9:a9:
                    8b:e6:bb:71:46:e5:8d:d9:fe:93:80:52:09:40:37:ac:
                    f6:21:f8:f4:32:ea:5f:7e:6d:a3:e5:11:b6:4f:4e:56:
                    b3:14:41:2a:a3:d1:7e:67:ee:62:40:5e:de:44:10:fd:
                    db:a5:3d:78:59:f9:aa:59:bc:13:58:cb:62:58:b1:10:
                    f0:a8:ba:4b:5f:05:1f:29:2b:60:92:63:87:66:be:82:
                    a6:9c:90:64:c1:7a:4c:75:59:de:e6:49:76:9f:c9:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:f4:bc:8b:fb:29:d4:67:8d:c0:06:eb:53:c8:e6:d5:
        07:48:de:a1:b9:2f:12:5f:30:46:12:9f:7f:07:84:51:
        31:0b:e9:e7:eb:8f:0c:b8:be:50:66:e1:3a:87:a0:83:
        81:f8:7d:d3:85:56:0f:cc:92:64:c3:03:7d:10:3a:34:
        ac:07:26:2f:02:6e:66:59:ed:da:3d:59:e2:22:ff:5a:
        e8:5a:72:e1:45:56:c1:21:39:a9:c7:38:f3:43:2c:f4:
        ee:2e:71:13:41:7c:a7:3f:ef:bf:08:f2:c1:e4:1b:b5:
        8e:ae:7c:3b:5a:be:5f:b2:4d:6a:ab:26:2e:ea:3d:2c:
        68:3d:03:b6:55:14:b9:9c:58:dd:cd:7a:3b:86:74:76:
        bb:6e:8a:8a:fd:ce:d4:c3:07:04:b5:6b:c4:e3:41:30:
        8c:3c:24:46:ce:20:2c:24:31:3c:c0:93:67:1e:1a:9e:
        59:6d:73:01:52:87:b6:d0:13:be:09:12:79:2a:71:14:
        b2:fa:aa:65:1b:03:f9:17:6b:18:72:cd:44:a9:70:37:
        7b:32:28:37:7a:85:87:c9:74:9e:36:f4:70:ee:95:d5:
        23:ee:c0:15:93:13:e8:cc:44:93:a3:04:f0:8d:5d:61:
        a0:a3:e6:e8:8c:6b:af:93:94:7e:76:e0:07:44:b1:ee
    Fingerprint (SHA-256):
        B8:A4:38:0F:73:30:DE:E2:7A:74:3A:3C:80:8D:DD:4D:29:2B:24:D5:73:D6:1F:72:C8:C0:4C:DD:89:75:54:01
    Fingerprint (SHA1):
        0B:1F:72:4F:A9:A5:F5:DE:14:11:58:C3:A2:33:AA:10:F7:7B:65:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10737: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155063 (0x1dee4737)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:8c:62:87:cd:76:62:b7:f8:20:db:40:9c:02:53:39:
                    f8:8a:e0:bf:4e:eb:c1:ff:9d:c7:a3:ce:ba:0f:87:63:
                    8f:a5:67:77:8e:08:11:a7:6b:92:43:84:39:26:08:6b:
                    b4:68:b4:88:06:06:ce:c1:d6:c5:db:ad:d2:0b:48:ce:
                    e5:c2:b1:0b:22:bb:59:9a:0e:1e:35:57:78:9b:9d:c9:
                    e5:33:e8:cd:9d:a8:53:62:66:cc:ee:c1:5e:e3:ee:cd:
                    4a:ab:83:68:f9:8b:a0:c0:a6:9b:e2:39:ec:50:12:b1:
                    29:a0:de:6b:89:8b:15:39:8b:3a:c8:88:d7:4b:a5:76:
                    c8:09:c7:15:aa:d9:1b:43:88:10:47:c1:33:8d:ff:57:
                    f0:e8:ed:c1:b0:f5:c9:5a:8d:ec:ca:b8:b3:c6:d9:a9:
                    8b:e6:bb:71:46:e5:8d:d9:fe:93:80:52:09:40:37:ac:
                    f6:21:f8:f4:32:ea:5f:7e:6d:a3:e5:11:b6:4f:4e:56:
                    b3:14:41:2a:a3:d1:7e:67:ee:62:40:5e:de:44:10:fd:
                    db:a5:3d:78:59:f9:aa:59:bc:13:58:cb:62:58:b1:10:
                    f0:a8:ba:4b:5f:05:1f:29:2b:60:92:63:87:66:be:82:
                    a6:9c:90:64:c1:7a:4c:75:59:de:e6:49:76:9f:c9:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:f4:bc:8b:fb:29:d4:67:8d:c0:06:eb:53:c8:e6:d5:
        07:48:de:a1:b9:2f:12:5f:30:46:12:9f:7f:07:84:51:
        31:0b:e9:e7:eb:8f:0c:b8:be:50:66:e1:3a:87:a0:83:
        81:f8:7d:d3:85:56:0f:cc:92:64:c3:03:7d:10:3a:34:
        ac:07:26:2f:02:6e:66:59:ed:da:3d:59:e2:22:ff:5a:
        e8:5a:72:e1:45:56:c1:21:39:a9:c7:38:f3:43:2c:f4:
        ee:2e:71:13:41:7c:a7:3f:ef:bf:08:f2:c1:e4:1b:b5:
        8e:ae:7c:3b:5a:be:5f:b2:4d:6a:ab:26:2e:ea:3d:2c:
        68:3d:03:b6:55:14:b9:9c:58:dd:cd:7a:3b:86:74:76:
        bb:6e:8a:8a:fd:ce:d4:c3:07:04:b5:6b:c4:e3:41:30:
        8c:3c:24:46:ce:20:2c:24:31:3c:c0:93:67:1e:1a:9e:
        59:6d:73:01:52:87:b6:d0:13:be:09:12:79:2a:71:14:
        b2:fa:aa:65:1b:03:f9:17:6b:18:72:cd:44:a9:70:37:
        7b:32:28:37:7a:85:87:c9:74:9e:36:f4:70:ee:95:d5:
        23:ee:c0:15:93:13:e8:cc:44:93:a3:04:f0:8d:5d:61:
        a0:a3:e6:e8:8c:6b:af:93:94:7e:76:e0:07:44:b1:ee
    Fingerprint (SHA-256):
        B8:A4:38:0F:73:30:DE:E2:7A:74:3A:3C:80:8D:DD:4D:29:2B:24:D5:73:D6:1F:72:C8:C0:4C:DD:89:75:54:01
    Fingerprint (SHA1):
        0B:1F:72:4F:A9:A5:F5:DE:14:11:58:C3:A2:33:AA:10:F7:7B:65:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10738: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155064 (0x1dee4738)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:01:0f:7e:ec:59:ed:29:95:36:7d:a5:f0:d8:92:b0:
                    18:87:4e:e8:3b:f6:4d:79:3c:b0:5c:f1:02:64:f8:52:
                    0c:6f:7d:dc:ed:b8:03:b1:5c:67:ed:c2:4e:be:75:52:
                    11:36:a2:16:49:26:58:eb:22:85:37:ed:f7:fc:40:de:
                    23:db:55:bf:27:41:3e:d8:81:7e:29:a5:da:b6:16:a3:
                    f0:14:68:0c:88:3c:ec:19:ad:ed:54:4f:67:bb:b9:f6:
                    06:5a:27:8c:de:04:b7:e3:f8:a0:13:c9:f5:83:6a:f7:
                    74:b9:d3:0d:06:cb:d3:10:db:24:9c:db:c1:d8:8c:27:
                    00:93:06:33:db:27:6a:df:d2:62:4c:a0:0e:93:1c:78:
                    c6:dd:97:ba:0f:d8:35:13:92:cc:0c:37:37:e6:0f:78:
                    a6:50:50:34:11:56:5d:95:35:a2:61:20:e6:fa:41:66:
                    54:c1:a3:f3:fa:63:45:e3:d3:08:13:82:4d:f1:0b:d9:
                    1a:fb:30:0e:39:1d:36:da:e1:f9:85:84:50:53:fc:3a:
                    3d:f4:ef:8a:a2:50:a4:9e:b5:84:13:26:f3:26:f0:fa:
                    ec:2a:77:2d:a8:97:39:f7:75:02:fe:12:20:26:14:e3:
                    6c:ff:77:ba:6d:b9:b9:96:fa:2f:96:20:7b:89:dd:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:1c:a4:f8:2d:f2:ab:ba:4a:94:fc:ad:52:22:e8:6c:
        5a:53:e9:87:e4:a0:0d:95:5e:b2:d4:ad:0c:af:91:4d:
        cc:17:59:e5:bf:c5:a1:9a:b5:73:cb:13:69:61:34:97:
        9a:07:4d:64:72:be:0a:65:bc:c6:5e:3d:75:75:66:a5:
        81:a0:3f:a3:30:67:c5:64:f0:6a:2b:b4:5d:22:66:52:
        3b:f1:e4:fb:1c:78:e8:e5:1d:ec:9f:a9:6d:85:6d:49:
        85:ba:5c:f7:b2:9f:3c:83:27:da:0f:07:ff:1f:1a:1c:
        2a:8e:55:9a:fd:d1:7e:ff:09:77:2a:87:39:2a:54:91:
        d9:1f:3b:fb:e8:db:10:df:73:0c:17:e1:a7:db:70:c4:
        81:64:1f:71:27:6d:58:cd:95:76:32:a5:24:c6:fa:fc:
        f0:8e:5d:9a:b6:87:58:03:a4:fd:e3:a9:89:fe:e9:99:
        a2:6c:6b:d1:ad:c6:ed:29:8f:3a:5f:07:19:96:c2:e5:
        7f:83:c7:f5:df:bd:06:2b:65:78:20:fd:31:b0:d5:cd:
        11:ea:3d:a6:fd:9f:f2:1e:c0:a2:96:5e:1f:1f:e8:d1:
        ea:bf:7c:e7:0a:bd:03:0a:df:ec:d4:00:c8:93:d8:e4:
        1a:42:42:b7:11:09:a5:51:09:67:d8:c7:5d:bd:4f:94
    Fingerprint (SHA-256):
        F8:E5:9A:15:D6:1D:FD:04:35:33:2E:27:44:68:01:66:44:2A:6F:09:BE:0A:4E:B9:EA:85:F8:5B:85:B3:5D:9B
    Fingerprint (SHA1):
        3D:51:96:51:E6:64:E3:85:4A:BF:7A:A9:65:85:01:13:3E:A2:4C:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10739: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155064 (0x1dee4738)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:01:0f:7e:ec:59:ed:29:95:36:7d:a5:f0:d8:92:b0:
                    18:87:4e:e8:3b:f6:4d:79:3c:b0:5c:f1:02:64:f8:52:
                    0c:6f:7d:dc:ed:b8:03:b1:5c:67:ed:c2:4e:be:75:52:
                    11:36:a2:16:49:26:58:eb:22:85:37:ed:f7:fc:40:de:
                    23:db:55:bf:27:41:3e:d8:81:7e:29:a5:da:b6:16:a3:
                    f0:14:68:0c:88:3c:ec:19:ad:ed:54:4f:67:bb:b9:f6:
                    06:5a:27:8c:de:04:b7:e3:f8:a0:13:c9:f5:83:6a:f7:
                    74:b9:d3:0d:06:cb:d3:10:db:24:9c:db:c1:d8:8c:27:
                    00:93:06:33:db:27:6a:df:d2:62:4c:a0:0e:93:1c:78:
                    c6:dd:97:ba:0f:d8:35:13:92:cc:0c:37:37:e6:0f:78:
                    a6:50:50:34:11:56:5d:95:35:a2:61:20:e6:fa:41:66:
                    54:c1:a3:f3:fa:63:45:e3:d3:08:13:82:4d:f1:0b:d9:
                    1a:fb:30:0e:39:1d:36:da:e1:f9:85:84:50:53:fc:3a:
                    3d:f4:ef:8a:a2:50:a4:9e:b5:84:13:26:f3:26:f0:fa:
                    ec:2a:77:2d:a8:97:39:f7:75:02:fe:12:20:26:14:e3:
                    6c:ff:77:ba:6d:b9:b9:96:fa:2f:96:20:7b:89:dd:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:1c:a4:f8:2d:f2:ab:ba:4a:94:fc:ad:52:22:e8:6c:
        5a:53:e9:87:e4:a0:0d:95:5e:b2:d4:ad:0c:af:91:4d:
        cc:17:59:e5:bf:c5:a1:9a:b5:73:cb:13:69:61:34:97:
        9a:07:4d:64:72:be:0a:65:bc:c6:5e:3d:75:75:66:a5:
        81:a0:3f:a3:30:67:c5:64:f0:6a:2b:b4:5d:22:66:52:
        3b:f1:e4:fb:1c:78:e8:e5:1d:ec:9f:a9:6d:85:6d:49:
        85:ba:5c:f7:b2:9f:3c:83:27:da:0f:07:ff:1f:1a:1c:
        2a:8e:55:9a:fd:d1:7e:ff:09:77:2a:87:39:2a:54:91:
        d9:1f:3b:fb:e8:db:10:df:73:0c:17:e1:a7:db:70:c4:
        81:64:1f:71:27:6d:58:cd:95:76:32:a5:24:c6:fa:fc:
        f0:8e:5d:9a:b6:87:58:03:a4:fd:e3:a9:89:fe:e9:99:
        a2:6c:6b:d1:ad:c6:ed:29:8f:3a:5f:07:19:96:c2:e5:
        7f:83:c7:f5:df:bd:06:2b:65:78:20:fd:31:b0:d5:cd:
        11:ea:3d:a6:fd:9f:f2:1e:c0:a2:96:5e:1f:1f:e8:d1:
        ea:bf:7c:e7:0a:bd:03:0a:df:ec:d4:00:c8:93:d8:e4:
        1a:42:42:b7:11:09:a5:51:09:67:d8:c7:5d:bd:4f:94
    Fingerprint (SHA-256):
        F8:E5:9A:15:D6:1D:FD:04:35:33:2E:27:44:68:01:66:44:2A:6F:09:BE:0A:4E:B9:EA:85:F8:5B:85:B3:5D:9B
    Fingerprint (SHA1):
        3D:51:96:51:E6:64:E3:85:4A:BF:7A:A9:65:85:01:13:3E:A2:4C:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10740: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10741: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155067 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10742: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10743: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10744: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10745: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155068   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10746: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10747: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10748: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10749: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155069   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10750: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10751: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10752: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10753: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502155070   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10754: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10755: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10756: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10757: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155071   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10758: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10759: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10760: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10761: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155072   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10762: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10763: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #10764: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10765: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502155073   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10766: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10767: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10768: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #10769: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #10770: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10771: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #10772: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155067 (0x1dee473b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:27 2017
            Not After : Mon May 02 15:51:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:08:b0:cd:81:e2:99:7b:5b:87:63:8c:f5:4e:d2:4d:
                    ca:cd:5e:e0:8d:79:04:4e:e1:29:92:7e:90:cd:32:32:
                    2f:34:d9:7f:02:6f:f8:a4:ab:9e:14:d0:51:93:78:ad:
                    bc:1e:d8:88:56:41:2c:e6:4b:96:a4:b9:2a:ce:7f:3d:
                    45:24:70:f9:7d:95:ee:87:1b:46:c4:a5:af:40:57:f5:
                    9f:7e:a3:6d:2a:9b:18:cd:51:3f:09:59:a6:d6:b6:8d:
                    32:59:22:a9:53:0a:b7:91:4f:bb:31:50:f6:26:75:09:
                    ae:fa:f8:a3:70:e6:85:b5:21:2f:df:2a:7a:b6:24:9d:
                    29:79:c9:23:d2:9b:50:a9:38:2f:84:5f:2c:74:56:1f:
                    1d:73:57:05:25:63:d1:bd:f9:30:23:a3:78:09:8c:70:
                    f8:a3:79:da:ec:4b:04:eb:f3:7b:bb:ac:7f:d8:45:c9:
                    35:b7:37:83:06:9f:36:e6:55:3d:fd:55:db:be:17:05:
                    b9:c8:ca:13:01:50:54:95:9b:af:be:9f:23:aa:51:d4:
                    c9:1c:a5:ef:74:cb:4b:28:09:f7:8a:6b:69:c8:76:7c:
                    12:4f:50:87:ca:56:8c:62:95:88:23:cc:7c:16:a6:3f:
                    11:8c:70:83:40:20:ed:be:72:90:55:3e:af:78:0d:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:bd:23:e2:7a:bb:5c:37:97:64:e7:5c:6c:73:41:8e:
        91:db:1b:07:f2:50:b6:18:1d:ad:1d:e2:c6:e3:ba:53:
        f6:66:e1:69:bf:5c:f9:59:5e:d4:db:59:39:10:51:77:
        64:14:91:9f:db:47:17:58:ff:62:e7:be:e2:f6:ef:7c:
        41:26:9a:b8:93:a2:01:31:79:8a:33:67:6b:51:2f:4e:
        69:e6:b7:20:72:1c:1a:09:6f:6e:49:e2:24:e0:9c:e3:
        c2:0d:c2:b7:f7:f6:0d:98:ce:07:0b:74:d4:8e:30:3b:
        27:4a:41:21:bf:9e:9e:f1:d0:40:b2:65:0f:f9:1b:fa:
        95:f3:87:4c:ca:2b:3f:ac:fb:71:66:16:11:44:65:b7:
        92:12:41:c5:5f:75:8b:1b:61:bd:9f:ab:de:13:fc:8e:
        ff:b0:0a:9f:7c:a1:1a:73:4d:0b:b0:07:64:87:7d:e4:
        7e:88:07:e1:2e:0a:50:21:c2:90:42:a4:d8:0b:ca:e5:
        10:90:e1:8e:d0:5c:96:21:a2:7f:ba:79:59:71:96:92:
        b3:1b:32:5a:99:88:13:ad:40:7c:b3:9f:e6:b3:49:9f:
        29:47:92:6a:2e:14:67:46:39:81:3e:cd:78:f1:08:15:
        a6:1e:b6:98:e6:e4:ce:9d:29:0f:94:2b:3e:a4:b3:2f
    Fingerprint (SHA-256):
        EC:0D:EA:14:B6:C8:2F:06:7E:AF:8E:16:81:F4:DC:17:53:F5:0F:C9:CC:37:5C:6B:9F:ED:0A:77:0F:DD:30:52
    Fingerprint (SHA1):
        78:17:F4:9D:FD:5E:4C:AF:89:67:26:45:A7:34:B1:06:01:21:0F:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10773: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10774: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10775: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10776: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155067 (0x1dee473b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:27 2017
            Not After : Mon May 02 15:51:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:08:b0:cd:81:e2:99:7b:5b:87:63:8c:f5:4e:d2:4d:
                    ca:cd:5e:e0:8d:79:04:4e:e1:29:92:7e:90:cd:32:32:
                    2f:34:d9:7f:02:6f:f8:a4:ab:9e:14:d0:51:93:78:ad:
                    bc:1e:d8:88:56:41:2c:e6:4b:96:a4:b9:2a:ce:7f:3d:
                    45:24:70:f9:7d:95:ee:87:1b:46:c4:a5:af:40:57:f5:
                    9f:7e:a3:6d:2a:9b:18:cd:51:3f:09:59:a6:d6:b6:8d:
                    32:59:22:a9:53:0a:b7:91:4f:bb:31:50:f6:26:75:09:
                    ae:fa:f8:a3:70:e6:85:b5:21:2f:df:2a:7a:b6:24:9d:
                    29:79:c9:23:d2:9b:50:a9:38:2f:84:5f:2c:74:56:1f:
                    1d:73:57:05:25:63:d1:bd:f9:30:23:a3:78:09:8c:70:
                    f8:a3:79:da:ec:4b:04:eb:f3:7b:bb:ac:7f:d8:45:c9:
                    35:b7:37:83:06:9f:36:e6:55:3d:fd:55:db:be:17:05:
                    b9:c8:ca:13:01:50:54:95:9b:af:be:9f:23:aa:51:d4:
                    c9:1c:a5:ef:74:cb:4b:28:09:f7:8a:6b:69:c8:76:7c:
                    12:4f:50:87:ca:56:8c:62:95:88:23:cc:7c:16:a6:3f:
                    11:8c:70:83:40:20:ed:be:72:90:55:3e:af:78:0d:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:bd:23:e2:7a:bb:5c:37:97:64:e7:5c:6c:73:41:8e:
        91:db:1b:07:f2:50:b6:18:1d:ad:1d:e2:c6:e3:ba:53:
        f6:66:e1:69:bf:5c:f9:59:5e:d4:db:59:39:10:51:77:
        64:14:91:9f:db:47:17:58:ff:62:e7:be:e2:f6:ef:7c:
        41:26:9a:b8:93:a2:01:31:79:8a:33:67:6b:51:2f:4e:
        69:e6:b7:20:72:1c:1a:09:6f:6e:49:e2:24:e0:9c:e3:
        c2:0d:c2:b7:f7:f6:0d:98:ce:07:0b:74:d4:8e:30:3b:
        27:4a:41:21:bf:9e:9e:f1:d0:40:b2:65:0f:f9:1b:fa:
        95:f3:87:4c:ca:2b:3f:ac:fb:71:66:16:11:44:65:b7:
        92:12:41:c5:5f:75:8b:1b:61:bd:9f:ab:de:13:fc:8e:
        ff:b0:0a:9f:7c:a1:1a:73:4d:0b:b0:07:64:87:7d:e4:
        7e:88:07:e1:2e:0a:50:21:c2:90:42:a4:d8:0b:ca:e5:
        10:90:e1:8e:d0:5c:96:21:a2:7f:ba:79:59:71:96:92:
        b3:1b:32:5a:99:88:13:ad:40:7c:b3:9f:e6:b3:49:9f:
        29:47:92:6a:2e:14:67:46:39:81:3e:cd:78:f1:08:15:
        a6:1e:b6:98:e6:e4:ce:9d:29:0f:94:2b:3e:a4:b3:2f
    Fingerprint (SHA-256):
        EC:0D:EA:14:B6:C8:2F:06:7E:AF:8E:16:81:F4:DC:17:53:F5:0F:C9:CC:37:5C:6B:9F:ED:0A:77:0F:DD:30:52
    Fingerprint (SHA1):
        78:17:F4:9D:FD:5E:4C:AF:89:67:26:45:A7:34:B1:06:01:21:0F:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10777: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10778: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10779: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155074 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10780: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10781: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10782: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155075   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10784: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10785: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #10786: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10787: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502155076   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10788: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10789: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #10790: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502155077   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10792: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10793: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10794: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10795: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502155078   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10796: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10797: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #10798: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502155079   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10800: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10801: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #10802: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10803: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502155080   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10804: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10805: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #10806: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10807: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502155081   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10808: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10809: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #10810: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10811: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502155082   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10812: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10813: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #10814: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502155083   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10816: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10817: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #10818: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10819: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502155084   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10820: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10821: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #10822: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10823: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502155085   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10824: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10825: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #10826: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10827: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502155086   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10828: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10829: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #10830: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10831: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502155087   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10832: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10833: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #10834: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10835: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502155088   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10836: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10837: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #10838: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10839: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502155089   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10840: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10841: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #10842: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10843: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502155090   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10844: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10845: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #10846: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10847: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502155091   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10848: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10849: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #10850: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10851: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502155092   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10852: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10853: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #10854: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10855: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502155093   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10856: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10857: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #10858: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10859: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502155094   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10860: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10861: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #10862: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10863: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502155095   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10864: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10865: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #10866: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10867: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502155096   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10868: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10869: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #10870: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10871: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502155097   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10872: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10873: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #10874: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10875: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502155098   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10876: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10877: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #10878: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10879: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502155099   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10880: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10881: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #10882: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10883: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502155100   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10884: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10885: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #10886: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10887: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502155101   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10888: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10889: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #10890: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10891: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502155102   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10892: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10893: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #10894: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10895: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502155103   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10896: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10897: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10898: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10899: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10900: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10901: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10902: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10903: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10904: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10905: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10906: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10907: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10908: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10909: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10910: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10911: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10912: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10913: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10914: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10915: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10916: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10917: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10918: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10919: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10920: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155074 (0x1dee4742)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1b:e7:3a:0a:28:4f:cb:7c:b4:ca:fc:16:8a:87:2d:
                    1f:7a:fb:c1:c4:64:de:79:a9:39:4e:be:fd:bf:0a:f6:
                    33:30:6f:4c:16:21:8f:45:9b:2a:e3:82:15:ba:55:77:
                    e8:41:97:a6:40:e1:69:1b:93:a8:5e:43:b1:ac:ea:5f:
                    19:90:b8:bb:e7:c7:85:e6:b3:6c:72:a9:29:d6:e3:c6:
                    f6:4f:2e:08:00:51:fb:54:0f:c8:50:05:47:b8:70:3a:
                    0c:bb:a4:1b:a9:bb:28:ff:15:8a:74:99:2b:c1:38:4d:
                    5a:12:6e:9c:93:b5:68:a8:be:6c:75:62:be:05:92:19:
                    ec:6e:1a:b6:d3:31:b0:3a:43:79:be:1a:a8:15:c5:c1:
                    dc:5a:d4:dd:88:93:8c:cf:ca:b5:a8:89:8e:3b:6c:ed:
                    b4:c6:d4:cd:b2:ff:29:69:a4:47:a7:9c:63:db:6c:23:
                    2a:dc:3c:ca:88:df:cb:6c:8d:7c:9d:b6:3a:34:6f:ec:
                    c6:62:2a:0a:9a:cf:10:95:0d:fb:ea:0f:0f:71:3b:b5:
                    ab:5b:d5:e5:f2:d0:d7:87:b8:d0:63:02:05:2c:8d:9f:
                    fb:ad:79:82:2c:1f:16:5e:aa:0f:bf:db:2d:9a:13:01:
                    a3:86:ad:22:e3:f8:93:c9:87:2f:b1:2c:7d:54:ed:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:51:82:96:71:20:72:fe:b8:31:fa:4d:3d:76:ea:de:
        1e:fe:4a:26:81:01:1b:d7:6d:41:88:06:e6:35:04:b4:
        13:e1:8c:79:9e:64:af:3d:ad:c6:66:70:89:15:41:51:
        46:3f:e2:d3:66:e1:ce:b0:fb:4e:19:b3:cb:64:7c:b6:
        bf:18:87:06:63:2e:33:dc:7f:c6:56:a7:57:40:1d:24:
        1f:61:1e:99:aa:64:f8:dc:c1:57:ce:7d:b9:1f:d5:9b:
        0c:83:b3:27:8f:f8:45:2f:6a:30:60:3c:64:cf:f5:f0:
        99:69:54:2e:3c:ca:57:1e:a2:da:92:00:91:09:4d:b5:
        93:ee:99:9c:31:39:8a:f8:d3:3c:26:47:a4:69:49:28:
        f1:a1:cb:6d:dc:a2:90:3f:fc:95:4d:1c:08:e9:85:de:
        b8:e3:4f:59:32:67:89:4f:7d:2b:19:34:8a:08:22:3e:
        de:e2:a5:35:fc:77:11:f1:a4:f4:f3:c2:1e:7f:4d:7e:
        4e:03:31:92:2b:d4:51:d9:25:3d:9f:2b:3c:3c:bb:0a:
        05:a3:55:68:e1:8d:c0:82:1e:ba:2b:aa:81:47:43:2a:
        fb:69:dc:15:5a:9e:01:ed:4e:f7:30:55:fa:11:11:62:
        86:fd:53:37:ab:8c:68:12:65:53:3a:8a:8b:89:4f:4c
    Fingerprint (SHA-256):
        B9:7D:A7:04:A9:AF:D9:FA:A6:9A:3C:F9:45:95:2E:2B:C1:75:E8:61:28:EC:7D:B3:29:59:78:75:73:CB:14:6C
    Fingerprint (SHA1):
        2C:D0:3B:CB:E7:28:88:BA:FC:DD:F6:E7:C9:2C:81:42:45:1C:9C:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10921: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10922: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10923: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155104 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10924: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10925: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #10926: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10927: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502155105   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10928: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10929: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #10930: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10931: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502155106   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10932: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10933: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #10934: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10935: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502155107   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10936: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10937: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #10938: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10939: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502155108   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10940: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10941: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #10942: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10943: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502155109   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10944: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10945: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #10946: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10947: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502155110   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10948: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10949: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10950: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155104 (0x1dee4760)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:ca:53:c2:36:05:4b:f0:b5:37:c3:2e:d3:5b:20:1c:
                    49:02:96:98:31:f7:5c:87:3f:60:e7:66:4c:5a:d4:1d:
                    9f:71:3b:1b:cc:d2:2a:0c:73:be:48:8a:49:ea:fb:0e:
                    47:71:3b:3c:24:42:d4:e6:dc:96:49:06:bd:82:db:c7:
                    33:2e:83:e1:88:ef:13:f5:94:42:4c:a7:fe:8b:32:f5:
                    a1:24:2e:21:7b:b3:10:91:03:3d:e4:12:2d:50:be:86:
                    db:b5:6b:2b:24:1e:07:08:05:9d:cf:63:b3:30:51:ff:
                    13:7d:71:1c:d2:67:c5:23:c3:11:c3:de:6e:4b:30:16:
                    3f:c2:37:15:f0:37:00:c1:4b:a0:e7:64:7a:a6:5f:93:
                    4e:77:9a:2b:3f:41:53:91:60:92:eb:1e:93:e9:0e:31:
                    39:e8:3f:59:c6:0d:34:46:57:27:2c:7a:3f:fb:e1:c8:
                    a9:cb:56:c4:38:29:68:a9:8e:9f:60:d6:9d:f0:00:15:
                    a7:fd:ea:eb:b7:77:06:4d:6d:11:91:2c:10:ff:ae:45:
                    a7:43:76:09:5e:aa:64:77:bc:bc:04:d6:af:f3:0e:32:
                    10:33:df:0f:98:dc:15:92:e4:41:22:3c:a1:7c:fa:d0:
                    61:5c:cd:80:f7:89:43:9e:bc:01:cf:f1:d8:82:0b:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:94:33:1c:5c:5d:35:18:7c:5f:a5:e9:77:41:e4:89:
        5f:4c:ba:74:ed:12:25:fd:40:7e:af:c0:11:96:46:70:
        df:f0:7d:de:02:e2:3e:b9:50:70:26:49:4e:ee:57:77:
        8f:68:f9:bb:ea:29:fe:a7:30:61:50:e2:a0:3e:6c:ea:
        9d:63:bd:3b:e2:84:74:e5:6a:17:45:be:ea:6c:96:49:
        ae:c9:39:ae:0e:d1:d0:11:98:15:3f:7b:b1:be:2b:15:
        84:51:88:45:66:36:4a:26:21:d8:25:69:2f:4d:38:d5:
        80:88:38:2d:d0:0e:54:e4:3b:d2:c6:e4:13:03:2d:db:
        c6:17:c4:74:da:8c:26:ce:26:d9:ee:ab:0e:41:16:c0:
        3d:be:22:6b:ee:54:2e:04:32:11:1b:ef:e4:a0:da:89:
        4d:9d:6d:2b:a7:ec:b1:2a:2f:f5:44:fc:28:00:b7:79:
        25:d2:26:93:b8:ad:ba:58:d2:f0:91:cb:4b:44:1d:cf:
        21:28:53:cb:e8:ac:27:20:29:d9:d8:9b:b2:ce:ee:50:
        e3:81:90:b4:14:2b:18:d5:5d:f2:26:b9:f4:ee:f6:b5:
        ba:64:a9:a2:39:99:c6:ce:3d:7d:0c:47:2f:03:73:d9:
        de:bb:e9:c8:a9:a0:ac:fc:04:3d:a5:cd:de:06:c7:9e
    Fingerprint (SHA-256):
        DE:0A:A0:7A:FB:27:C1:FB:37:9E:74:2E:E7:E6:9C:49:8B:C7:FA:7A:B0:E9:A3:54:4E:E4:EE:04:64:D0:C9:2A
    Fingerprint (SHA1):
        D8:27:1E:A2:8E:17:0B:7B:BA:45:7A:FA:DE:66:5B:6A:97:78:24:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10951: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10952: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10953: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10954: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155104 (0x1dee4760)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:ca:53:c2:36:05:4b:f0:b5:37:c3:2e:d3:5b:20:1c:
                    49:02:96:98:31:f7:5c:87:3f:60:e7:66:4c:5a:d4:1d:
                    9f:71:3b:1b:cc:d2:2a:0c:73:be:48:8a:49:ea:fb:0e:
                    47:71:3b:3c:24:42:d4:e6:dc:96:49:06:bd:82:db:c7:
                    33:2e:83:e1:88:ef:13:f5:94:42:4c:a7:fe:8b:32:f5:
                    a1:24:2e:21:7b:b3:10:91:03:3d:e4:12:2d:50:be:86:
                    db:b5:6b:2b:24:1e:07:08:05:9d:cf:63:b3:30:51:ff:
                    13:7d:71:1c:d2:67:c5:23:c3:11:c3:de:6e:4b:30:16:
                    3f:c2:37:15:f0:37:00:c1:4b:a0:e7:64:7a:a6:5f:93:
                    4e:77:9a:2b:3f:41:53:91:60:92:eb:1e:93:e9:0e:31:
                    39:e8:3f:59:c6:0d:34:46:57:27:2c:7a:3f:fb:e1:c8:
                    a9:cb:56:c4:38:29:68:a9:8e:9f:60:d6:9d:f0:00:15:
                    a7:fd:ea:eb:b7:77:06:4d:6d:11:91:2c:10:ff:ae:45:
                    a7:43:76:09:5e:aa:64:77:bc:bc:04:d6:af:f3:0e:32:
                    10:33:df:0f:98:dc:15:92:e4:41:22:3c:a1:7c:fa:d0:
                    61:5c:cd:80:f7:89:43:9e:bc:01:cf:f1:d8:82:0b:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:94:33:1c:5c:5d:35:18:7c:5f:a5:e9:77:41:e4:89:
        5f:4c:ba:74:ed:12:25:fd:40:7e:af:c0:11:96:46:70:
        df:f0:7d:de:02:e2:3e:b9:50:70:26:49:4e:ee:57:77:
        8f:68:f9:bb:ea:29:fe:a7:30:61:50:e2:a0:3e:6c:ea:
        9d:63:bd:3b:e2:84:74:e5:6a:17:45:be:ea:6c:96:49:
        ae:c9:39:ae:0e:d1:d0:11:98:15:3f:7b:b1:be:2b:15:
        84:51:88:45:66:36:4a:26:21:d8:25:69:2f:4d:38:d5:
        80:88:38:2d:d0:0e:54:e4:3b:d2:c6:e4:13:03:2d:db:
        c6:17:c4:74:da:8c:26:ce:26:d9:ee:ab:0e:41:16:c0:
        3d:be:22:6b:ee:54:2e:04:32:11:1b:ef:e4:a0:da:89:
        4d:9d:6d:2b:a7:ec:b1:2a:2f:f5:44:fc:28:00:b7:79:
        25:d2:26:93:b8:ad:ba:58:d2:f0:91:cb:4b:44:1d:cf:
        21:28:53:cb:e8:ac:27:20:29:d9:d8:9b:b2:ce:ee:50:
        e3:81:90:b4:14:2b:18:d5:5d:f2:26:b9:f4:ee:f6:b5:
        ba:64:a9:a2:39:99:c6:ce:3d:7d:0c:47:2f:03:73:d9:
        de:bb:e9:c8:a9:a0:ac:fc:04:3d:a5:cd:de:06:c7:9e
    Fingerprint (SHA-256):
        DE:0A:A0:7A:FB:27:C1:FB:37:9E:74:2E:E7:E6:9C:49:8B:C7:FA:7A:B0:E9:A3:54:4E:E4:EE:04:64:D0:C9:2A
    Fingerprint (SHA1):
        D8:27:1E:A2:8E:17:0B:7B:BA:45:7A:FA:DE:66:5B:6A:97:78:24:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10955: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10956: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10957: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10958: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155111 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10959: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10960: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10961: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10962: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155112   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10963: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10964: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10965: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10966: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155113   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10967: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10968: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10969: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10970: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155114   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10971: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10972: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10973: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10974: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10975: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10976: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155111 (0x1dee4767)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:03 2017
            Not After : Mon May 02 15:52:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:e5:0d:24:7d:f2:6c:19:56:d9:3e:8b:22:0f:65:2c:
                    70:4f:4a:df:09:dd:71:31:67:ae:e5:93:28:8c:d6:73:
                    39:74:47:9a:b9:a4:63:36:f5:a8:4f:a4:05:7e:5e:5e:
                    7f:b4:aa:be:d9:ca:ae:41:45:6b:4d:bb:85:5c:7d:34:
                    61:5b:16:d7:2b:77:07:c6:6e:df:7c:96:da:9a:b8:78:
                    1d:a9:63:c5:7a:03:a8:77:fd:1e:0f:2d:b0:23:f3:4d:
                    a0:29:fa:dd:1b:a3:5a:78:d4:2f:ce:9d:f0:8a:81:05:
                    47:e2:a7:d4:d1:ed:6e:e9:c9:b8:dd:1d:2a:82:a8:2c:
                    39:21:d5:54:9e:5b:a9:99:17:10:8a:0e:3b:56:df:0a:
                    6f:bb:01:d1:fa:6d:c2:d2:e4:84:ba:c6:e7:e0:94:fa:
                    48:00:25:57:cc:5c:f8:78:bc:de:56:51:31:8d:2c:03:
                    99:17:9a:5a:c0:2d:00:25:2a:47:e9:a8:56:4e:ff:9f:
                    da:85:53:79:8b:a2:d8:2d:d3:37:ec:f6:19:2b:c8:86:
                    50:22:7a:36:32:54:76:97:a5:fb:42:40:3b:ae:bb:59:
                    bd:db:17:a4:dc:6d:b1:75:d7:2c:3b:3c:ca:38:23:e7:
                    03:ea:73:70:81:64:50:ea:1f:f7:ab:49:d8:2d:61:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:5e:f0:42:4a:70:d0:f1:69:6a:7e:a7:ad:d7:84:95:
        be:79:e5:a2:1c:68:75:6c:eb:33:02:27:90:c3:3e:ff:
        ea:8b:60:5d:db:a9:64:3a:b0:f8:18:28:b8:22:d8:bc:
        d1:33:92:c5:fb:a9:a3:05:dd:a5:f8:04:57:c8:58:ae:
        6c:8e:17:27:c6:b5:a8:2b:f3:e4:93:4b:d2:07:87:85:
        a6:f9:6b:85:47:94:4e:74:5a:6c:c7:20:db:f6:d3:73:
        ea:cc:cf:d6:ef:5b:a1:d0:c2:55:f6:62:82:fd:5b:58:
        1e:44:a0:0b:71:7a:28:90:ff:ea:aa:d0:f3:5d:e1:d2:
        23:22:c2:fd:bf:57:db:cd:ea:01:04:fa:70:23:b6:57:
        43:07:f2:88:e8:02:e9:8a:0f:de:a8:3b:e4:d7:08:e8:
        18:10:7d:2f:c1:4c:88:cc:da:63:b5:06:9f:80:66:01:
        74:c3:12:6d:3e:90:f6:6a:bf:ec:63:04:9e:53:a8:03:
        db:8e:cb:47:15:89:75:94:de:2d:53:05:d1:97:6e:b7:
        74:5c:48:39:d0:a6:82:09:5c:90:5e:df:f5:0d:6b:4f:
        6c:f6:d9:5c:30:e4:83:7e:8b:cb:06:b9:5d:20:a3:fb:
        0a:03:28:0e:aa:08:74:7f:87:b3:15:39:38:38:2a:0a
    Fingerprint (SHA-256):
        F5:15:EA:28:8E:82:1A:B0:A1:17:AB:7A:03:D5:1E:6E:E6:C7:81:9B:D6:05:8A:22:17:FC:1F:09:8D:C0:C2:34
    Fingerprint (SHA1):
        93:F5:7B:A3:6C:F1:71:CF:0B:F8:C9:AC:C0:E2:16:C4:C6:96:5D:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10977: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10978: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10979: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155112 (0x1dee4768)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:04 2017
            Not After : Mon May 02 15:52:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:12:8d:c6:49:b6:2d:f0:2d:ee:68:c3:01:20:40:b4:
                    5b:0a:fe:93:a2:a8:b8:82:9c:c0:a7:c2:7d:22:0e:69:
                    5d:96:83:e8:2b:ea:40:70:7f:75:f7:4f:2f:24:89:fc:
                    59:16:96:77:e1:6e:75:99:82:97:09:20:76:08:f0:b2:
                    01:d4:6a:e6:d6:7d:6f:0d:d8:32:86:a5:e8:5e:02:81:
                    18:38:cb:8e:fa:84:29:5b:95:b1:65:b6:2f:ea:bf:73:
                    35:a3:6a:a9:07:55:41:55:65:a5:72:c6:ea:e3:5e:ee:
                    c6:95:81:42:2a:28:f3:c1:6e:d2:cb:dd:20:04:68:88:
                    b8:07:70:42:7f:ae:9f:06:75:63:8a:28:0d:8d:5a:7f:
                    89:a3:63:e6:fd:b4:40:98:fb:e3:e1:56:ce:63:00:0b:
                    1b:81:86:0f:50:15:0b:6f:82:97:c1:e3:07:45:55:a8:
                    40:f2:74:1f:24:c0:ff:21:da:f8:26:4d:4e:84:87:de:
                    48:46:6e:03:80:88:75:14:29:d2:8a:a0:2c:f0:d8:ea:
                    45:06:0d:3d:28:b4:e9:18:6f:1a:44:2a:ab:b4:89:a6:
                    1a:82:a2:e2:4d:83:b4:ee:17:f9:2b:0d:35:40:5a:ec:
                    79:c4:4c:06:ec:75:8f:e8:27:10:63:d7:c6:62:aa:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:b9:ec:33:0c:f4:54:ce:6a:13:40:93:ac:16:c2:27:
        7d:4c:99:bf:17:aa:08:95:ee:2f:1b:e3:16:51:ce:bd:
        41:ca:06:f2:d1:8b:b6:8b:97:b9:9e:e4:cf:de:7c:4f:
        92:17:6b:a6:c0:e3:75:d1:a4:1f:0d:ed:58:f7:15:b5:
        f8:0a:c2:73:24:fb:c7:fd:24:8f:a9:5c:ef:7d:ea:98:
        42:59:0c:56:52:76:d7:32:d3:14:96:50:08:1f:ea:8f:
        d9:35:88:04:65:7a:ce:3f:bb:8a:0e:a3:66:08:1a:05:
        45:87:af:1f:a2:9b:26:e8:96:cc:de:bd:fe:41:7d:20:
        0e:ea:67:f0:3d:54:d3:2c:6e:9e:19:cf:6a:d3:b2:80:
        7b:c2:df:cf:50:d4:5b:1d:0f:b0:be:04:27:20:a7:03:
        b7:68:76:0c:f4:ea:7b:51:7b:4a:a0:7d:4a:07:57:d0:
        c3:2a:3f:c4:64:66:65:66:5d:b3:9e:73:75:7e:b3:74:
        21:b5:96:c4:75:3b:68:e1:46:f3:31:2c:1c:79:4b:8f:
        48:43:5b:03:06:b3:bb:25:ab:f4:41:8a:cc:12:34:7d:
        a4:e6:47:e6:37:88:b0:c1:7c:af:a4:f5:f8:03:90:9e:
        9a:7e:8d:9c:29:50:d9:01:3a:1f:a6:e0:9a:7b:04:9d
    Fingerprint (SHA-256):
        08:42:36:88:22:49:7A:CA:38:B8:1C:86:36:CF:F9:BB:C4:52:29:41:22:74:E0:FF:A7:98:73:C1:61:E6:4C:CC
    Fingerprint (SHA1):
        F0:13:37:CA:FA:E2:3C:C8:CE:03:D5:8B:50:85:61:E6:8F:BB:33:6F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10980: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10981: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155113 (0x1dee4769)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:d6:3c:8a:f0:3b:b2:1d:ac:dd:8f:ab:6c:cc:21:a7:
                    9b:bd:2c:74:fc:5d:b0:4f:7a:f5:a9:e3:02:ea:49:68:
                    fe:ad:bc:26:62:1d:64:a6:55:aa:ce:07:b2:b6:95:95:
                    79:07:71:40:b0:25:1f:7b:f5:6f:67:2d:63:9e:21:17:
                    b9:25:25:81:fc:0e:24:27:02:2d:2f:73:10:76:c8:ef:
                    ad:44:44:0b:28:8d:4c:cd:cc:16:a5:10:22:73:42:1e:
                    d9:72:11:13:9e:3b:c6:08:d5:41:74:26:8b:50:eb:5f:
                    08:df:26:a8:82:50:da:8c:94:54:8f:04:ec:f4:74:99:
                    bb:0f:8c:37:f1:88:62:18:13:41:df:52:bf:27:a9:f4:
                    8e:4e:e6:41:36:7a:7d:33:03:58:df:ea:83:6b:29:c9:
                    c3:dd:95:64:c9:be:a9:d9:69:03:0e:13:2a:0a:f3:b9:
                    30:9e:98:b6:16:dc:46:37:37:db:fb:21:53:7b:51:32:
                    f0:f8:00:d7:ee:14:ae:90:d6:af:5a:c1:0b:f3:8a:d9:
                    5c:a6:88:20:8f:76:49:df:d1:00:ba:1d:b2:e0:ee:f5:
                    10:e5:55:8d:a5:c1:0d:9e:22:a9:e8:45:83:13:8a:e2:
                    ff:07:3a:e8:7a:05:4b:1c:42:1a:a7:c7:80:9b:81:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:7a:9e:59:61:08:4f:3b:13:1a:07:8e:96:e1:b0:9d:
        6d:c5:34:85:aa:f6:25:be:cc:1e:5c:af:c3:56:89:8a:
        46:46:70:58:92:b1:e1:06:63:65:f0:cd:92:3d:cc:74:
        25:e7:00:4c:68:38:41:9a:1b:01:ce:2b:d4:d2:fe:1d:
        53:a7:55:77:c9:fe:6f:35:1a:9f:ae:3e:53:ab:13:9a:
        7f:44:36:6a:31:a9:61:ed:e1:f1:37:46:6f:4c:6d:99:
        11:a2:f7:c9:7d:cc:c0:f2:71:00:74:f3:c8:af:86:05:
        31:e0:69:56:8f:7b:c9:0c:d6:b7:11:af:7f:e3:b9:9c:
        67:2c:49:13:79:de:52:50:da:f6:8a:c9:6c:8f:d0:e6:
        d6:50:08:9c:44:c5:12:85:5a:48:fb:d4:85:c1:38:39:
        63:dd:cb:80:cd:f4:7e:db:15:ba:27:b0:4c:85:14:1a:
        12:02:2f:6f:5f:80:31:98:93:20:6d:f8:5e:78:85:bc:
        80:dd:da:9b:c2:c8:55:a8:8f:2c:b8:c6:a5:06:b5:f8:
        30:24:7c:54:d9:02:96:b9:6c:62:6f:9b:66:ab:89:ae:
        74:a0:b7:2c:f5:30:2a:71:25:6a:a3:e3:a2:cc:24:9b:
        b0:71:bc:26:1f:ec:9c:d2:a6:62:80:f5:b5:0e:f7:0a
    Fingerprint (SHA-256):
        AC:3A:91:62:1A:EB:04:D3:1B:43:C6:BB:A4:5E:54:6C:99:6E:8F:07:74:22:FC:9C:CF:5E:96:08:72:EE:8B:E2
    Fingerprint (SHA1):
        FC:AA:E3:CB:82:BB:E0:F2:AB:DE:0D:41:CF:68:B5:E4:42:FE:04:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10982: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10983: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155115 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10984: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10985: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10986: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10987: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155116   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10988: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10989: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10990: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10991: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155117   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10992: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10993: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10994: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10995: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502155118   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10996: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10997: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10998: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10999: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502155119   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11000: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11001: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11002: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11003: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11004: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11005: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11006: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155115 (0x1dee476b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:07 2017
            Not After : Mon May 02 15:52:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:ab:14:c0:c2:c3:c1:db:dc:ea:dd:61:28:2a:c9:09:
                    ad:59:2c:12:46:9b:86:77:28:b0:fc:05:c5:0d:3c:08:
                    e4:ae:47:28:83:1b:fa:25:11:2a:f6:fb:de:b5:7d:cc:
                    ba:ce:13:71:fb:f1:fd:4f:24:b8:46:e9:ba:2c:5f:e4:
                    85:6d:e0:92:b4:1d:b2:48:94:92:cb:16:0a:b6:54:4f:
                    1d:d8:45:08:20:ed:3e:36:a8:9c:53:cf:79:0e:ab:bf:
                    58:9d:c7:bf:d4:4d:75:f8:61:d5:26:65:51:51:15:44:
                    7b:54:c6:e5:c0:11:df:5e:af:e2:a0:8a:32:6b:d6:07:
                    7c:a7:c9:33:0b:b5:66:2b:01:66:ad:b9:af:a5:19:e9:
                    00:14:43:2c:bd:54:d5:d7:e6:26:55:90:36:04:7e:92:
                    d2:dd:98:0c:c7:ce:58:4e:1d:16:c3:02:99:d5:fe:1d:
                    76:ff:78:51:a2:89:b2:ca:36:5b:3f:16:6f:4e:92:19:
                    c9:34:a2:54:d4:7b:11:cf:e4:0c:ab:57:4f:53:01:3c:
                    a8:ae:3b:a0:81:6a:e8:5a:4e:7a:fc:50:80:81:fd:c6:
                    b9:7d:cf:a2:e9:57:fb:9e:9b:09:13:15:64:3b:29:5f:
                    bc:29:68:db:a9:58:b2:61:90:7c:eb:4d:ad:6e:7a:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:d5:28:b8:bb:7e:3c:38:2c:f4:9b:5e:af:87:90:65:
        c0:a3:33:95:1b:45:6b:bd:5d:8a:f7:08:24:e3:20:41:
        01:ed:6b:ab:cf:82:49:a5:21:c7:b0:53:a3:00:36:ab:
        70:15:25:18:78:9b:69:d6:b8:d4:6b:22:6b:6f:6e:1d:
        be:9c:4c:84:03:17:31:83:2f:9a:e1:c3:10:f0:3a:7e:
        38:ea:3d:47:e0:9e:15:75:63:65:74:8c:2f:c7:58:06:
        9b:d3:ed:8e:1a:93:f8:96:cb:29:ae:35:71:d4:7d:78:
        79:0e:78:a5:b7:b0:68:6d:21:9a:20:31:c9:5e:b9:c8:
        38:f4:05:8f:fd:41:96:25:c2:83:d9:14:54:34:d2:75:
        52:b5:03:6c:82:cc:c5:4f:8c:5a:cc:8c:fb:7e:0f:70:
        4e:19:a8:af:10:a5:6f:80:08:82:e5:f2:4a:6f:d1:af:
        ef:3d:90:bd:dd:f1:89:e2:61:ef:c6:77:7d:97:c2:7b:
        c5:bc:c0:9d:d2:5a:a7:aa:2b:8f:a6:7a:46:13:b2:0a:
        f4:bb:d8:ab:bc:5f:7e:09:e8:a4:6e:90:2c:df:f5:ba:
        0a:d1:55:53:5d:c9:53:bf:9a:cf:fe:9b:03:62:22:fd:
        09:e9:c8:39:01:d5:68:c4:56:7f:20:95:03:96:8c:24
    Fingerprint (SHA-256):
        7F:2C:4F:01:D8:28:3A:B9:F2:77:7D:B3:20:3D:A0:44:5F:24:E4:83:BD:A0:33:9C:4C:42:EE:F1:AC:7E:76:84
    Fingerprint (SHA1):
        2D:F1:09:DE:67:C1:B0:E3:BD:FB:0B:B5:86:A2:EC:79:64:45:C5:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11007: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11008: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155116 (0x1dee476c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:08 2017
            Not After : Mon May 02 15:52:08 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:ea:11:61:c5:4b:fe:a0:a8:10:b9:ab:58:d9:79:c7:
                    93:32:e4:9d:7f:83:81:ef:1d:c0:f2:3d:82:21:73:45:
                    bf:3c:95:84:4a:43:1a:65:aa:fc:79:30:ed:52:ce:70:
                    f8:20:14:0a:bf:93:f3:0e:3d:d6:07:6b:31:4e:87:d9:
                    db:54:30:68:63:30:00:8e:8a:cd:4a:c8:da:37:32:ee:
                    dd:97:8f:9e:6a:96:35:b8:62:4f:4b:d3:ab:4e:1d:ff:
                    84:6b:3b:38:8c:d0:c4:87:2e:07:1b:43:5d:b3:64:09:
                    39:d0:64:61:54:c6:ec:76:71:7a:da:07:83:2e:88:79:
                    09:7b:fa:98:a7:15:b0:ca:d8:a5:69:c0:58:49:59:29:
                    d8:85:6c:cf:87:32:b9:10:af:8d:42:59:e6:d0:6b:e7:
                    d1:48:cc:de:32:1c:ea:7d:58:c4:22:41:81:92:2d:50:
                    ef:e9:6c:0b:86:f5:b9:02:44:f4:b0:e6:c9:16:68:9a:
                    ab:27:7a:1a:d7:6a:d1:dd:ae:47:4b:43:67:79:3d:60:
                    a6:86:a0:ad:47:58:3d:2d:84:1c:84:93:c8:29:b0:08:
                    23:ad:fe:2f:b3:54:10:3d:0c:c8:c2:50:ce:73:10:0c:
                    74:ed:5a:78:e8:78:d3:98:cc:6d:c3:6e:24:ef:f0:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:79:f2:d0:04:de:9b:f1:8f:db:a9:75:b8:4a:1b:28:
        0e:00:cd:88:d7:a0:bd:6d:b1:8f:c8:39:af:c4:7c:75:
        14:ef:56:b8:e4:1a:72:45:41:20:67:8a:29:e7:c3:9a:
        16:34:8e:d0:53:63:cf:b8:08:4b:03:5a:88:5c:5f:50:
        18:6b:18:12:73:3c:aa:a3:32:63:85:1f:b8:9e:e6:b8:
        6c:87:fe:87:88:7b:a7:de:69:9e:88:3e:81:ef:7c:bb:
        7b:92:fb:e3:1a:85:61:e6:f3:fd:ed:a4:ac:3b:ec:f0:
        4a:da:e5:74:cd:3a:77:fc:ee:2a:f9:20:d8:e1:8d:fd:
        be:01:be:0c:ac:ac:49:a5:4a:cc:09:5f:6e:02:1b:89:
        6f:bb:e7:e4:73:fe:d2:d2:dc:b7:3e:5d:c5:d4:7a:8b:
        58:23:1c:40:b2:6a:76:48:62:34:06:ac:29:60:88:0b:
        da:9b:c5:f0:84:e6:8a:1d:dd:83:10:fd:96:b1:5c:72:
        6b:8a:c2:22:c6:fb:c8:8c:20:66:6b:84:e2:d5:b2:e0:
        5c:1f:27:56:39:98:92:41:e2:34:e5:6a:eb:94:11:fc:
        b6:89:a0:ed:78:3a:37:9c:da:cc:86:a8:cf:df:7a:3f:
        95:2d:e1:65:ad:6f:f3:1b:06:99:6e:12:10:84:9f:55
    Fingerprint (SHA-256):
        8C:2E:DF:41:95:38:74:B9:E9:18:51:21:C4:45:FB:4F:1A:42:AC:0E:94:4D:37:2E:6D:1B:DB:35:1D:77:00:1A
    Fingerprint (SHA1):
        F8:64:53:5E:7C:85:44:B7:B8:D9:FD:BB:E5:25:CC:CB:39:A3:28:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11009: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11010: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11011: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155117 (0x1dee476d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:52:09 2017
            Not After : Mon May 02 15:52:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:5f:42:f6:6f:e6:a6:1a:6f:57:83:39:13:bf:93:78:
                    a8:55:7a:74:f2:fb:05:47:33:ba:bb:59:99:b7:a2:4d:
                    1e:a2:cf:b8:16:1e:2a:cf:e9:84:59:31:77:81:92:4b:
                    5f:62:8e:36:d0:55:eb:90:3e:8e:f4:08:45:1b:42:4b:
                    79:7b:aa:6c:3b:46:50:32:b3:8a:5d:6a:b1:23:47:2b:
                    66:aa:32:eb:89:4e:4e:a4:d9:39:44:07:e1:2b:82:7c:
                    b7:c7:67:2f:72:f0:b6:54:94:25:23:f8:7d:a7:3b:5e:
                    ee:61:3a:a9:9d:60:de:23:d3:6a:0a:d1:6f:c2:d1:f2:
                    78:8d:e0:3c:d3:53:48:d4:22:67:77:93:de:3d:b5:90:
                    67:07:40:31:db:2c:4f:e5:06:de:40:31:0d:4b:79:06:
                    6b:94:0e:d6:73:24:1d:34:92:10:50:4f:90:2c:81:60:
                    3b:c7:1f:7b:ae:e1:90:df:8b:c7:31:99:c7:87:cd:b2:
                    ce:a9:02:29:4f:49:a8:52:fa:f4:c6:29:e0:e8:75:dd:
                    84:c4:be:ac:c8:cb:8b:eb:95:20:56:3f:09:b2:8b:d8:
                    13:b5:f6:bb:95:58:8c:5c:cc:e6:77:b6:43:d4:cd:ca:
                    87:dd:74:b9:fe:24:a2:75:c0:3f:19:cc:d3:49:2c:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:dc:0b:b5:f3:90:26:fb:39:8b:f6:89:7f:20:22:15:
        bf:41:0a:3b:c9:43:f0:f9:23:c8:53:ff:ec:21:24:54:
        6a:dc:78:ee:49:69:c6:6e:12:81:a5:c3:8d:32:9a:76:
        5c:27:fc:13:b1:ae:72:d3:1a:c8:18:65:e3:2d:73:e1:
        a7:23:b2:5d:aa:aa:97:f9:7c:5e:5d:bf:b2:b8:44:88:
        56:d2:cf:e0:c5:8d:c0:f7:9e:83:5c:98:ed:46:47:84:
        fb:14:7d:cd:fd:57:f4:e5:c2:91:2f:73:00:6f:f7:13:
        6c:e7:86:7b:46:5a:47:9f:fa:71:1d:cf:c3:16:ec:65:
        82:3a:11:b8:1c:ae:71:58:73:0e:88:e3:00:9b:18:83:
        85:10:71:c3:5f:dd:ab:3e:52:55:5a:88:c4:1e:c6:8a:
        5d:8b:82:cc:fd:82:c4:78:5b:05:84:e9:01:6e:f1:a1:
        2c:47:e8:f5:ab:54:ad:74:7f:e1:68:9b:85:02:65:50:
        b2:60:0b:6d:4c:18:c0:93:de:97:1e:12:a2:58:e0:4b:
        98:74:e0:9a:1d:24:22:cd:0f:86:de:25:a5:4d:e2:fa:
        8b:e7:51:9e:2f:6e:fe:f6:45:c0:0a:5d:e3:88:d1:b4:
        e2:82:46:f3:6a:74:b7:df:16:be:33:38:00:5c:2a:c0
    Fingerprint (SHA-256):
        51:BD:2B:25:68:64:BD:9D:A0:25:9A:65:4F:21:31:AF:96:23:49:03:7A:37:EE:B7:A5:78:6D:D4:A7:32:20:F7
    Fingerprint (SHA1):
        D3:0B:FC:CF:A4:18:87:80:E7:55:5D:22:FB:7A:06:B5:C4:2E:F8:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11012: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11013: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155120 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11014: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11015: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11016: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11017: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155121   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11018: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11019: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11020: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11021: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155122   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502155029.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11022: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11023: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11024: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11025: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155123   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11026: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11027: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11028: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155120 (0x1dee4770)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:12 2017
            Not After : Mon May 02 15:52:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:e3:b2:4d:0f:6b:a8:a6:11:6e:72:bb:6c:a1:a5:63:
                    97:25:a4:0c:7d:ee:65:48:a5:a3:bc:68:0c:c7:fe:eb:
                    b6:5e:94:d7:21:56:28:95:20:b2:07:b6:e0:2d:0d:ac:
                    04:35:0d:02:f3:74:ab:fd:36:49:83:47:c5:df:ba:68:
                    45:38:12:f1:50:72:04:b7:62:e0:3d:9e:68:53:90:e2:
                    bc:be:54:83:1b:70:d7:65:7a:96:51:da:31:e9:70:3b:
                    06:ef:46:8d:79:8a:74:c0:a0:c5:ac:7d:05:4f:69:29:
                    7c:0c:53:66:b4:b1:23:b8:15:04:32:e0:e3:4e:75:70:
                    0e:72:d6:25:b4:15:1b:21:10:e4:fe:7f:e0:f3:8d:bf:
                    1b:2e:71:90:11:73:49:a2:f4:24:22:5b:60:b5:d4:5c:
                    ba:9e:81:2c:f2:c1:d0:63:42:f7:7a:20:37:77:8a:e9:
                    2d:4c:c7:80:3d:46:43:ee:b6:b4:25:b2:de:e5:04:61:
                    b5:95:27:08:0b:a8:1d:ce:52:b7:15:8c:bc:f8:25:bd:
                    52:c8:aa:c0:5d:b4:46:35:4e:9b:92:d5:bf:da:68:d7:
                    34:d4:39:7e:54:74:73:ff:68:d6:d9:bd:6e:1d:69:6c:
                    ed:05:15:c6:cf:01:e8:6c:65:3b:09:ba:35:52:05:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:55:7e:81:a6:6c:3a:66:cb:3b:8f:b4:b4:3b:98:f4:
        d0:cc:13:97:33:67:eb:d3:71:fc:a2:7d:4b:1e:3f:95:
        e1:88:e7:e6:f9:d8:b1:3d:04:48:7a:33:82:1a:7a:8b:
        e7:68:47:ef:46:96:c2:ce:92:63:0b:cd:c3:01:ec:22:
        9a:be:b7:8b:51:dc:42:14:44:d4:89:64:cc:0b:f7:39:
        5b:bd:e2:8c:93:97:89:7d:e8:05:97:c6:49:84:16:db:
        69:35:39:d5:c1:5b:09:26:f1:b6:6c:af:66:e5:1d:d2:
        31:69:c1:60:f2:5e:88:cb:95:64:21:81:ac:dd:86:33:
        f3:a2:00:9c:e4:68:29:d5:60:e0:49:ac:53:07:7c:08:
        09:b2:9f:74:55:d1:2f:53:e1:6d:de:0a:af:05:ed:b6:
        cd:46:85:ba:44:f6:46:cb:e5:10:15:ce:2c:06:60:2d:
        f2:f3:d4:a1:ad:6b:6e:60:16:cb:03:95:8d:5f:f7:30:
        e5:c2:cb:c4:a4:14:d3:5e:c4:b5:92:33:9d:6a:d6:e7:
        de:23:80:21:dd:cb:4a:97:cc:11:a2:1b:e8:b6:55:f5:
        83:ab:e4:e4:29:16:9a:47:92:c9:ca:4c:4f:d5:f7:70:
        77:0f:42:5f:e1:71:4d:64:a2:1e:0c:f7:bd:f1:99:c8
    Fingerprint (SHA-256):
        3D:96:7D:AB:18:A0:EC:26:EB:65:29:43:DC:ED:35:00:F1:22:A3:33:6B:65:1E:BD:40:1E:E1:71:20:A7:07:4A
    Fingerprint (SHA1):
        DB:1E:40:74:43:52:4B:1C:15:83:C5:A9:90:FD:DB:05:8A:3F:12:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11029: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11030: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155124 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11031: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11032: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11033: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155125 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11034: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11035: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11036: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11037: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155126 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11038: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11039: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155127 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11040: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11041: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11042: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11043: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11044: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155128   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502155030.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11045: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11046: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11047: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11048: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155129   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11049: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11050: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11051: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155124 (0x1dee4774)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:15 2017
            Not After : Mon May 02 15:52:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:33:3e:d8:27:58:d4:97:57:77:2f:23:a9:2b:db:c0:
                    ce:1d:9d:74:f9:a4:a3:76:94:f6:78:ec:cb:09:1a:88:
                    50:ae:9b:07:36:84:6b:a5:e9:16:a5:98:45:e1:d9:0e:
                    e0:d1:8e:37:18:7f:10:f3:86:8d:ed:3f:bc:c3:c2:6d:
                    07:8b:1f:62:22:fb:ed:eb:db:b6:6e:b6:a7:d7:26:4c:
                    cb:cb:74:44:90:12:b8:0f:fc:53:3c:f6:4d:2d:d8:c0:
                    7a:a0:60:35:81:9e:ed:b2:d0:a5:dd:57:69:13:ad:24:
                    c6:83:d3:12:e2:84:a2:99:85:3a:3f:6c:14:59:da:97:
                    9f:73:42:b4:87:1a:e4:73:70:d1:b7:aa:54:8a:0d:91:
                    8d:da:ab:0b:3e:16:b6:3e:ed:74:86:1b:30:e5:28:61:
                    2b:ee:c4:d8:ae:69:e1:c0:68:f7:d4:06:2f:37:b5:7f:
                    5e:ab:72:4c:30:a5:7f:f3:84:ad:a2:5e:04:56:75:16:
                    67:cf:f8:14:b7:7c:d5:86:5b:a7:6c:fb:b8:f0:bf:19:
                    64:18:4c:c7:a8:15:80:9f:1f:ea:f2:f8:ad:de:25:d8:
                    c6:fc:fb:4c:b9:46:b2:90:c9:4a:c9:4e:42:2b:c6:66:
                    e1:b4:76:de:dd:8e:44:ce:0a:76:dc:81:f6:bd:30:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:3f:43:ed:d7:f6:af:ab:7f:b4:4f:f5:92:80:bc:02:
        b6:5d:19:38:34:fa:ce:59:7e:64:55:8e:c8:3c:e5:9e:
        82:1e:b3:7d:f1:b8:7f:de:f9:60:78:6c:0d:89:df:5a:
        4c:f9:d8:85:34:eb:e1:f4:32:3d:4f:b9:1c:3e:38:1d:
        1e:96:1a:25:73:15:68:02:1b:ed:f6:1c:c7:fc:25:16:
        d4:46:17:52:70:68:76:56:70:0f:98:db:84:af:e9:c3:
        0d:a9:01:3f:83:b5:a9:12:3e:2d:a5:63:2f:ca:8f:71:
        0b:b2:01:be:00:62:00:a4:47:49:5d:2b:b7:98:02:3f:
        3e:a6:2b:d6:20:0c:27:18:aa:09:e0:3f:f2:20:37:cf:
        fb:e4:56:56:36:7f:fa:3b:ac:3b:82:ea:c8:c2:5e:b7:
        c2:cb:ad:dd:ca:5d:19:07:42:05:74:f4:7c:6f:f2:86:
        a9:37:89:3c:22:a7:59:54:76:8e:60:74:17:aa:ef:f0:
        4d:20:87:31:22:be:e8:48:67:1f:86:8f:30:bb:a3:fb:
        07:ce:4e:b0:48:10:b6:d4:11:5f:dd:f0:b0:e5:e0:00:
        92:8a:ba:08:b0:37:ef:74:22:ee:22:df:89:f4:b7:1d:
        ad:35:d3:e0:28:a4:ee:0d:b0:f3:f3:45:5c:51:8e:df
    Fingerprint (SHA-256):
        2A:CB:10:7C:BC:57:7F:B6:F1:BD:6E:4C:E1:E5:50:E5:34:73:93:1F:A8:7D:AA:B2:12:A7:4C:38:92:EB:C9:17
    Fingerprint (SHA1):
        73:D3:77:40:CE:AF:76:23:F6:72:4F:C3:3B:5F:A3:49:17:37:F2:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11052: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155125 (0x1dee4775)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:15 2017
            Not After : Mon May 02 15:52:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:f2:f7:2d:b3:cf:8b:cc:c8:a1:48:15:70:60:3c:c2:
                    c5:8e:c1:50:e8:91:dd:a6:6b:ab:3b:61:ac:75:85:1a:
                    29:43:cc:38:35:4e:e0:12:55:85:11:4a:df:60:27:96:
                    69:04:da:91:42:0e:b0:05:0f:39:2b:08:93:5b:82:07:
                    c4:a6:33:c7:44:71:7a:33:ba:4b:69:4c:8e:ce:e7:16:
                    de:79:af:f6:d2:9b:8a:e6:8b:5d:71:ed:a1:89:67:24:
                    d7:f7:d4:ad:6d:65:b9:25:ff:3b:2e:18:14:89:c0:ef:
                    00:95:fb:e2:89:4d:e2:03:10:b8:61:5e:0b:6c:aa:b1:
                    cd:df:9a:01:e3:26:13:2b:b9:05:e9:a3:36:74:9a:44:
                    21:d7:94:e1:7b:ca:05:f9:0d:24:4e:fb:77:c3:3d:97:
                    69:c5:d7:20:1b:6e:11:83:5c:c2:c9:80:df:04:28:d2:
                    bd:fa:17:11:b7:1d:86:d8:9e:06:bf:2c:f4:b1:02:9b:
                    81:b1:25:2b:a1:df:c7:78:b1:af:f6:25:b5:c0:1b:f0:
                    ec:87:46:d5:bc:0a:d5:cc:17:5e:0c:84:c9:4c:cd:1d:
                    e5:41:01:5a:c7:f5:76:50:ea:b0:a0:d1:c3:68:9c:88:
                    94:f4:f8:67:c4:7c:fe:bd:73:9e:0c:ba:2a:71:22:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:f0:25:d3:b8:27:ca:9b:19:60:6c:ef:03:17:71:28:
        d0:0a:3b:0d:9a:9a:d8:0a:f5:db:82:84:94:29:e3:1c:
        96:8d:84:4c:4f:0b:4c:40:e0:08:5d:75:2e:57:b2:b7:
        3a:6f:5c:93:28:d5:fb:d3:bc:16:94:ef:eb:c9:d7:6a:
        27:c4:0d:2d:56:9c:3d:8b:cb:34:e1:db:14:0f:b3:cb:
        21:3f:e4:c6:75:38:da:4a:d2:c5:db:33:1b:56:d1:3c:
        1b:28:45:85:e7:b0:d3:d8:f1:9f:00:28:b8:22:81:93:
        0d:c0:3d:a7:f1:0a:93:d3:9e:c5:03:e7:89:f2:e5:83:
        4d:81:3e:ba:76:de:81:dd:70:ea:c9:6f:3b:ae:e8:03:
        52:bd:9b:11:31:57:d7:f8:3b:ac:02:6d:6a:3f:ed:e9:
        8f:70:14:0b:b5:d6:d5:24:7f:24:ad:fb:49:c4:95:05:
        b3:32:ac:41:86:1f:ce:cb:fe:2c:e2:b9:f6:c0:05:60:
        78:7a:f2:f2:d0:1b:93:cc:c4:d2:dc:83:1a:42:f0:8b:
        b2:a8:ea:f2:98:b5:53:9c:75:1d:69:0d:e1:98:29:9d:
        a6:34:e8:c9:31:49:55:53:c3:88:1b:5d:11:d7:14:e0:
        e2:20:02:53:ea:32:13:a0:8c:96:7a:55:86:d2:74:83
    Fingerprint (SHA-256):
        0B:BB:46:74:03:18:09:79:C2:25:EF:DA:59:1B:C5:69:D4:E1:15:90:3D:BF:A4:33:6B:CD:8A:AE:0A:06:F2:BC
    Fingerprint (SHA1):
        42:12:A0:C2:F1:A9:1E:FB:30:61:59:FD:37:29:A2:62:01:2C:76:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11053: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155125 (0x1dee4775)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:15 2017
            Not After : Mon May 02 15:52:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:f2:f7:2d:b3:cf:8b:cc:c8:a1:48:15:70:60:3c:c2:
                    c5:8e:c1:50:e8:91:dd:a6:6b:ab:3b:61:ac:75:85:1a:
                    29:43:cc:38:35:4e:e0:12:55:85:11:4a:df:60:27:96:
                    69:04:da:91:42:0e:b0:05:0f:39:2b:08:93:5b:82:07:
                    c4:a6:33:c7:44:71:7a:33:ba:4b:69:4c:8e:ce:e7:16:
                    de:79:af:f6:d2:9b:8a:e6:8b:5d:71:ed:a1:89:67:24:
                    d7:f7:d4:ad:6d:65:b9:25:ff:3b:2e:18:14:89:c0:ef:
                    00:95:fb:e2:89:4d:e2:03:10:b8:61:5e:0b:6c:aa:b1:
                    cd:df:9a:01:e3:26:13:2b:b9:05:e9:a3:36:74:9a:44:
                    21:d7:94:e1:7b:ca:05:f9:0d:24:4e:fb:77:c3:3d:97:
                    69:c5:d7:20:1b:6e:11:83:5c:c2:c9:80:df:04:28:d2:
                    bd:fa:17:11:b7:1d:86:d8:9e:06:bf:2c:f4:b1:02:9b:
                    81:b1:25:2b:a1:df:c7:78:b1:af:f6:25:b5:c0:1b:f0:
                    ec:87:46:d5:bc:0a:d5:cc:17:5e:0c:84:c9:4c:cd:1d:
                    e5:41:01:5a:c7:f5:76:50:ea:b0:a0:d1:c3:68:9c:88:
                    94:f4:f8:67:c4:7c:fe:bd:73:9e:0c:ba:2a:71:22:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:f0:25:d3:b8:27:ca:9b:19:60:6c:ef:03:17:71:28:
        d0:0a:3b:0d:9a:9a:d8:0a:f5:db:82:84:94:29:e3:1c:
        96:8d:84:4c:4f:0b:4c:40:e0:08:5d:75:2e:57:b2:b7:
        3a:6f:5c:93:28:d5:fb:d3:bc:16:94:ef:eb:c9:d7:6a:
        27:c4:0d:2d:56:9c:3d:8b:cb:34:e1:db:14:0f:b3:cb:
        21:3f:e4:c6:75:38:da:4a:d2:c5:db:33:1b:56:d1:3c:
        1b:28:45:85:e7:b0:d3:d8:f1:9f:00:28:b8:22:81:93:
        0d:c0:3d:a7:f1:0a:93:d3:9e:c5:03:e7:89:f2:e5:83:
        4d:81:3e:ba:76:de:81:dd:70:ea:c9:6f:3b:ae:e8:03:
        52:bd:9b:11:31:57:d7:f8:3b:ac:02:6d:6a:3f:ed:e9:
        8f:70:14:0b:b5:d6:d5:24:7f:24:ad:fb:49:c4:95:05:
        b3:32:ac:41:86:1f:ce:cb:fe:2c:e2:b9:f6:c0:05:60:
        78:7a:f2:f2:d0:1b:93:cc:c4:d2:dc:83:1a:42:f0:8b:
        b2:a8:ea:f2:98:b5:53:9c:75:1d:69:0d:e1:98:29:9d:
        a6:34:e8:c9:31:49:55:53:c3:88:1b:5d:11:d7:14:e0:
        e2:20:02:53:ea:32:13:a0:8c:96:7a:55:86:d2:74:83
    Fingerprint (SHA-256):
        0B:BB:46:74:03:18:09:79:C2:25:EF:DA:59:1B:C5:69:D4:E1:15:90:3D:BF:A4:33:6B:CD:8A:AE:0A:06:F2:BC
    Fingerprint (SHA1):
        42:12:A0:C2:F1:A9:1E:FB:30:61:59:FD:37:29:A2:62:01:2C:76:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11054: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11055: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155130 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11056: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11057: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11058: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155131 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11059: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11060: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11061: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11062: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155132 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11063: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11064: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155133 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11065: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11066: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11067: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11068: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11069: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155134   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502155031.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11070: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11071: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11072: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11073: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155135   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11074: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11075: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11076: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11077: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155136   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502155032.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11078: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11079: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11080: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11081: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155137   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11082: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11083: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11084: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155130 (0x1dee477a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:19 2017
            Not After : Mon May 02 15:52:19 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:84:5f:ca:34:26:06:c0:69:61:eb:62:c3:12:7d:08:
                    aa:9f:60:ec:8e:e6:91:c3:f6:b5:50:bd:9b:2b:6b:47:
                    f3:c8:e5:3d:81:12:7a:e0:2c:f8:a1:1e:61:a6:64:34:
                    ca:3f:7b:d3:21:b9:d0:ac:b2:8c:e8:e2:90:d3:a0:17:
                    96:7b:6d:67:db:50:36:16:c9:bc:6e:c6:b2:29:66:1f:
                    20:f0:0a:8d:5d:98:a7:d8:cf:c4:48:a4:5a:7b:c8:27:
                    00:1d:6b:5c:b3:2a:2f:52:c6:8c:f8:32:84:79:00:b3:
                    ec:99:b9:2f:f9:8d:62:1d:1e:c4:3d:d6:b7:ec:2a:7c:
                    bd:a8:bd:52:1c:92:d7:98:19:4d:4b:ef:f8:9a:d6:2a:
                    d0:6b:79:fa:04:c8:17:4a:9d:2d:5e:84:7d:cf:75:ce:
                    cf:a4:99:d9:17:df:55:d0:4d:4d:b4:fd:78:07:0c:5e:
                    c4:2e:74:c8:85:fc:00:f9:c7:5c:7f:90:db:cf:ad:0c:
                    42:1b:ea:b3:85:d5:f4:00:d2:02:a8:f8:fb:45:3e:4f:
                    1a:61:a7:45:fd:6f:e0:a5:c4:3c:07:cd:21:c4:ac:d4:
                    b7:ed:07:0f:99:3d:12:9b:f0:8d:dd:24:54:a3:00:fd:
                    a6:48:af:58:b0:56:7b:80:78:03:ce:15:ec:07:04:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:8a:73:73:4b:1f:18:14:31:81:83:00:ec:fb:c2:4e:
        94:8f:eb:68:b8:05:85:93:0a:15:52:7c:8d:8b:8d:d5:
        48:a6:67:75:2c:ad:d5:16:da:a8:6c:d6:49:9b:f2:e7:
        63:f8:7c:05:b9:4f:9b:fd:7a:5d:f5:78:03:cf:c6:1b:
        38:90:8b:98:f4:45:56:87:6b:95:f2:06:77:79:3a:12:
        da:63:c4:83:f1:50:c4:18:a1:83:f2:cc:4f:a8:ef:1d:
        d0:52:e8:cf:f4:1b:5a:85:2d:c7:43:8a:d1:d8:dc:03:
        23:09:55:8c:fd:88:9c:b6:98:73:b6:d8:5d:22:84:16:
        38:02:f6:9f:30:e3:c9:f3:93:5d:63:75:16:ec:95:11:
        79:90:29:1a:d8:1b:fd:87:69:56:40:e8:9f:73:9c:b3:
        ff:7f:2b:7d:e0:72:fc:57:8d:88:58:6f:f3:13:f2:91:
        a4:27:c1:14:fe:79:94:05:97:03:d4:dd:10:4c:0b:70:
        a3:bc:ac:a3:31:86:cb:86:64:c2:48:7e:ed:91:af:3f:
        93:67:9d:f7:35:b2:35:51:2e:29:39:c5:f3:dc:71:93:
        36:e4:f6:41:98:80:48:18:fd:ea:69:8e:4d:93:9b:ca:
        fc:43:79:e5:3c:3e:14:f7:c8:47:23:a5:6f:b6:a1:65
    Fingerprint (SHA-256):
        C1:3C:6B:C3:FF:38:DF:8B:C4:7A:53:7E:9B:9B:88:D3:59:80:40:43:3E:68:52:4A:28:1D:66:42:DE:EB:C2:1A
    Fingerprint (SHA1):
        4E:5F:CC:D1:8C:28:8C:41:8C:21:79:38:B4:5D:08:41:AC:D1:2B:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11085: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155131 (0x1dee477b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:20 2017
            Not After : Mon May 02 15:52:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:61:ad:79:26:60:60:d7:a8:ad:c1:47:7f:93:82:1f:
                    33:0c:18:16:c7:c4:ad:49:60:04:2f:61:65:e7:2b:7a:
                    84:18:bb:51:e5:6d:32:fd:79:a3:a9:28:f2:ed:76:c7:
                    cd:6a:d6:36:e3:ae:21:5e:5c:41:53:08:d7:ed:00:a3:
                    52:93:ca:48:7f:86:e2:59:0a:96:4d:f2:10:dd:7a:5e:
                    4d:e4:22:90:21:55:88:7b:86:e6:e6:83:5f:4b:16:bb:
                    dc:3f:3d:b5:46:85:87:ae:b7:0e:2c:81:ea:f0:7d:83:
                    64:83:97:34:c3:98:79:75:b5:fc:85:83:b6:e7:cf:b6:
                    15:ed:65:26:84:65:d8:b7:19:af:47:99:e3:8a:30:09:
                    e6:d1:00:ff:e3:d8:fc:df:7f:9e:66:ad:bb:37:bd:1c:
                    74:1d:9d:ca:6a:71:b4:b8:72:30:f6:2c:16:22:e5:92:
                    18:5f:a5:f4:c7:7c:01:7e:06:57:4b:86:90:37:88:9f:
                    50:bf:9c:3c:77:37:b9:80:ad:2d:07:e2:28:67:7f:ed:
                    c5:23:fb:b5:79:73:db:99:7e:56:76:47:a5:30:59:37:
                    9d:95:7b:d0:f1:bf:1f:33:9f:82:2d:0f:58:77:76:a1:
                    85:33:a5:37:55:ae:a8:a2:98:82:07:66:d6:fa:47:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:c3:73:d8:37:cf:14:b2:6b:aa:5c:f3:d0:ae:ee:39:
        ca:97:49:62:97:cf:86:1c:07:f0:c3:b3:47:e1:c2:2e:
        c6:9b:ce:92:0c:ba:11:33:52:45:60:9d:3d:a6:74:49:
        ed:fc:5a:ce:7f:28:f7:09:d7:09:37:e3:cc:5a:22:d6:
        2b:8f:6d:bb:b4:5b:1f:aa:3b:ff:9e:57:38:9e:36:5e:
        09:4b:28:56:e0:77:3f:b1:88:28:95:6d:b1:e7:58:1f:
        a3:57:6c:e2:47:38:82:c9:1b:07:72:06:e4:e1:98:79:
        a2:ae:44:7c:c8:36:46:cd:9a:06:87:9c:59:31:5f:45:
        96:8c:40:36:a0:d9:af:9c:de:85:36:26:70:41:13:fc:
        90:95:84:19:f5:3d:c8:db:d9:f8:0d:f7:ef:07:3b:12:
        27:cb:43:00:cd:4f:74:a6:34:ad:2d:c0:34:1f:88:01:
        63:90:00:2c:d0:35:02:56:82:d0:4e:23:3e:e9:90:c7:
        8f:0a:3e:da:e2:37:5a:7d:5d:29:99:99:59:15:30:e6:
        6f:9e:0b:0d:3e:71:82:05:5d:cd:a1:38:c1:62:39:e1:
        35:0d:3e:ab:6c:17:47:ea:b5:35:25:16:1f:00:f3:68:
        c4:a5:c1:7a:df:4d:82:1c:28:12:74:29:c9:24:f1:f5
    Fingerprint (SHA-256):
        81:80:3F:7D:54:34:CF:4C:6D:5E:BA:9E:95:F7:89:20:BC:9E:09:EC:18:86:D5:1A:21:DF:21:54:4B:50:56:E4
    Fingerprint (SHA1):
        90:13:37:2E:8A:49:F8:13:8B:70:7F:DF:35:FF:7C:0B:4B:A2:39:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11086: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155131 (0x1dee477b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:20 2017
            Not After : Mon May 02 15:52:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:61:ad:79:26:60:60:d7:a8:ad:c1:47:7f:93:82:1f:
                    33:0c:18:16:c7:c4:ad:49:60:04:2f:61:65:e7:2b:7a:
                    84:18:bb:51:e5:6d:32:fd:79:a3:a9:28:f2:ed:76:c7:
                    cd:6a:d6:36:e3:ae:21:5e:5c:41:53:08:d7:ed:00:a3:
                    52:93:ca:48:7f:86:e2:59:0a:96:4d:f2:10:dd:7a:5e:
                    4d:e4:22:90:21:55:88:7b:86:e6:e6:83:5f:4b:16:bb:
                    dc:3f:3d:b5:46:85:87:ae:b7:0e:2c:81:ea:f0:7d:83:
                    64:83:97:34:c3:98:79:75:b5:fc:85:83:b6:e7:cf:b6:
                    15:ed:65:26:84:65:d8:b7:19:af:47:99:e3:8a:30:09:
                    e6:d1:00:ff:e3:d8:fc:df:7f:9e:66:ad:bb:37:bd:1c:
                    74:1d:9d:ca:6a:71:b4:b8:72:30:f6:2c:16:22:e5:92:
                    18:5f:a5:f4:c7:7c:01:7e:06:57:4b:86:90:37:88:9f:
                    50:bf:9c:3c:77:37:b9:80:ad:2d:07:e2:28:67:7f:ed:
                    c5:23:fb:b5:79:73:db:99:7e:56:76:47:a5:30:59:37:
                    9d:95:7b:d0:f1:bf:1f:33:9f:82:2d:0f:58:77:76:a1:
                    85:33:a5:37:55:ae:a8:a2:98:82:07:66:d6:fa:47:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:c3:73:d8:37:cf:14:b2:6b:aa:5c:f3:d0:ae:ee:39:
        ca:97:49:62:97:cf:86:1c:07:f0:c3:b3:47:e1:c2:2e:
        c6:9b:ce:92:0c:ba:11:33:52:45:60:9d:3d:a6:74:49:
        ed:fc:5a:ce:7f:28:f7:09:d7:09:37:e3:cc:5a:22:d6:
        2b:8f:6d:bb:b4:5b:1f:aa:3b:ff:9e:57:38:9e:36:5e:
        09:4b:28:56:e0:77:3f:b1:88:28:95:6d:b1:e7:58:1f:
        a3:57:6c:e2:47:38:82:c9:1b:07:72:06:e4:e1:98:79:
        a2:ae:44:7c:c8:36:46:cd:9a:06:87:9c:59:31:5f:45:
        96:8c:40:36:a0:d9:af:9c:de:85:36:26:70:41:13:fc:
        90:95:84:19:f5:3d:c8:db:d9:f8:0d:f7:ef:07:3b:12:
        27:cb:43:00:cd:4f:74:a6:34:ad:2d:c0:34:1f:88:01:
        63:90:00:2c:d0:35:02:56:82:d0:4e:23:3e:e9:90:c7:
        8f:0a:3e:da:e2:37:5a:7d:5d:29:99:99:59:15:30:e6:
        6f:9e:0b:0d:3e:71:82:05:5d:cd:a1:38:c1:62:39:e1:
        35:0d:3e:ab:6c:17:47:ea:b5:35:25:16:1f:00:f3:68:
        c4:a5:c1:7a:df:4d:82:1c:28:12:74:29:c9:24:f1:f5
    Fingerprint (SHA-256):
        81:80:3F:7D:54:34:CF:4C:6D:5E:BA:9E:95:F7:89:20:BC:9E:09:EC:18:86:D5:1A:21:DF:21:54:4B:50:56:E4
    Fingerprint (SHA1):
        90:13:37:2E:8A:49:F8:13:8B:70:7F:DF:35:FF:7C:0B:4B:A2:39:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11087: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11088: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155130 (0x1dee477a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:19 2017
            Not After : Mon May 02 15:52:19 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:84:5f:ca:34:26:06:c0:69:61:eb:62:c3:12:7d:08:
                    aa:9f:60:ec:8e:e6:91:c3:f6:b5:50:bd:9b:2b:6b:47:
                    f3:c8:e5:3d:81:12:7a:e0:2c:f8:a1:1e:61:a6:64:34:
                    ca:3f:7b:d3:21:b9:d0:ac:b2:8c:e8:e2:90:d3:a0:17:
                    96:7b:6d:67:db:50:36:16:c9:bc:6e:c6:b2:29:66:1f:
                    20:f0:0a:8d:5d:98:a7:d8:cf:c4:48:a4:5a:7b:c8:27:
                    00:1d:6b:5c:b3:2a:2f:52:c6:8c:f8:32:84:79:00:b3:
                    ec:99:b9:2f:f9:8d:62:1d:1e:c4:3d:d6:b7:ec:2a:7c:
                    bd:a8:bd:52:1c:92:d7:98:19:4d:4b:ef:f8:9a:d6:2a:
                    d0:6b:79:fa:04:c8:17:4a:9d:2d:5e:84:7d:cf:75:ce:
                    cf:a4:99:d9:17:df:55:d0:4d:4d:b4:fd:78:07:0c:5e:
                    c4:2e:74:c8:85:fc:00:f9:c7:5c:7f:90:db:cf:ad:0c:
                    42:1b:ea:b3:85:d5:f4:00:d2:02:a8:f8:fb:45:3e:4f:
                    1a:61:a7:45:fd:6f:e0:a5:c4:3c:07:cd:21:c4:ac:d4:
                    b7:ed:07:0f:99:3d:12:9b:f0:8d:dd:24:54:a3:00:fd:
                    a6:48:af:58:b0:56:7b:80:78:03:ce:15:ec:07:04:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:8a:73:73:4b:1f:18:14:31:81:83:00:ec:fb:c2:4e:
        94:8f:eb:68:b8:05:85:93:0a:15:52:7c:8d:8b:8d:d5:
        48:a6:67:75:2c:ad:d5:16:da:a8:6c:d6:49:9b:f2:e7:
        63:f8:7c:05:b9:4f:9b:fd:7a:5d:f5:78:03:cf:c6:1b:
        38:90:8b:98:f4:45:56:87:6b:95:f2:06:77:79:3a:12:
        da:63:c4:83:f1:50:c4:18:a1:83:f2:cc:4f:a8:ef:1d:
        d0:52:e8:cf:f4:1b:5a:85:2d:c7:43:8a:d1:d8:dc:03:
        23:09:55:8c:fd:88:9c:b6:98:73:b6:d8:5d:22:84:16:
        38:02:f6:9f:30:e3:c9:f3:93:5d:63:75:16:ec:95:11:
        79:90:29:1a:d8:1b:fd:87:69:56:40:e8:9f:73:9c:b3:
        ff:7f:2b:7d:e0:72:fc:57:8d:88:58:6f:f3:13:f2:91:
        a4:27:c1:14:fe:79:94:05:97:03:d4:dd:10:4c:0b:70:
        a3:bc:ac:a3:31:86:cb:86:64:c2:48:7e:ed:91:af:3f:
        93:67:9d:f7:35:b2:35:51:2e:29:39:c5:f3:dc:71:93:
        36:e4:f6:41:98:80:48:18:fd:ea:69:8e:4d:93:9b:ca:
        fc:43:79:e5:3c:3e:14:f7:c8:47:23:a5:6f:b6:a1:65
    Fingerprint (SHA-256):
        C1:3C:6B:C3:FF:38:DF:8B:C4:7A:53:7E:9B:9B:88:D3:59:80:40:43:3E:68:52:4A:28:1D:66:42:DE:EB:C2:1A
    Fingerprint (SHA1):
        4E:5F:CC:D1:8C:28:8C:41:8C:21:79:38:B4:5D:08:41:AC:D1:2B:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11089: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155131 (0x1dee477b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:20 2017
            Not After : Mon May 02 15:52:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:61:ad:79:26:60:60:d7:a8:ad:c1:47:7f:93:82:1f:
                    33:0c:18:16:c7:c4:ad:49:60:04:2f:61:65:e7:2b:7a:
                    84:18:bb:51:e5:6d:32:fd:79:a3:a9:28:f2:ed:76:c7:
                    cd:6a:d6:36:e3:ae:21:5e:5c:41:53:08:d7:ed:00:a3:
                    52:93:ca:48:7f:86:e2:59:0a:96:4d:f2:10:dd:7a:5e:
                    4d:e4:22:90:21:55:88:7b:86:e6:e6:83:5f:4b:16:bb:
                    dc:3f:3d:b5:46:85:87:ae:b7:0e:2c:81:ea:f0:7d:83:
                    64:83:97:34:c3:98:79:75:b5:fc:85:83:b6:e7:cf:b6:
                    15:ed:65:26:84:65:d8:b7:19:af:47:99:e3:8a:30:09:
                    e6:d1:00:ff:e3:d8:fc:df:7f:9e:66:ad:bb:37:bd:1c:
                    74:1d:9d:ca:6a:71:b4:b8:72:30:f6:2c:16:22:e5:92:
                    18:5f:a5:f4:c7:7c:01:7e:06:57:4b:86:90:37:88:9f:
                    50:bf:9c:3c:77:37:b9:80:ad:2d:07:e2:28:67:7f:ed:
                    c5:23:fb:b5:79:73:db:99:7e:56:76:47:a5:30:59:37:
                    9d:95:7b:d0:f1:bf:1f:33:9f:82:2d:0f:58:77:76:a1:
                    85:33:a5:37:55:ae:a8:a2:98:82:07:66:d6:fa:47:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:c3:73:d8:37:cf:14:b2:6b:aa:5c:f3:d0:ae:ee:39:
        ca:97:49:62:97:cf:86:1c:07:f0:c3:b3:47:e1:c2:2e:
        c6:9b:ce:92:0c:ba:11:33:52:45:60:9d:3d:a6:74:49:
        ed:fc:5a:ce:7f:28:f7:09:d7:09:37:e3:cc:5a:22:d6:
        2b:8f:6d:bb:b4:5b:1f:aa:3b:ff:9e:57:38:9e:36:5e:
        09:4b:28:56:e0:77:3f:b1:88:28:95:6d:b1:e7:58:1f:
        a3:57:6c:e2:47:38:82:c9:1b:07:72:06:e4:e1:98:79:
        a2:ae:44:7c:c8:36:46:cd:9a:06:87:9c:59:31:5f:45:
        96:8c:40:36:a0:d9:af:9c:de:85:36:26:70:41:13:fc:
        90:95:84:19:f5:3d:c8:db:d9:f8:0d:f7:ef:07:3b:12:
        27:cb:43:00:cd:4f:74:a6:34:ad:2d:c0:34:1f:88:01:
        63:90:00:2c:d0:35:02:56:82:d0:4e:23:3e:e9:90:c7:
        8f:0a:3e:da:e2:37:5a:7d:5d:29:99:99:59:15:30:e6:
        6f:9e:0b:0d:3e:71:82:05:5d:cd:a1:38:c1:62:39:e1:
        35:0d:3e:ab:6c:17:47:ea:b5:35:25:16:1f:00:f3:68:
        c4:a5:c1:7a:df:4d:82:1c:28:12:74:29:c9:24:f1:f5
    Fingerprint (SHA-256):
        81:80:3F:7D:54:34:CF:4C:6D:5E:BA:9E:95:F7:89:20:BC:9E:09:EC:18:86:D5:1A:21:DF:21:54:4B:50:56:E4
    Fingerprint (SHA1):
        90:13:37:2E:8A:49:F8:13:8B:70:7F:DF:35:FF:7C:0B:4B:A2:39:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11090: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155131 (0x1dee477b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:20 2017
            Not After : Mon May 02 15:52:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:61:ad:79:26:60:60:d7:a8:ad:c1:47:7f:93:82:1f:
                    33:0c:18:16:c7:c4:ad:49:60:04:2f:61:65:e7:2b:7a:
                    84:18:bb:51:e5:6d:32:fd:79:a3:a9:28:f2:ed:76:c7:
                    cd:6a:d6:36:e3:ae:21:5e:5c:41:53:08:d7:ed:00:a3:
                    52:93:ca:48:7f:86:e2:59:0a:96:4d:f2:10:dd:7a:5e:
                    4d:e4:22:90:21:55:88:7b:86:e6:e6:83:5f:4b:16:bb:
                    dc:3f:3d:b5:46:85:87:ae:b7:0e:2c:81:ea:f0:7d:83:
                    64:83:97:34:c3:98:79:75:b5:fc:85:83:b6:e7:cf:b6:
                    15:ed:65:26:84:65:d8:b7:19:af:47:99:e3:8a:30:09:
                    e6:d1:00:ff:e3:d8:fc:df:7f:9e:66:ad:bb:37:bd:1c:
                    74:1d:9d:ca:6a:71:b4:b8:72:30:f6:2c:16:22:e5:92:
                    18:5f:a5:f4:c7:7c:01:7e:06:57:4b:86:90:37:88:9f:
                    50:bf:9c:3c:77:37:b9:80:ad:2d:07:e2:28:67:7f:ed:
                    c5:23:fb:b5:79:73:db:99:7e:56:76:47:a5:30:59:37:
                    9d:95:7b:d0:f1:bf:1f:33:9f:82:2d:0f:58:77:76:a1:
                    85:33:a5:37:55:ae:a8:a2:98:82:07:66:d6:fa:47:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:c3:73:d8:37:cf:14:b2:6b:aa:5c:f3:d0:ae:ee:39:
        ca:97:49:62:97:cf:86:1c:07:f0:c3:b3:47:e1:c2:2e:
        c6:9b:ce:92:0c:ba:11:33:52:45:60:9d:3d:a6:74:49:
        ed:fc:5a:ce:7f:28:f7:09:d7:09:37:e3:cc:5a:22:d6:
        2b:8f:6d:bb:b4:5b:1f:aa:3b:ff:9e:57:38:9e:36:5e:
        09:4b:28:56:e0:77:3f:b1:88:28:95:6d:b1:e7:58:1f:
        a3:57:6c:e2:47:38:82:c9:1b:07:72:06:e4:e1:98:79:
        a2:ae:44:7c:c8:36:46:cd:9a:06:87:9c:59:31:5f:45:
        96:8c:40:36:a0:d9:af:9c:de:85:36:26:70:41:13:fc:
        90:95:84:19:f5:3d:c8:db:d9:f8:0d:f7:ef:07:3b:12:
        27:cb:43:00:cd:4f:74:a6:34:ad:2d:c0:34:1f:88:01:
        63:90:00:2c:d0:35:02:56:82:d0:4e:23:3e:e9:90:c7:
        8f:0a:3e:da:e2:37:5a:7d:5d:29:99:99:59:15:30:e6:
        6f:9e:0b:0d:3e:71:82:05:5d:cd:a1:38:c1:62:39:e1:
        35:0d:3e:ab:6c:17:47:ea:b5:35:25:16:1f:00:f3:68:
        c4:a5:c1:7a:df:4d:82:1c:28:12:74:29:c9:24:f1:f5
    Fingerprint (SHA-256):
        81:80:3F:7D:54:34:CF:4C:6D:5E:BA:9E:95:F7:89:20:BC:9E:09:EC:18:86:D5:1A:21:DF:21:54:4B:50:56:E4
    Fingerprint (SHA1):
        90:13:37:2E:8A:49:F8:13:8B:70:7F:DF:35:FF:7C:0B:4B:A2:39:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11091: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11092: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155138 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11093: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11094: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11095: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155139 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11096: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11097: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11098: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11099: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502155140   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11100: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11101: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11102: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11103: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502155141   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11104: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11105: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11106: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11107: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502155142 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11108: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11109: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502155143 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11110: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11111: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11112: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11113: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11114: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155144   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11115: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11116: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11117: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11118: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155145   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11119: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11120: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11121: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11122: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155146   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11123: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11124: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11125: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11126: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155147   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11127: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11128: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11129: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155138 (0x1dee4782)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:25 2017
            Not After : Mon May 02 15:52:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:85:0d:3c:04:75:26:d9:c2:2f:0c:7a:8f:da:4f:52:
                    ca:c9:53:e3:ad:a7:5e:fa:06:6c:b7:bb:e8:2c:f9:4e:
                    f1:d7:0c:ae:aa:e8:29:5e:44:10:c5:77:d0:7e:54:67:
                    7e:34:54:02:7f:12:dc:4c:35:54:3f:1a:da:d7:d8:3e:
                    3e:5b:27:32:14:65:08:b1:23:27:c6:2f:99:08:57:c0:
                    ac:d2:9f:6c:46:03:3f:54:31:e9:d2:cd:84:4d:8f:5a:
                    e5:7f:c6:5e:38:0b:d4:42:18:5b:4b:86:57:77:13:a8:
                    53:f9:db:6e:86:eb:60:34:ba:a9:4d:57:1e:1b:19:4f:
                    72:29:c9:27:42:22:f3:6e:f7:60:4b:81:f2:d7:12:99:
                    58:ee:96:ab:6d:c0:31:26:db:64:b4:c3:47:78:e5:35:
                    3e:ce:96:0b:d4:ca:f5:5f:37:9e:4d:6d:70:08:5d:97:
                    8e:59:5b:1b:0c:85:22:ee:f3:f4:39:54:1f:e1:1e:88:
                    2c:8c:9e:c3:26:26:32:c6:a2:52:13:6e:3b:e1:9d:41:
                    2f:8b:fa:4f:fe:ca:39:0e:d9:75:26:0f:ee:58:89:fb:
                    a6:5b:33:93:ff:c0:72:41:5e:d2:f6:fb:d1:9d:52:fd:
                    41:9d:c6:09:9f:1c:0f:5b:9f:78:e5:9c:47:a3:d4:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:69:37:a4:b6:e5:b7:fe:8c:b8:3f:4d:6f:81:67:9d:
        32:6d:a8:85:1a:21:1e:fb:a7:9c:67:04:a4:ca:24:9d:
        dc:e4:3f:18:51:84:ef:87:26:e2:d3:cd:41:55:df:8f:
        2e:06:79:ef:40:34:67:57:67:bc:b3:2f:ca:cd:ba:d8:
        85:d2:7f:d7:44:6d:01:44:ed:78:b5:df:c0:9b:72:e6:
        88:8f:52:3f:15:5d:f7:06:3c:e0:1f:63:af:c0:92:ec:
        6b:3d:a4:62:41:0e:13:e4:87:f8:9f:51:76:58:f0:4b:
        19:d7:d7:0b:95:7d:21:9f:fd:33:e8:1c:be:58:25:49:
        5a:38:48:58:a0:57:8f:ea:1c:34:a3:b3:cd:90:5a:94:
        4e:e7:26:37:9b:fc:99:e4:ea:96:26:19:a3:b1:0b:74:
        97:ad:15:fc:14:a8:68:a9:a1:bf:aa:2b:8c:a5:f6:b0:
        ea:b0:0b:ef:b9:82:67:fe:21:1d:d0:03:29:1e:ae:74:
        49:73:7f:54:b9:2e:43:3c:e4:46:48:dd:42:07:09:7a:
        f9:0f:69:03:d5:4a:22:5a:28:5d:d2:87:57:de:4f:bc:
        21:5d:d1:ad:fe:35:53:17:bd:dc:cc:96:00:16:d9:4f:
        d7:d3:67:ea:27:e5:e9:f2:fd:3f:c7:a3:8f:d0:79:0a
    Fingerprint (SHA-256):
        89:34:19:B9:BE:0F:49:E1:41:6E:DC:04:3B:BD:C1:F8:AA:97:4A:32:12:D5:BC:DC:10:3E:5C:C4:05:95:AB:F0
    Fingerprint (SHA1):
        00:6B:F6:5C:67:83:21:E9:94:71:73:7F:1A:27:3E:BD:01:E2:1B:58
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11130: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11131: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11132: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11133: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11134: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11135: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11136: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11137: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11138: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155139 (0x1dee4783)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:25 2017
            Not After : Mon May 02 15:52:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:aa:3e:e2:5a:01:71:f5:8d:c5:40:79:ad:8b:5a:c6:
                    ce:90:2e:35:df:ea:2e:36:3f:5d:56:56:20:9a:bd:60:
                    de:34:44:ca:dd:1a:19:78:e8:86:47:9f:d2:43:e1:db:
                    d3:ab:d8:b7:df:9c:fb:a2:17:68:af:29:07:01:f3:c5:
                    b8:ce:98:43:1c:8b:d2:b3:2e:5b:1d:e2:30:cc:df:87:
                    dd:b0:5c:69:f0:ce:96:42:24:6a:2b:65:0f:07:77:a3:
                    b8:2c:4e:72:1d:59:29:01:73:c0:d4:2f:d4:98:e7:48:
                    46:f0:f9:ad:7a:25:84:15:93:d5:bb:a2:e6:62:c4:98:
                    c1:29:a5:8b:d4:dc:e5:06:ae:7a:ca:0c:ff:0c:b0:79:
                    fb:79:7e:ed:75:71:71:d8:45:bf:d5:f9:8d:b0:60:c0:
                    bd:2f:26:7a:3d:81:a3:84:0e:05:53:12:90:26:6c:5d:
                    53:a5:42:5d:fb:23:0d:2d:a6:56:79:39:f6:5a:23:bb:
                    40:63:83:74:d6:3e:b3:4d:70:47:11:eb:76:66:f6:89:
                    cf:16:ff:f7:de:bd:98:b2:f5:07:86:ca:4e:3a:d0:4d:
                    3e:e9:4b:55:20:f0:82:77:ce:cc:17:38:dd:c8:c8:1f:
                    1a:d4:e9:de:25:37:f2:c8:19:68:4c:09:7a:59:e7:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:f7:30:20:08:8f:c0:47:17:f9:52:e5:8c:b2:10:1f:
        e3:1b:35:83:77:92:2c:3e:83:96:22:e2:30:30:bd:d0:
        64:9d:13:90:f9:d8:f8:75:08:dd:c8:70:ba:4c:e1:3e:
        15:c8:01:f4:93:69:a4:11:34:82:d8:47:e4:c4:1e:17:
        8b:be:e4:61:29:c9:47:f0:07:45:43:4d:8c:9c:a0:80:
        d1:b3:e2:cb:84:fa:c2:f9:10:65:24:5c:a6:ce:31:60:
        37:34:6d:b8:ad:16:7b:5d:96:af:c7:ca:7f:04:11:59:
        8f:8e:99:02:95:9c:7b:47:d5:4f:7e:9d:2f:ff:0b:39:
        89:ee:b1:00:ad:82:30:d3:83:bf:ae:67:75:1a:20:b3:
        92:60:66:76:2f:63:8b:a9:3c:b3:44:0a:92:97:03:d4:
        d5:4d:f5:7b:12:a1:79:8b:61:07:ec:d2:1b:59:75:04:
        2d:c2:a0:50:da:b5:2b:ca:e8:cf:46:1d:1a:e5:6e:ff:
        48:80:59:17:9a:b4:82:b8:16:6c:8c:5c:9e:89:c7:7d:
        5c:f8:e8:20:b0:c9:11:cc:39:a9:93:6d:61:0c:e9:23:
        4d:b5:4a:4c:9c:4b:23:08:a9:36:ae:1c:7b:4d:dc:8e:
        0e:21:f0:73:45:56:f8:04:9a:66:7b:91:e7:ae:13:a6
    Fingerprint (SHA-256):
        D0:FB:2C:3B:EB:30:DE:60:CB:8A:15:70:8C:C1:F2:C3:39:51:BB:7A:03:7D:1B:8A:7C:18:71:F3:2F:24:49:A6
    Fingerprint (SHA1):
        1E:A8:00:B2:EF:86:86:FB:1B:B7:0E:BD:F3:77:10:09:FE:73:45:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11139: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11140: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11141: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11142: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11143: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11144: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11145: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11146: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11147: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11148: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11149: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11150: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11151: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11152: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11153: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11154: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11155: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11156: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11157: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155148 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11158: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11159: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11160: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11161: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155149   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11162: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11163: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11164: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11165: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155150   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11166: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11167: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11168: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11169: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502155151   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11170: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11171: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11172: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11173: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155152   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11174: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11175: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11176: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11177: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502155153   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11178: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11179: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11180: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11181: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502155154   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11182: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11183: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11184: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11185: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502155155   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11186: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11187: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11188: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11189: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502155156   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11190: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11191: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11192: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155148 (0x1dee478c)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:33 2017
            Not After : Mon May 02 15:52:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    2f:f8:c8:78:bb:64:47:4b:5a:82:26:21:90:27:f2:94:
                    66:f7:f9:20:c2:18:e0:60:88:00:69:68:47:c1:43:87:
                    86:ba:20:4b:c0:b9:ab:56:fa:c1:6b:66:ca:6b:25:d6:
                    cb:d9:04:bf:1f:88:12:02:b0:a3:b3:4f:71:3d:2f:d0:
                    2a:7c:49:ad:ab:6d:0f:19:a9:aa:72:d6:8b:4e:ec:99:
                    c3:0c:3f:56:d6:ed:9d:b3:a1:c8:e2:61:65:2c:aa:89:
                    8e:df:7d:bc:6f:d5:55:47:0c:c5:dc:7f:54:f9:be:cf:
                    0f:cb:f6:6d:0b:47:40:89:7d:52:d4:9a:28:5f:85:ca:
                    a2:f5:4c:57:8d:f6:4d:25:17:c3:1c:cd:ed:92:e2:3d:
                    3c:01:55:c1:8b:0c:79:bf:c1:6e:cc:c9:ba:1e:ee:8d:
                    b7:0b:0b:b1:6f:08:a2:a5:69:e1:13:a2:9c:80:6b:cd:
                    fb:31:4f:27:ca:40:3b:12:1c:5e:ed:03:cd:f3:a5:a9:
                    05:ed:4f:29:be:bc:14:10:34:da:4c:63:f4:83:8a:97:
                    6a:8e:2b:0a:49:25:e3:bc:2d:bc:18:ae:68:02:de:74:
                    07:4b:36:7b:44:cf:ab:99:4a:bb:a4:67:8f:06:70:e9:
                    99:6e:05:56:ce:51:b6:08:3a:d3:f6:15:bb:74:00:63
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4c:da:d3:25:94:91:e6:99:c5:1b:55:6d:
        12:6f:c4:34:83:57:8b:26:54:26:ef:6a:86:be:5c:56:
        02:1c:11:63:69:38:2e:c1:5b:73:36:33:4c:d4:73:35:
        32:54:74:57:ee:3b:c4:68:d9:73:4c:ac:48:90
    Fingerprint (SHA-256):
        42:7D:40:37:E8:67:C4:E5:AF:B9:D2:87:94:BA:D4:45:0B:38:6F:80:BD:19:8D:AC:37:20:E7:92:BF:91:72:27
    Fingerprint (SHA1):
        FA:F5:3E:7B:47:0C:1C:8A:A2:EE:25:B5:C2:94:D8:5F:EC:3A:74:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11193: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155148 (0x1dee478c)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:33 2017
            Not After : Mon May 02 15:52:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    2f:f8:c8:78:bb:64:47:4b:5a:82:26:21:90:27:f2:94:
                    66:f7:f9:20:c2:18:e0:60:88:00:69:68:47:c1:43:87:
                    86:ba:20:4b:c0:b9:ab:56:fa:c1:6b:66:ca:6b:25:d6:
                    cb:d9:04:bf:1f:88:12:02:b0:a3:b3:4f:71:3d:2f:d0:
                    2a:7c:49:ad:ab:6d:0f:19:a9:aa:72:d6:8b:4e:ec:99:
                    c3:0c:3f:56:d6:ed:9d:b3:a1:c8:e2:61:65:2c:aa:89:
                    8e:df:7d:bc:6f:d5:55:47:0c:c5:dc:7f:54:f9:be:cf:
                    0f:cb:f6:6d:0b:47:40:89:7d:52:d4:9a:28:5f:85:ca:
                    a2:f5:4c:57:8d:f6:4d:25:17:c3:1c:cd:ed:92:e2:3d:
                    3c:01:55:c1:8b:0c:79:bf:c1:6e:cc:c9:ba:1e:ee:8d:
                    b7:0b:0b:b1:6f:08:a2:a5:69:e1:13:a2:9c:80:6b:cd:
                    fb:31:4f:27:ca:40:3b:12:1c:5e:ed:03:cd:f3:a5:a9:
                    05:ed:4f:29:be:bc:14:10:34:da:4c:63:f4:83:8a:97:
                    6a:8e:2b:0a:49:25:e3:bc:2d:bc:18:ae:68:02:de:74:
                    07:4b:36:7b:44:cf:ab:99:4a:bb:a4:67:8f:06:70:e9:
                    99:6e:05:56:ce:51:b6:08:3a:d3:f6:15:bb:74:00:63
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4c:da:d3:25:94:91:e6:99:c5:1b:55:6d:
        12:6f:c4:34:83:57:8b:26:54:26:ef:6a:86:be:5c:56:
        02:1c:11:63:69:38:2e:c1:5b:73:36:33:4c:d4:73:35:
        32:54:74:57:ee:3b:c4:68:d9:73:4c:ac:48:90
    Fingerprint (SHA-256):
        42:7D:40:37:E8:67:C4:E5:AF:B9:D2:87:94:BA:D4:45:0B:38:6F:80:BD:19:8D:AC:37:20:E7:92:BF:91:72:27
    Fingerprint (SHA1):
        FA:F5:3E:7B:47:0C:1C:8A:A2:EE:25:B5:C2:94:D8:5F:EC:3A:74:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11194: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155148 (0x1dee478c)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:33 2017
            Not After : Mon May 02 15:52:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    2f:f8:c8:78:bb:64:47:4b:5a:82:26:21:90:27:f2:94:
                    66:f7:f9:20:c2:18:e0:60:88:00:69:68:47:c1:43:87:
                    86:ba:20:4b:c0:b9:ab:56:fa:c1:6b:66:ca:6b:25:d6:
                    cb:d9:04:bf:1f:88:12:02:b0:a3:b3:4f:71:3d:2f:d0:
                    2a:7c:49:ad:ab:6d:0f:19:a9:aa:72:d6:8b:4e:ec:99:
                    c3:0c:3f:56:d6:ed:9d:b3:a1:c8:e2:61:65:2c:aa:89:
                    8e:df:7d:bc:6f:d5:55:47:0c:c5:dc:7f:54:f9:be:cf:
                    0f:cb:f6:6d:0b:47:40:89:7d:52:d4:9a:28:5f:85:ca:
                    a2:f5:4c:57:8d:f6:4d:25:17:c3:1c:cd:ed:92:e2:3d:
                    3c:01:55:c1:8b:0c:79:bf:c1:6e:cc:c9:ba:1e:ee:8d:
                    b7:0b:0b:b1:6f:08:a2:a5:69:e1:13:a2:9c:80:6b:cd:
                    fb:31:4f:27:ca:40:3b:12:1c:5e:ed:03:cd:f3:a5:a9:
                    05:ed:4f:29:be:bc:14:10:34:da:4c:63:f4:83:8a:97:
                    6a:8e:2b:0a:49:25:e3:bc:2d:bc:18:ae:68:02:de:74:
                    07:4b:36:7b:44:cf:ab:99:4a:bb:a4:67:8f:06:70:e9:
                    99:6e:05:56:ce:51:b6:08:3a:d3:f6:15:bb:74:00:63
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4c:da:d3:25:94:91:e6:99:c5:1b:55:6d:
        12:6f:c4:34:83:57:8b:26:54:26:ef:6a:86:be:5c:56:
        02:1c:11:63:69:38:2e:c1:5b:73:36:33:4c:d4:73:35:
        32:54:74:57:ee:3b:c4:68:d9:73:4c:ac:48:90
    Fingerprint (SHA-256):
        42:7D:40:37:E8:67:C4:E5:AF:B9:D2:87:94:BA:D4:45:0B:38:6F:80:BD:19:8D:AC:37:20:E7:92:BF:91:72:27
    Fingerprint (SHA1):
        FA:F5:3E:7B:47:0C:1C:8A:A2:EE:25:B5:C2:94:D8:5F:EC:3A:74:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11195: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155148 (0x1dee478c)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:33 2017
            Not After : Mon May 02 15:52:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    2f:f8:c8:78:bb:64:47:4b:5a:82:26:21:90:27:f2:94:
                    66:f7:f9:20:c2:18:e0:60:88:00:69:68:47:c1:43:87:
                    86:ba:20:4b:c0:b9:ab:56:fa:c1:6b:66:ca:6b:25:d6:
                    cb:d9:04:bf:1f:88:12:02:b0:a3:b3:4f:71:3d:2f:d0:
                    2a:7c:49:ad:ab:6d:0f:19:a9:aa:72:d6:8b:4e:ec:99:
                    c3:0c:3f:56:d6:ed:9d:b3:a1:c8:e2:61:65:2c:aa:89:
                    8e:df:7d:bc:6f:d5:55:47:0c:c5:dc:7f:54:f9:be:cf:
                    0f:cb:f6:6d:0b:47:40:89:7d:52:d4:9a:28:5f:85:ca:
                    a2:f5:4c:57:8d:f6:4d:25:17:c3:1c:cd:ed:92:e2:3d:
                    3c:01:55:c1:8b:0c:79:bf:c1:6e:cc:c9:ba:1e:ee:8d:
                    b7:0b:0b:b1:6f:08:a2:a5:69:e1:13:a2:9c:80:6b:cd:
                    fb:31:4f:27:ca:40:3b:12:1c:5e:ed:03:cd:f3:a5:a9:
                    05:ed:4f:29:be:bc:14:10:34:da:4c:63:f4:83:8a:97:
                    6a:8e:2b:0a:49:25:e3:bc:2d:bc:18:ae:68:02:de:74:
                    07:4b:36:7b:44:cf:ab:99:4a:bb:a4:67:8f:06:70:e9:
                    99:6e:05:56:ce:51:b6:08:3a:d3:f6:15:bb:74:00:63
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4c:da:d3:25:94:91:e6:99:c5:1b:55:6d:
        12:6f:c4:34:83:57:8b:26:54:26:ef:6a:86:be:5c:56:
        02:1c:11:63:69:38:2e:c1:5b:73:36:33:4c:d4:73:35:
        32:54:74:57:ee:3b:c4:68:d9:73:4c:ac:48:90
    Fingerprint (SHA-256):
        42:7D:40:37:E8:67:C4:E5:AF:B9:D2:87:94:BA:D4:45:0B:38:6F:80:BD:19:8D:AC:37:20:E7:92:BF:91:72:27
    Fingerprint (SHA1):
        FA:F5:3E:7B:47:0C:1C:8A:A2:EE:25:B5:C2:94:D8:5F:EC:3A:74:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #11196: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11197: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11198: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11199: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11200: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11201: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11202: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11203: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11204: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11205: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11206: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11207: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11208: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11209: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11210: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11211: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #11212: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11213: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11214: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11215: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11216: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11217: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11218: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11219: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11220: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11221: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11222: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11223: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155245Z
nextupdate=20180502155245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:52:45 2017
    Next Update: Wed May 02 15:52:45 2018
    CRL Extensions:
chains.sh: #11224: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155245Z
nextupdate=20180502155245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:52:45 2017
    Next Update: Wed May 02 15:52:45 2018
    CRL Extensions:
chains.sh: #11225: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155245Z
nextupdate=20180502155245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:52:45 2017
    Next Update: Wed May 02 15:52:45 2018
    CRL Extensions:
chains.sh: #11226: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155245Z
nextupdate=20180502155245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:52:45 2017
    Next Update: Wed May 02 15:52:45 2018
    CRL Extensions:
chains.sh: #11227: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155246Z
addcert 14 20170502155246Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:52:46 2017
    Next Update: Wed May 02 15:52:45 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:52:46 2017
    CRL Extensions:
chains.sh: #11228: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155247Z
addcert 15 20170502155247Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:52:47 2017
    Next Update: Wed May 02 15:52:45 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:52:47 2017
    CRL Extensions:
chains.sh: #11229: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11230: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11231: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11232: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #11233: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #11234: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #11235: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #11236: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #11237: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #11238: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:40 2017
            Not After : Mon May 02 15:52:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:8b:70:d1:3d:ad:0a:db:d8:29:6f:ff:25:8b:3d:9d:
                    f9:0c:7c:0a:7c:4b:cf:d2:97:ef:4f:56:a1:ba:f3:99:
                    0e:19:6f:85:55:8f:d3:d0:95:47:71:93:2c:af:ca:a6:
                    b1:92:e2:0e:47:b0:7b:d5:96:d3:10:dd:cd:45:f7:65:
                    2d:1d:06:3a:7d:42:47:1c:7b:02:c1:ab:03:cd:80:d9:
                    e5:d2:cc:fc:8a:ae:4f:1a:f2:f0:eb:97:1f:a5:e2:a8:
                    68:77:f9:9d:e2:cf:6e:18:c3:3e:d3:ee:e3:77:f7:e8:
                    98:43:df:03:c8:ed:11:e0:fd:9d:8f:5c:42:31:29:1b:
                    fb:53:58:5d:84:b3:4c:e1:56:5e:ab:ec:ce:c0:ba:8e:
                    71:01:5e:cd:30:fa:3c:4b:7a:6a:99:61:a4:cc:99:60:
                    6d:a5:fe:be:c2:86:9b:0d:fc:5f:6f:c1:7d:be:7c:48:
                    1d:c3:ac:68:d0:e9:05:a0:c7:40:da:d1:b8:ac:f4:4d:
                    1f:b0:00:74:03:46:c5:5c:48:1e:ad:f9:26:3e:10:f1:
                    ca:3f:01:38:ef:1d:d5:ec:0a:3d:b4:f0:35:5b:76:59:
                    19:4a:5c:84:2c:ff:ea:4c:9a:59:cc:43:83:cc:d1:6b:
                    5f:0f:7b:10:fd:a3:a1:43:ea:c1:a5:73:63:0f:a5:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:9f:f0:ad:8c:55:a1:50:2f:56:0d:df:7a:1e:f6:bd:
        ff:90:60:38:d7:8c:83:7d:e8:1f:5d:2a:8a:56:ca:01:
        f9:2c:e9:28:87:95:75:a1:49:3b:94:54:f5:c8:46:fd:
        eb:30:b7:73:93:8d:8e:d0:7c:5f:c6:20:20:a4:cf:3e:
        9d:a9:00:3a:47:f7:a5:63:9e:04:58:e4:83:dd:d3:af:
        81:c2:ae:4c:b4:1f:58:86:25:48:bb:5f:6e:46:57:ef:
        8c:aa:5d:cf:67:99:76:79:e7:3b:41:01:2e:bf:f6:44:
        43:09:50:4f:a8:2c:e0:a8:04:c7:7b:15:87:d7:29:be:
        1f:ab:16:89:67:a5:f2:b8:ec:4b:39:9b:bd:c5:03:1e:
        02:20:e0:46:1a:71:74:d9:b5:c4:30:3f:f1:b3:1d:1c:
        63:e6:4e:4f:d5:be:c3:9f:4d:86:f7:48:6c:ef:1b:a5:
        2f:bc:91:89:8c:d9:fc:b5:0d:d3:05:dd:e5:8f:e3:c1:
        66:a0:87:b8:63:9e:9b:bb:67:02:5c:cf:f4:6c:ec:a2:
        c0:c5:6c:f3:31:7b:4f:72:eb:1e:cc:fc:65:11:5c:d9:
        9c:a7:74:11:d0:30:62:e5:4c:e3:40:68:e0:f4:e0:dd:
        c8:b4:00:ea:0b:d9:27:29:05:e2:7a:ad:a0:bf:13:3b
    Fingerprint (SHA-256):
        4C:E4:F5:F2:BB:F7:23:94:95:EF:45:EB:5D:86:EB:CA:33:AB:E2:DF:EB:63:1B:F8:C0:5D:CF:0D:7C:A1:90:A6
    Fingerprint (SHA1):
        F9:EA:BB:1F:14:06:4A:9C:40:4A:9C:33:C2:F2:58:13:F4:80:01:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11239: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11240: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:40 2017
            Not After : Mon May 02 15:52:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:8b:70:d1:3d:ad:0a:db:d8:29:6f:ff:25:8b:3d:9d:
                    f9:0c:7c:0a:7c:4b:cf:d2:97:ef:4f:56:a1:ba:f3:99:
                    0e:19:6f:85:55:8f:d3:d0:95:47:71:93:2c:af:ca:a6:
                    b1:92:e2:0e:47:b0:7b:d5:96:d3:10:dd:cd:45:f7:65:
                    2d:1d:06:3a:7d:42:47:1c:7b:02:c1:ab:03:cd:80:d9:
                    e5:d2:cc:fc:8a:ae:4f:1a:f2:f0:eb:97:1f:a5:e2:a8:
                    68:77:f9:9d:e2:cf:6e:18:c3:3e:d3:ee:e3:77:f7:e8:
                    98:43:df:03:c8:ed:11:e0:fd:9d:8f:5c:42:31:29:1b:
                    fb:53:58:5d:84:b3:4c:e1:56:5e:ab:ec:ce:c0:ba:8e:
                    71:01:5e:cd:30:fa:3c:4b:7a:6a:99:61:a4:cc:99:60:
                    6d:a5:fe:be:c2:86:9b:0d:fc:5f:6f:c1:7d:be:7c:48:
                    1d:c3:ac:68:d0:e9:05:a0:c7:40:da:d1:b8:ac:f4:4d:
                    1f:b0:00:74:03:46:c5:5c:48:1e:ad:f9:26:3e:10:f1:
                    ca:3f:01:38:ef:1d:d5:ec:0a:3d:b4:f0:35:5b:76:59:
                    19:4a:5c:84:2c:ff:ea:4c:9a:59:cc:43:83:cc:d1:6b:
                    5f:0f:7b:10:fd:a3:a1:43:ea:c1:a5:73:63:0f:a5:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:9f:f0:ad:8c:55:a1:50:2f:56:0d:df:7a:1e:f6:bd:
        ff:90:60:38:d7:8c:83:7d:e8:1f:5d:2a:8a:56:ca:01:
        f9:2c:e9:28:87:95:75:a1:49:3b:94:54:f5:c8:46:fd:
        eb:30:b7:73:93:8d:8e:d0:7c:5f:c6:20:20:a4:cf:3e:
        9d:a9:00:3a:47:f7:a5:63:9e:04:58:e4:83:dd:d3:af:
        81:c2:ae:4c:b4:1f:58:86:25:48:bb:5f:6e:46:57:ef:
        8c:aa:5d:cf:67:99:76:79:e7:3b:41:01:2e:bf:f6:44:
        43:09:50:4f:a8:2c:e0:a8:04:c7:7b:15:87:d7:29:be:
        1f:ab:16:89:67:a5:f2:b8:ec:4b:39:9b:bd:c5:03:1e:
        02:20:e0:46:1a:71:74:d9:b5:c4:30:3f:f1:b3:1d:1c:
        63:e6:4e:4f:d5:be:c3:9f:4d:86:f7:48:6c:ef:1b:a5:
        2f:bc:91:89:8c:d9:fc:b5:0d:d3:05:dd:e5:8f:e3:c1:
        66:a0:87:b8:63:9e:9b:bb:67:02:5c:cf:f4:6c:ec:a2:
        c0:c5:6c:f3:31:7b:4f:72:eb:1e:cc:fc:65:11:5c:d9:
        9c:a7:74:11:d0:30:62:e5:4c:e3:40:68:e0:f4:e0:dd:
        c8:b4:00:ea:0b:d9:27:29:05:e2:7a:ad:a0:bf:13:3b
    Fingerprint (SHA-256):
        4C:E4:F5:F2:BB:F7:23:94:95:EF:45:EB:5D:86:EB:CA:33:AB:E2:DF:EB:63:1B:F8:C0:5D:CF:0D:7C:A1:90:A6
    Fingerprint (SHA1):
        F9:EA:BB:1F:14:06:4A:9C:40:4A:9C:33:C2:F2:58:13:F4:80:01:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11241: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11242: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11243: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155157 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11244: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11245: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11246: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11247: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502155158   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11248: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11249: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11250: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155048.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11251: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155033.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11252: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11253: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11254: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155048.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11255: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502155159   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11256: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11257: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11258: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155048.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11259: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155034.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11260: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11261: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11262: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11263: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502155160   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11264: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11265: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11266: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155048.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11267: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155035.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11268: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11269: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11270: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155048.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11271: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155036.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11272: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11273: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155255Z
nextupdate=20180502155255Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:52:55 2017
    Next Update: Wed May 02 15:52:55 2018
    CRL Extensions:
chains.sh: #11274: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155256Z
nextupdate=20180502155256Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:52:56 2017
    Next Update: Wed May 02 15:52:56 2018
    CRL Extensions:
chains.sh: #11275: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155256Z
nextupdate=20180502155256Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:52:56 2017
    Next Update: Wed May 02 15:52:56 2018
    CRL Extensions:
chains.sh: #11276: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155256Z
nextupdate=20180502155256Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:52:56 2017
    Next Update: Wed May 02 15:52:56 2018
    CRL Extensions:
chains.sh: #11277: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155257Z
addcert 20 20170502155257Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:52:57 2017
    Next Update: Wed May 02 15:52:56 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:52:57 2017
    CRL Extensions:
chains.sh: #11278: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155258Z
addcert 40 20170502155258Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:52:58 2017
    Next Update: Wed May 02 15:52:56 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:52:57 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:52:58 2017
    CRL Extensions:
chains.sh: #11279: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11280: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11281: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11282: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155157 (0x1dee4795)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:d1:b2:2e:32:b2:4e:d5:51:8f:9e:79:07:30:a6:9f:
                    4d:bd:d5:22:e7:97:74:f9:d8:e0:ee:c1:22:fd:d8:85:
                    f1:bd:f3:bd:99:f5:c6:37:0a:39:4e:f7:28:1b:4e:7f:
                    d8:e7:0f:40:75:bc:c0:11:84:ec:18:b0:a4:91:2b:f1:
                    a3:96:0c:03:94:37:d8:7d:a4:77:22:db:a0:1f:2b:24:
                    2b:61:ce:60:38:3e:5d:f5:25:98:06:59:df:d9:81:15:
                    b9:dd:3f:bb:58:19:af:99:7f:f4:e0:46:9c:fd:95:da:
                    92:51:9b:1a:b3:c4:5d:ac:5d:b8:78:da:82:a8:b8:50:
                    c3:60:91:95:e4:23:32:3e:00:bb:1e:c1:29:37:ce:cf:
                    c3:fc:7c:d4:ac:2e:55:35:db:7a:85:38:b6:63:2f:e0:
                    ad:f6:3e:6e:9d:eb:52:d9:4b:4f:e4:91:de:9b:1f:41:
                    87:bb:33:89:1b:ea:fb:7a:e8:27:c2:86:aa:80:43:7d:
                    44:d9:0e:4c:b8:17:a0:b3:2d:a5:50:19:6f:0a:7c:fa:
                    18:a0:8c:28:65:97:ea:ee:01:3c:b3:1e:b6:0e:f5:3d:
                    7a:aa:8b:c3:ed:92:5f:a7:fe:f1:4a:43:51:6c:ec:aa:
                    8a:19:66:8d:22:71:99:5d:9b:c2:ef:a8:d8:b6:48:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:3b:09:b0:cf:6c:6c:23:29:37:ca:88:92:7c:9a:9e:
        fb:0d:82:b1:4e:d4:52:cb:99:d1:9e:0c:78:e5:c2:45:
        3a:13:68:49:84:94:6a:89:63:93:bc:ec:5c:01:24:d8:
        22:85:3e:88:d3:69:80:63:ce:a1:e7:1e:ae:9c:80:b4:
        2b:d3:ea:9e:59:31:b2:b7:1a:a8:53:75:c5:53:86:32:
        fb:fe:aa:33:6d:a4:9a:e4:e7:91:18:44:57:f8:59:6f:
        af:98:91:72:48:49:e9:de:95:ce:29:56:0c:31:2f:90:
        fb:e1:5d:7a:4d:2f:ac:47:7a:54:1f:6e:fb:c9:25:1c:
        a0:3a:1e:18:cd:55:5a:ec:33:80:31:a0:3a:ef:9c:f2:
        1c:c2:a5:83:da:02:15:6a:b1:a6:66:11:1f:84:39:06:
        17:8b:99:fe:a1:d3:f2:56:a2:d5:a3:cb:25:80:a3:54:
        b3:ae:9d:83:60:78:6e:e2:d0:6e:02:d9:4d:03:f3:ba:
        5a:22:5b:49:34:ee:f3:be:f4:3c:1f:1f:7c:3e:11:46:
        5d:db:03:4b:fa:87:ac:41:8b:8a:0f:e9:bd:a3:9c:c2:
        ab:95:03:e1:3b:50:6e:97:06:85:ce:bf:17:65:6c:20:
        ef:1a:d3:70:50:b6:f3:46:aa:c7:06:35:3b:22:43:b3
    Fingerprint (SHA-256):
        B0:A4:F0:86:8A:FB:A8:7D:56:C9:F9:09:08:C7:BA:0F:C7:B5:B8:70:A8:C7:66:72:28:83:B4:6A:1E:54:BB:C4
    Fingerprint (SHA1):
        57:57:ED:F5:E8:EB:84:40:A7:BA:0F:35:25:94:B5:E9:48:FC:9E:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11283: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11284: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155157 (0x1dee4795)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:d1:b2:2e:32:b2:4e:d5:51:8f:9e:79:07:30:a6:9f:
                    4d:bd:d5:22:e7:97:74:f9:d8:e0:ee:c1:22:fd:d8:85:
                    f1:bd:f3:bd:99:f5:c6:37:0a:39:4e:f7:28:1b:4e:7f:
                    d8:e7:0f:40:75:bc:c0:11:84:ec:18:b0:a4:91:2b:f1:
                    a3:96:0c:03:94:37:d8:7d:a4:77:22:db:a0:1f:2b:24:
                    2b:61:ce:60:38:3e:5d:f5:25:98:06:59:df:d9:81:15:
                    b9:dd:3f:bb:58:19:af:99:7f:f4:e0:46:9c:fd:95:da:
                    92:51:9b:1a:b3:c4:5d:ac:5d:b8:78:da:82:a8:b8:50:
                    c3:60:91:95:e4:23:32:3e:00:bb:1e:c1:29:37:ce:cf:
                    c3:fc:7c:d4:ac:2e:55:35:db:7a:85:38:b6:63:2f:e0:
                    ad:f6:3e:6e:9d:eb:52:d9:4b:4f:e4:91:de:9b:1f:41:
                    87:bb:33:89:1b:ea:fb:7a:e8:27:c2:86:aa:80:43:7d:
                    44:d9:0e:4c:b8:17:a0:b3:2d:a5:50:19:6f:0a:7c:fa:
                    18:a0:8c:28:65:97:ea:ee:01:3c:b3:1e:b6:0e:f5:3d:
                    7a:aa:8b:c3:ed:92:5f:a7:fe:f1:4a:43:51:6c:ec:aa:
                    8a:19:66:8d:22:71:99:5d:9b:c2:ef:a8:d8:b6:48:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:3b:09:b0:cf:6c:6c:23:29:37:ca:88:92:7c:9a:9e:
        fb:0d:82:b1:4e:d4:52:cb:99:d1:9e:0c:78:e5:c2:45:
        3a:13:68:49:84:94:6a:89:63:93:bc:ec:5c:01:24:d8:
        22:85:3e:88:d3:69:80:63:ce:a1:e7:1e:ae:9c:80:b4:
        2b:d3:ea:9e:59:31:b2:b7:1a:a8:53:75:c5:53:86:32:
        fb:fe:aa:33:6d:a4:9a:e4:e7:91:18:44:57:f8:59:6f:
        af:98:91:72:48:49:e9:de:95:ce:29:56:0c:31:2f:90:
        fb:e1:5d:7a:4d:2f:ac:47:7a:54:1f:6e:fb:c9:25:1c:
        a0:3a:1e:18:cd:55:5a:ec:33:80:31:a0:3a:ef:9c:f2:
        1c:c2:a5:83:da:02:15:6a:b1:a6:66:11:1f:84:39:06:
        17:8b:99:fe:a1:d3:f2:56:a2:d5:a3:cb:25:80:a3:54:
        b3:ae:9d:83:60:78:6e:e2:d0:6e:02:d9:4d:03:f3:ba:
        5a:22:5b:49:34:ee:f3:be:f4:3c:1f:1f:7c:3e:11:46:
        5d:db:03:4b:fa:87:ac:41:8b:8a:0f:e9:bd:a3:9c:c2:
        ab:95:03:e1:3b:50:6e:97:06:85:ce:bf:17:65:6c:20:
        ef:1a:d3:70:50:b6:f3:46:aa:c7:06:35:3b:22:43:b3
    Fingerprint (SHA-256):
        B0:A4:F0:86:8A:FB:A8:7D:56:C9:F9:09:08:C7:BA:0F:C7:B5:B8:70:A8:C7:66:72:28:83:B4:6A:1E:54:BB:C4
    Fingerprint (SHA1):
        57:57:ED:F5:E8:EB:84:40:A7:BA:0F:35:25:94:B5:E9:48:FC:9E:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11285: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11286: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11287: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155161 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11288: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11289: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11290: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11291: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155162   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11292: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11293: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11294: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11295: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155163   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11296: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11297: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11298: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11299: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502155164   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11300: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11301: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #11302: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155165 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11303: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #11304: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #11305: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11306: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502155166   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11307: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11308: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11309: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11310: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502155167   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11311: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11312: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #11313: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #11314: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #11315: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155161 (0x1dee4799)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:59 2017
            Not After : Mon May 02 15:52:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c8:d9:06:6c:8e:88:57:c5:88:a7:b5:e9:d2:97:a6:
                    19:8d:aa:c3:e2:ed:3d:00:72:62:f8:e5:4f:8f:42:7e:
                    41:eb:f8:e8:a9:ee:4e:9f:23:8f:18:08:19:8a:8e:ef:
                    36:83:34:0e:7a:dc:6b:15:82:c0:24:d8:1c:c7:aa:b1:
                    7a:46:2c:1b:9d:84:54:bc:95:bc:e2:8d:25:68:14:10:
                    33:5d:a6:4d:cf:75:d8:d6:ea:db:12:b5:4b:ad:00:f2:
                    45:b4:f8:51:80:c7:33:36:67:0e:26:1b:69:d6:3a:94:
                    97:52:2f:b9:61:6f:4a:73:53:9e:62:1e:52:05:fd:d1:
                    cf:dc:b9:18:52:33:86:98:8b:6c:71:25:a8:84:fa:fc:
                    13:4e:4f:89:15:97:37:44:d1:00:fd:fc:ef:46:da:30:
                    92:7f:0c:25:08:72:48:e4:5b:62:03:8b:57:83:d4:d2:
                    af:43:c1:5d:a6:da:c6:6e:4b:9c:69:73:76:2d:ec:e2:
                    45:c8:e3:49:7f:58:dd:14:57:33:cc:66:e3:44:93:31:
                    e4:a4:54:36:66:e5:b9:f4:77:11:c4:d1:b3:b2:61:32:
                    8b:d6:d4:da:e3:45:de:d3:74:8d:4c:db:1d:7b:ba:88:
                    87:73:6d:1b:b6:22:f7:26:65:ee:16:0a:9c:e9:e0:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8f:b5:dd:df:23:49:e1:d7:72:0e:cb:a6:3d:ae:c1:
        3e:92:84:c0:aa:19:0c:58:eb:37:d8:8c:4d:9b:c9:75:
        2d:68:cd:44:bb:1e:fd:b4:cf:04:ad:ef:2a:2d:77:b0:
        b8:8c:00:d5:c4:af:a0:fb:30:22:18:ec:d1:87:5b:3e:
        42:3d:d0:63:28:78:a6:a0:16:81:a1:5e:52:de:cb:43:
        2a:94:a8:88:e5:1d:66:6e:9f:23:28:5e:3b:19:37:02:
        98:0d:61:c0:1d:21:64:a2:f5:96:39:02:98:50:a2:bc:
        06:23:9a:e9:5f:04:30:0b:4a:90:87:f7:88:4b:dd:f9:
        31:b6:92:0b:47:fc:9f:f3:45:0f:f5:80:38:87:1b:07:
        54:c6:a2:c0:16:e5:dd:ba:43:a9:b3:1e:66:fa:da:d6:
        ed:5f:96:c0:3e:b5:49:7d:ca:a9:a3:9c:d8:94:90:e1:
        df:db:9b:9e:e6:81:cf:fc:5d:e9:fe:49:1b:de:8b:76:
        4a:42:78:9a:6f:1d:1e:ac:af:71:96:f5:fc:5d:e6:17:
        1c:90:42:54:a0:48:28:f9:05:59:b5:8c:8b:c9:f0:eb:
        22:d9:a7:a4:19:c1:20:d0:74:32:bb:4b:1a:5a:bf:a5:
        63:3c:c1:4a:7c:79:93:93:86:73:00:02:85:11:92:18
    Fingerprint (SHA-256):
        76:28:DD:8C:A0:3E:2E:F4:90:92:CA:7D:51:AB:13:2D:68:8B:B8:06:63:A9:1F:56:D2:76:78:60:65:AC:84:39
    Fingerprint (SHA1):
        9C:B9:4F:5D:42:21:2B:A5:11:87:C1:A9:F7:BC:95:C2:26:EA:75:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11316: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155163 (0x1dee479b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:00 2017
            Not After : Mon May 02 15:53:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:89:12:5c:8d:d4:39:5b:b4:08:3b:ee:d4:39:16:e7:
                    0b:e6:62:fd:7f:ab:b0:43:19:a8:56:22:55:46:7f:52:
                    be:00:fc:1e:d5:a1:d2:6a:08:fc:86:6c:c6:f0:ae:00:
                    3f:54:c0:30:f5:40:2f:0e:d0:4a:e9:88:ff:17:f2:57:
                    61:da:76:7e:3c:5e:72:ea:e7:26:6a:3b:22:36:de:d2:
                    48:84:ee:02:ff:40:6a:a2:e0:c6:fc:c8:12:18:10:e7:
                    b4:10:af:50:f3:24:00:c6:97:86:58:a5:77:46:4c:88:
                    18:9b:66:ed:91:00:4c:e4:39:b9:ea:95:d8:e1:91:84:
                    95:77:72:44:5c:c4:16:aa:66:88:12:16:a9:04:26:47:
                    b0:db:eb:ff:df:35:10:69:9a:e0:54:bc:86:88:60:9a:
                    24:10:d6:7e:46:d4:39:7d:5b:23:bf:f4:11:de:b6:15:
                    c5:ed:b9:e8:14:f6:83:74:28:8b:41:b7:43:86:26:29:
                    b6:38:ae:99:3f:1e:10:b7:e1:9b:9c:6c:d9:0e:fb:89:
                    13:6a:29:12:73:72:76:92:ac:3b:2d:15:49:a6:58:b3:
                    d1:a4:9b:fa:41:1d:bb:b3:18:92:ec:ac:18:ee:b7:fd:
                    de:7d:ce:b9:3d:8a:57:40:c8:22:da:1c:63:18:e1:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:f4:5a:64:df:4e:29:00:6e:48:57:18:53:c2:46:e1:
        0b:e3:10:16:33:6b:8f:83:52:7f:8e:57:f1:71:0b:01:
        6a:9c:95:85:88:6f:f8:ae:86:0a:18:3d:92:31:c0:98:
        34:68:2b:34:19:c6:51:e1:fa:b9:36:ca:79:67:d8:bb:
        91:90:f3:2a:aa:42:77:b5:ae:fa:a5:21:c6:01:6d:db:
        f0:83:40:f3:73:82:24:69:76:8f:b6:30:f9:85:99:ab:
        46:85:a0:38:93:b5:65:b8:53:3f:98:30:5c:51:52:cf:
        05:b4:e5:d7:3a:2c:c9:72:cb:56:ac:88:04:f7:30:d4:
        82:f1:e5:b5:6a:d3:16:c5:75:c2:7b:4c:3d:32:d0:93:
        6d:a6:6a:46:a4:09:13:64:e3:49:de:7c:9e:fb:d9:4a:
        76:d3:c6:74:c7:52:71:dd:75:7c:14:eb:a0:16:93:46:
        14:d6:87:7a:19:d0:8b:0b:c9:27:45:f2:0a:06:e9:0a:
        62:5f:25:e9:0b:16:09:3f:45:c2:f3:df:3f:03:ad:26:
        35:85:45:91:37:dc:3c:16:9b:97:f3:96:75:50:c8:2f:
        c9:a0:55:ba:cd:a1:30:4d:84:13:ef:a1:1a:dc:13:68:
        f5:0c:0e:9e:29:bf:b5:7f:cc:eb:13:16:fc:fc:20:76
    Fingerprint (SHA-256):
        56:CD:22:0B:9B:34:2A:CD:BD:8B:74:CC:13:6B:EB:BD:59:26:26:E4:57:69:EA:67:3B:89:F2:B0:9F:F6:2F:D4
    Fingerprint (SHA1):
        53:B8:89:E9:65:0D:D9:6D:2E:48:B5:1E:CE:83:4F:47:80:2B:C5:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11317: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155161 (0x1dee4799)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:59 2017
            Not After : Mon May 02 15:52:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c8:d9:06:6c:8e:88:57:c5:88:a7:b5:e9:d2:97:a6:
                    19:8d:aa:c3:e2:ed:3d:00:72:62:f8:e5:4f:8f:42:7e:
                    41:eb:f8:e8:a9:ee:4e:9f:23:8f:18:08:19:8a:8e:ef:
                    36:83:34:0e:7a:dc:6b:15:82:c0:24:d8:1c:c7:aa:b1:
                    7a:46:2c:1b:9d:84:54:bc:95:bc:e2:8d:25:68:14:10:
                    33:5d:a6:4d:cf:75:d8:d6:ea:db:12:b5:4b:ad:00:f2:
                    45:b4:f8:51:80:c7:33:36:67:0e:26:1b:69:d6:3a:94:
                    97:52:2f:b9:61:6f:4a:73:53:9e:62:1e:52:05:fd:d1:
                    cf:dc:b9:18:52:33:86:98:8b:6c:71:25:a8:84:fa:fc:
                    13:4e:4f:89:15:97:37:44:d1:00:fd:fc:ef:46:da:30:
                    92:7f:0c:25:08:72:48:e4:5b:62:03:8b:57:83:d4:d2:
                    af:43:c1:5d:a6:da:c6:6e:4b:9c:69:73:76:2d:ec:e2:
                    45:c8:e3:49:7f:58:dd:14:57:33:cc:66:e3:44:93:31:
                    e4:a4:54:36:66:e5:b9:f4:77:11:c4:d1:b3:b2:61:32:
                    8b:d6:d4:da:e3:45:de:d3:74:8d:4c:db:1d:7b:ba:88:
                    87:73:6d:1b:b6:22:f7:26:65:ee:16:0a:9c:e9:e0:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8f:b5:dd:df:23:49:e1:d7:72:0e:cb:a6:3d:ae:c1:
        3e:92:84:c0:aa:19:0c:58:eb:37:d8:8c:4d:9b:c9:75:
        2d:68:cd:44:bb:1e:fd:b4:cf:04:ad:ef:2a:2d:77:b0:
        b8:8c:00:d5:c4:af:a0:fb:30:22:18:ec:d1:87:5b:3e:
        42:3d:d0:63:28:78:a6:a0:16:81:a1:5e:52:de:cb:43:
        2a:94:a8:88:e5:1d:66:6e:9f:23:28:5e:3b:19:37:02:
        98:0d:61:c0:1d:21:64:a2:f5:96:39:02:98:50:a2:bc:
        06:23:9a:e9:5f:04:30:0b:4a:90:87:f7:88:4b:dd:f9:
        31:b6:92:0b:47:fc:9f:f3:45:0f:f5:80:38:87:1b:07:
        54:c6:a2:c0:16:e5:dd:ba:43:a9:b3:1e:66:fa:da:d6:
        ed:5f:96:c0:3e:b5:49:7d:ca:a9:a3:9c:d8:94:90:e1:
        df:db:9b:9e:e6:81:cf:fc:5d:e9:fe:49:1b:de:8b:76:
        4a:42:78:9a:6f:1d:1e:ac:af:71:96:f5:fc:5d:e6:17:
        1c:90:42:54:a0:48:28:f9:05:59:b5:8c:8b:c9:f0:eb:
        22:d9:a7:a4:19:c1:20:d0:74:32:bb:4b:1a:5a:bf:a5:
        63:3c:c1:4a:7c:79:93:93:86:73:00:02:85:11:92:18
    Fingerprint (SHA-256):
        76:28:DD:8C:A0:3E:2E:F4:90:92:CA:7D:51:AB:13:2D:68:8B:B8:06:63:A9:1F:56:D2:76:78:60:65:AC:84:39
    Fingerprint (SHA1):
        9C:B9:4F:5D:42:21:2B:A5:11:87:C1:A9:F7:BC:95:C2:26:EA:75:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11318: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #11319: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155161 (0x1dee4799)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:59 2017
            Not After : Mon May 02 15:52:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c8:d9:06:6c:8e:88:57:c5:88:a7:b5:e9:d2:97:a6:
                    19:8d:aa:c3:e2:ed:3d:00:72:62:f8:e5:4f:8f:42:7e:
                    41:eb:f8:e8:a9:ee:4e:9f:23:8f:18:08:19:8a:8e:ef:
                    36:83:34:0e:7a:dc:6b:15:82:c0:24:d8:1c:c7:aa:b1:
                    7a:46:2c:1b:9d:84:54:bc:95:bc:e2:8d:25:68:14:10:
                    33:5d:a6:4d:cf:75:d8:d6:ea:db:12:b5:4b:ad:00:f2:
                    45:b4:f8:51:80:c7:33:36:67:0e:26:1b:69:d6:3a:94:
                    97:52:2f:b9:61:6f:4a:73:53:9e:62:1e:52:05:fd:d1:
                    cf:dc:b9:18:52:33:86:98:8b:6c:71:25:a8:84:fa:fc:
                    13:4e:4f:89:15:97:37:44:d1:00:fd:fc:ef:46:da:30:
                    92:7f:0c:25:08:72:48:e4:5b:62:03:8b:57:83:d4:d2:
                    af:43:c1:5d:a6:da:c6:6e:4b:9c:69:73:76:2d:ec:e2:
                    45:c8:e3:49:7f:58:dd:14:57:33:cc:66:e3:44:93:31:
                    e4:a4:54:36:66:e5:b9:f4:77:11:c4:d1:b3:b2:61:32:
                    8b:d6:d4:da:e3:45:de:d3:74:8d:4c:db:1d:7b:ba:88:
                    87:73:6d:1b:b6:22:f7:26:65:ee:16:0a:9c:e9:e0:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8f:b5:dd:df:23:49:e1:d7:72:0e:cb:a6:3d:ae:c1:
        3e:92:84:c0:aa:19:0c:58:eb:37:d8:8c:4d:9b:c9:75:
        2d:68:cd:44:bb:1e:fd:b4:cf:04:ad:ef:2a:2d:77:b0:
        b8:8c:00:d5:c4:af:a0:fb:30:22:18:ec:d1:87:5b:3e:
        42:3d:d0:63:28:78:a6:a0:16:81:a1:5e:52:de:cb:43:
        2a:94:a8:88:e5:1d:66:6e:9f:23:28:5e:3b:19:37:02:
        98:0d:61:c0:1d:21:64:a2:f5:96:39:02:98:50:a2:bc:
        06:23:9a:e9:5f:04:30:0b:4a:90:87:f7:88:4b:dd:f9:
        31:b6:92:0b:47:fc:9f:f3:45:0f:f5:80:38:87:1b:07:
        54:c6:a2:c0:16:e5:dd:ba:43:a9:b3:1e:66:fa:da:d6:
        ed:5f:96:c0:3e:b5:49:7d:ca:a9:a3:9c:d8:94:90:e1:
        df:db:9b:9e:e6:81:cf:fc:5d:e9:fe:49:1b:de:8b:76:
        4a:42:78:9a:6f:1d:1e:ac:af:71:96:f5:fc:5d:e6:17:
        1c:90:42:54:a0:48:28:f9:05:59:b5:8c:8b:c9:f0:eb:
        22:d9:a7:a4:19:c1:20:d0:74:32:bb:4b:1a:5a:bf:a5:
        63:3c:c1:4a:7c:79:93:93:86:73:00:02:85:11:92:18
    Fingerprint (SHA-256):
        76:28:DD:8C:A0:3E:2E:F4:90:92:CA:7D:51:AB:13:2D:68:8B:B8:06:63:A9:1F:56:D2:76:78:60:65:AC:84:39
    Fingerprint (SHA1):
        9C:B9:4F:5D:42:21:2B:A5:11:87:C1:A9:F7:BC:95:C2:26:EA:75:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11320: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155163 (0x1dee479b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:00 2017
            Not After : Mon May 02 15:53:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:89:12:5c:8d:d4:39:5b:b4:08:3b:ee:d4:39:16:e7:
                    0b:e6:62:fd:7f:ab:b0:43:19:a8:56:22:55:46:7f:52:
                    be:00:fc:1e:d5:a1:d2:6a:08:fc:86:6c:c6:f0:ae:00:
                    3f:54:c0:30:f5:40:2f:0e:d0:4a:e9:88:ff:17:f2:57:
                    61:da:76:7e:3c:5e:72:ea:e7:26:6a:3b:22:36:de:d2:
                    48:84:ee:02:ff:40:6a:a2:e0:c6:fc:c8:12:18:10:e7:
                    b4:10:af:50:f3:24:00:c6:97:86:58:a5:77:46:4c:88:
                    18:9b:66:ed:91:00:4c:e4:39:b9:ea:95:d8:e1:91:84:
                    95:77:72:44:5c:c4:16:aa:66:88:12:16:a9:04:26:47:
                    b0:db:eb:ff:df:35:10:69:9a:e0:54:bc:86:88:60:9a:
                    24:10:d6:7e:46:d4:39:7d:5b:23:bf:f4:11:de:b6:15:
                    c5:ed:b9:e8:14:f6:83:74:28:8b:41:b7:43:86:26:29:
                    b6:38:ae:99:3f:1e:10:b7:e1:9b:9c:6c:d9:0e:fb:89:
                    13:6a:29:12:73:72:76:92:ac:3b:2d:15:49:a6:58:b3:
                    d1:a4:9b:fa:41:1d:bb:b3:18:92:ec:ac:18:ee:b7:fd:
                    de:7d:ce:b9:3d:8a:57:40:c8:22:da:1c:63:18:e1:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:f4:5a:64:df:4e:29:00:6e:48:57:18:53:c2:46:e1:
        0b:e3:10:16:33:6b:8f:83:52:7f:8e:57:f1:71:0b:01:
        6a:9c:95:85:88:6f:f8:ae:86:0a:18:3d:92:31:c0:98:
        34:68:2b:34:19:c6:51:e1:fa:b9:36:ca:79:67:d8:bb:
        91:90:f3:2a:aa:42:77:b5:ae:fa:a5:21:c6:01:6d:db:
        f0:83:40:f3:73:82:24:69:76:8f:b6:30:f9:85:99:ab:
        46:85:a0:38:93:b5:65:b8:53:3f:98:30:5c:51:52:cf:
        05:b4:e5:d7:3a:2c:c9:72:cb:56:ac:88:04:f7:30:d4:
        82:f1:e5:b5:6a:d3:16:c5:75:c2:7b:4c:3d:32:d0:93:
        6d:a6:6a:46:a4:09:13:64:e3:49:de:7c:9e:fb:d9:4a:
        76:d3:c6:74:c7:52:71:dd:75:7c:14:eb:a0:16:93:46:
        14:d6:87:7a:19:d0:8b:0b:c9:27:45:f2:0a:06:e9:0a:
        62:5f:25:e9:0b:16:09:3f:45:c2:f3:df:3f:03:ad:26:
        35:85:45:91:37:dc:3c:16:9b:97:f3:96:75:50:c8:2f:
        c9:a0:55:ba:cd:a1:30:4d:84:13:ef:a1:1a:dc:13:68:
        f5:0c:0e:9e:29:bf:b5:7f:cc:eb:13:16:fc:fc:20:76
    Fingerprint (SHA-256):
        56:CD:22:0B:9B:34:2A:CD:BD:8B:74:CC:13:6B:EB:BD:59:26:26:E4:57:69:EA:67:3B:89:F2:B0:9F:F6:2F:D4
    Fingerprint (SHA1):
        53:B8:89:E9:65:0D:D9:6D:2E:48:B5:1E:CE:83:4F:47:80:2B:C5:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11321: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #11322: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #11323: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #11324: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155161 (0x1dee4799)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:59 2017
            Not After : Mon May 02 15:52:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c8:d9:06:6c:8e:88:57:c5:88:a7:b5:e9:d2:97:a6:
                    19:8d:aa:c3:e2:ed:3d:00:72:62:f8:e5:4f:8f:42:7e:
                    41:eb:f8:e8:a9:ee:4e:9f:23:8f:18:08:19:8a:8e:ef:
                    36:83:34:0e:7a:dc:6b:15:82:c0:24:d8:1c:c7:aa:b1:
                    7a:46:2c:1b:9d:84:54:bc:95:bc:e2:8d:25:68:14:10:
                    33:5d:a6:4d:cf:75:d8:d6:ea:db:12:b5:4b:ad:00:f2:
                    45:b4:f8:51:80:c7:33:36:67:0e:26:1b:69:d6:3a:94:
                    97:52:2f:b9:61:6f:4a:73:53:9e:62:1e:52:05:fd:d1:
                    cf:dc:b9:18:52:33:86:98:8b:6c:71:25:a8:84:fa:fc:
                    13:4e:4f:89:15:97:37:44:d1:00:fd:fc:ef:46:da:30:
                    92:7f:0c:25:08:72:48:e4:5b:62:03:8b:57:83:d4:d2:
                    af:43:c1:5d:a6:da:c6:6e:4b:9c:69:73:76:2d:ec:e2:
                    45:c8:e3:49:7f:58:dd:14:57:33:cc:66:e3:44:93:31:
                    e4:a4:54:36:66:e5:b9:f4:77:11:c4:d1:b3:b2:61:32:
                    8b:d6:d4:da:e3:45:de:d3:74:8d:4c:db:1d:7b:ba:88:
                    87:73:6d:1b:b6:22:f7:26:65:ee:16:0a:9c:e9:e0:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8f:b5:dd:df:23:49:e1:d7:72:0e:cb:a6:3d:ae:c1:
        3e:92:84:c0:aa:19:0c:58:eb:37:d8:8c:4d:9b:c9:75:
        2d:68:cd:44:bb:1e:fd:b4:cf:04:ad:ef:2a:2d:77:b0:
        b8:8c:00:d5:c4:af:a0:fb:30:22:18:ec:d1:87:5b:3e:
        42:3d:d0:63:28:78:a6:a0:16:81:a1:5e:52:de:cb:43:
        2a:94:a8:88:e5:1d:66:6e:9f:23:28:5e:3b:19:37:02:
        98:0d:61:c0:1d:21:64:a2:f5:96:39:02:98:50:a2:bc:
        06:23:9a:e9:5f:04:30:0b:4a:90:87:f7:88:4b:dd:f9:
        31:b6:92:0b:47:fc:9f:f3:45:0f:f5:80:38:87:1b:07:
        54:c6:a2:c0:16:e5:dd:ba:43:a9:b3:1e:66:fa:da:d6:
        ed:5f:96:c0:3e:b5:49:7d:ca:a9:a3:9c:d8:94:90:e1:
        df:db:9b:9e:e6:81:cf:fc:5d:e9:fe:49:1b:de:8b:76:
        4a:42:78:9a:6f:1d:1e:ac:af:71:96:f5:fc:5d:e6:17:
        1c:90:42:54:a0:48:28:f9:05:59:b5:8c:8b:c9:f0:eb:
        22:d9:a7:a4:19:c1:20:d0:74:32:bb:4b:1a:5a:bf:a5:
        63:3c:c1:4a:7c:79:93:93:86:73:00:02:85:11:92:18
    Fingerprint (SHA-256):
        76:28:DD:8C:A0:3E:2E:F4:90:92:CA:7D:51:AB:13:2D:68:8B:B8:06:63:A9:1F:56:D2:76:78:60:65:AC:84:39
    Fingerprint (SHA1):
        9C:B9:4F:5D:42:21:2B:A5:11:87:C1:A9:F7:BC:95:C2:26:EA:75:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11325: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155165 (0x1dee479d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:53:02 2017
            Not After : Mon May 02 15:53:02 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:fb:ff:84:ea:8a:b1:e6:1f:d2:ac:77:b7:38:4c:99:
                    3e:b6:5f:66:89:77:ac:96:79:24:2b:85:99:4e:e0:f9:
                    2c:94:e1:f7:8b:00:4a:f6:d9:11:0c:d7:1a:af:59:0a:
                    16:4c:05:98:46:23:a4:91:1a:9d:00:1c:b3:66:5c:fc:
                    82:ce:81:7c:37:b2:00:8a:fc:85:60:ed:a9:f4:e2:ce:
                    ab:6b:6a:b4:f8:49:f7:5a:dd:83:01:ce:9b:8a:f8:31:
                    42:3f:81:9e:60:f1:1f:5f:ea:53:79:40:52:45:50:36:
                    ad:71:1b:30:81:9c:36:a7:9d:54:a6:48:3d:86:83:0a:
                    6a:93:66:b7:bb:4c:83:2c:41:52:dc:59:d3:4d:aa:fc:
                    d6:b0:c6:12:a2:b1:12:df:c0:b5:77:b5:34:ed:b4:bc:
                    78:1b:21:4b:ed:99:d4:e1:1e:c0:24:ec:21:20:02:3e:
                    24:42:29:81:3a:a1:84:44:41:9e:f8:2c:9c:cf:65:dd:
                    67:7f:16:2f:ea:00:a4:24:36:c1:c9:f3:97:98:58:ef:
                    b7:4a:a4:f1:57:ad:2f:61:4c:c5:50:af:8f:f7:de:7a:
                    75:24:1b:15:ed:5b:bb:2e:9a:37:d8:0d:69:50:72:f3:
                    32:fa:1b:bb:a7:25:b0:af:3d:55:83:38:76:95:f4:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:3d:67:0e:59:7c:c8:57:82:43:47:b7:a6:73:c0:96:
        3f:b4:e8:5c:c5:15:20:7b:b0:97:d4:bc:a3:b3:5f:b0:
        fd:00:ad:80:0b:df:98:48:61:df:58:3f:cf:6f:03:f8:
        8f:dd:c9:8f:d9:49:e9:14:21:cb:38:b6:b5:a8:67:7a:
        2d:ff:ce:c7:e1:2f:fe:31:66:0e:1b:10:4b:c7:f9:00:
        2c:ac:da:31:2c:61:d0:25:2a:ce:18:3d:96:bb:07:2b:
        94:f2:91:94:f4:62:90:3c:f9:c9:6e:a5:e6:69:cd:d6:
        9e:db:76:8d:c1:4f:c2:44:ef:6d:f5:a7:f0:d9:2d:3a:
        a1:64:96:60:31:48:62:ad:b9:f8:32:54:d4:fd:f5:7f:
        b5:e4:75:a8:79:5a:dd:09:06:cf:21:5c:a5:b8:0d:ee:
        97:6b:dc:f5:da:49:a2:18:f3:bc:54:e0:10:ec:2c:a5:
        3d:28:07:8b:28:e0:f5:68:49:cc:19:93:ac:15:d0:9a:
        96:45:8b:c4:c6:95:f9:65:8a:82:e6:e6:67:d5:a3:38:
        9c:e0:60:55:ca:79:62:a6:a2:c9:32:16:d0:c3:71:94:
        2f:5a:a2:c9:e2:66:d4:6b:c7:4f:55:0b:ef:64:aa:7e:
        10:a1:5c:b1:31:a9:29:81:9e:c2:1b:e1:4b:c8:3e:e3
    Fingerprint (SHA-256):
        D4:FD:99:1F:63:17:52:ED:F2:16:84:B2:F6:57:CE:B9:48:B2:CD:CA:A9:6B:4F:08:90:03:B3:44:3D:51:63:6F
    Fingerprint (SHA1):
        90:EB:64:9D:B2:AF:DE:04:1B:5F:C1:78:6E:8C:37:21:DC:91:DB:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #11326: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155161 (0x1dee4799)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:59 2017
            Not After : Mon May 02 15:52:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:c8:d9:06:6c:8e:88:57:c5:88:a7:b5:e9:d2:97:a6:
                    19:8d:aa:c3:e2:ed:3d:00:72:62:f8:e5:4f:8f:42:7e:
                    41:eb:f8:e8:a9:ee:4e:9f:23:8f:18:08:19:8a:8e:ef:
                    36:83:34:0e:7a:dc:6b:15:82:c0:24:d8:1c:c7:aa:b1:
                    7a:46:2c:1b:9d:84:54:bc:95:bc:e2:8d:25:68:14:10:
                    33:5d:a6:4d:cf:75:d8:d6:ea:db:12:b5:4b:ad:00:f2:
                    45:b4:f8:51:80:c7:33:36:67:0e:26:1b:69:d6:3a:94:
                    97:52:2f:b9:61:6f:4a:73:53:9e:62:1e:52:05:fd:d1:
                    cf:dc:b9:18:52:33:86:98:8b:6c:71:25:a8:84:fa:fc:
                    13:4e:4f:89:15:97:37:44:d1:00:fd:fc:ef:46:da:30:
                    92:7f:0c:25:08:72:48:e4:5b:62:03:8b:57:83:d4:d2:
                    af:43:c1:5d:a6:da:c6:6e:4b:9c:69:73:76:2d:ec:e2:
                    45:c8:e3:49:7f:58:dd:14:57:33:cc:66:e3:44:93:31:
                    e4:a4:54:36:66:e5:b9:f4:77:11:c4:d1:b3:b2:61:32:
                    8b:d6:d4:da:e3:45:de:d3:74:8d:4c:db:1d:7b:ba:88:
                    87:73:6d:1b:b6:22:f7:26:65:ee:16:0a:9c:e9:e0:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8f:b5:dd:df:23:49:e1:d7:72:0e:cb:a6:3d:ae:c1:
        3e:92:84:c0:aa:19:0c:58:eb:37:d8:8c:4d:9b:c9:75:
        2d:68:cd:44:bb:1e:fd:b4:cf:04:ad:ef:2a:2d:77:b0:
        b8:8c:00:d5:c4:af:a0:fb:30:22:18:ec:d1:87:5b:3e:
        42:3d:d0:63:28:78:a6:a0:16:81:a1:5e:52:de:cb:43:
        2a:94:a8:88:e5:1d:66:6e:9f:23:28:5e:3b:19:37:02:
        98:0d:61:c0:1d:21:64:a2:f5:96:39:02:98:50:a2:bc:
        06:23:9a:e9:5f:04:30:0b:4a:90:87:f7:88:4b:dd:f9:
        31:b6:92:0b:47:fc:9f:f3:45:0f:f5:80:38:87:1b:07:
        54:c6:a2:c0:16:e5:dd:ba:43:a9:b3:1e:66:fa:da:d6:
        ed:5f:96:c0:3e:b5:49:7d:ca:a9:a3:9c:d8:94:90:e1:
        df:db:9b:9e:e6:81:cf:fc:5d:e9:fe:49:1b:de:8b:76:
        4a:42:78:9a:6f:1d:1e:ac:af:71:96:f5:fc:5d:e6:17:
        1c:90:42:54:a0:48:28:f9:05:59:b5:8c:8b:c9:f0:eb:
        22:d9:a7:a4:19:c1:20:d0:74:32:bb:4b:1a:5a:bf:a5:
        63:3c:c1:4a:7c:79:93:93:86:73:00:02:85:11:92:18
    Fingerprint (SHA-256):
        76:28:DD:8C:A0:3E:2E:F4:90:92:CA:7D:51:AB:13:2D:68:8B:B8:06:63:A9:1F:56:D2:76:78:60:65:AC:84:39
    Fingerprint (SHA1):
        9C:B9:4F:5D:42:21:2B:A5:11:87:C1:A9:F7:BC:95:C2:26:EA:75:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11327: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #11328: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #11329: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #11330: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #11331: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #11332: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155166 (0x1dee479e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:53:03 2017
            Not After : Mon May 02 15:53:03 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:3c:58:95:0e:1c:88:2d:c7:60:0b:0f:30:55:80:0e:
                    31:de:f7:b0:25:b4:21:1e:8b:df:3d:ab:cc:8b:af:d9:
                    6e:12:d5:d2:71:0d:6a:e3:3c:7f:2c:27:28:a1:62:ab:
                    30:64:48:7b:23:26:b6:a0:91:78:e4:b3:78:43:68:8d:
                    69:40:de:45:f4:6e:25:5e:94:e3:96:95:2f:b4:d4:79:
                    26:31:97:e1:79:c3:08:0f:77:ba:4d:a5:aa:3b:66:03:
                    96:c2:18:ef:88:d1:e6:c8:4b:00:da:cd:0c:15:83:31:
                    3a:0a:d7:4d:f2:a1:72:09:66:e1:ad:2d:26:cb:e2:35:
                    b8:32:56:f3:62:99:ba:b8:c7:20:4d:ae:07:4c:db:2d:
                    15:a5:fe:2f:5c:0b:95:93:a9:ac:5c:06:65:aa:28:d1:
                    0c:45:94:71:ff:bc:c0:df:f2:2e:e9:44:8b:66:b7:bb:
                    2c:11:7c:dd:d4:d2:ff:cb:ac:1a:d5:4f:54:af:1a:92:
                    a4:38:ea:cc:bb:bc:92:b4:ca:3e:74:6e:a2:3b:b8:fa:
                    5c:5f:4c:39:ec:71:b5:de:11:e1:04:8e:89:fc:98:6a:
                    1b:2f:3b:fd:73:4b:d9:8d:50:9a:a5:b6:af:cc:ff:d1:
                    a9:fe:46:e0:93:40:79:de:bc:71:96:9b:bb:d7:5a:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:a9:d7:b9:09:8d:50:10:77:ca:e0:ba:ed:1b:02:1b:
        2c:b7:1b:40:2e:6b:d9:46:02:33:3d:6f:5a:c7:e1:13:
        f4:82:8b:61:d9:e0:73:c6:e1:19:6c:1f:ed:b3:66:e5:
        9c:10:14:75:14:e0:83:df:38:fa:a8:81:ae:17:46:02:
        2f:3c:ee:be:5e:5b:3b:5b:b4:aa:4c:d5:1a:38:2d:86:
        24:ee:cf:89:85:df:c7:4e:1f:ad:53:94:4b:0c:d6:e4:
        8a:da:d1:44:15:bd:f4:3f:64:47:36:f2:cb:27:0f:3f:
        a9:70:84:6f:57:28:ee:11:cb:33:9e:6a:42:50:16:7a:
        91:e7:83:cf:45:57:be:3c:8b:a7:19:50:6e:bd:d7:a2:
        e1:39:c3:e1:81:5f:04:d8:04:58:a1:eb:df:7c:f9:d1:
        9b:d7:66:40:4b:15:3b:c8:26:4b:a1:ee:1d:ae:d5:d0:
        c0:32:6d:b8:b7:81:82:22:11:bb:15:4a:e7:74:cf:25:
        49:02:f3:ea:67:98:ff:05:11:81:1c:3f:41:d4:c9:f4:
        48:d9:58:5b:c2:c6:d1:2a:82:93:fc:1f:a7:95:77:7d:
        10:95:58:a0:ba:b3:d6:7f:2d:93:79:28:1d:ce:3a:96:
        fc:27:39:d3:26:7c:9f:83:57:84:e6:a9:a5:4b:6e:70
    Fingerprint (SHA-256):
        3A:41:D3:36:8E:BD:88:9A:EA:8B:3F:97:3C:5B:8A:5E:C4:89:B6:DE:97:B9:41:03:CC:97:6B:D6:35:7D:FA:8B
    Fingerprint (SHA1):
        0C:12:64:07:62:90:E6:FE:FF:4F:F1:36:E8:40:D5:71:1C:B5:D8:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11333: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #11334: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #11335: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #11336: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #11337: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11338: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11339: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11340: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11341: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11342: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11343: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11344: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11345: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11346: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11347: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11348: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11349: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11350: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11351: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11352: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11353: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11354: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11355: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11356: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 10769 at Tue May  2 15:53:08 UTC 2017
kill -USR1 10769
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 10769 killed at Tue May  2 15:53:08 UTC 2017
httpserv starting at Tue May  2 15:53:08 UTC 2017
httpserv -D -p 9132  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.12777  &
trying to connect to httpserv at Tue May  2 15:53:08 UTC 2017
tstclnt -p 9132 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9132 (address=::1)
tstclnt: exiting with return code 0
kill -0 26196 >/dev/null 2>/dev/null
httpserv with PID 26196 found at Tue May  2 15:53:08 UTC 2017
httpserv with PID 26196 started at Tue May  2 15:53:08 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11357: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155168 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11358: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11359: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11360: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155169 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11361: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11362: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11363: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11364: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155170 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11365: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11366: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155171 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11367: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11368: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11369: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11370: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11371: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502155172   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11372: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11373: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11374: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #11375: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #11376: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155169 (0x1dee47a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:53:09 2017
            Not After : Mon May 02 15:53:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:c4:05:60:39:a3:63:cc:8e:67:91:72:d3:16:2b:9c:
                    21:88:3d:10:e8:06:0b:3d:60:3c:11:c2:62:b1:2b:35:
                    06:de:0d:52:b4:df:d2:77:17:3e:29:46:17:9d:16:cd:
                    d5:10:5d:af:69:44:2c:07:cd:4c:b5:8f:7f:5a:fe:b7:
                    0e:fe:b1:3c:7e:f9:ee:0b:31:95:45:c9:23:00:25:98:
                    e0:f1:1f:1e:69:98:fe:eb:b8:56:5a:9f:4d:04:42:3f:
                    69:c9:7d:c8:a1:45:0a:8d:a0:44:2b:bf:6d:35:c1:a3:
                    ec:a7:18:d2:f5:27:c7:9f:5a:cb:6b:65:c9:4f:5b:8e:
                    f0:33:3a:c7:87:62:85:03:02:e3:42:16:79:d0:bd:14:
                    f0:e1:e9:3c:e9:c8:f7:37:1e:3e:8a:22:32:9c:ca:ab:
                    6b:d2:7b:10:a9:52:48:6e:98:b0:0a:0f:36:c5:e2:2b:
                    4d:02:64:10:7e:2b:ad:25:c0:25:07:05:dd:76:6c:de:
                    43:b7:96:65:18:97:5f:38:20:a1:0a:82:90:b7:4c:b9:
                    18:1a:a4:8f:4e:b4:ae:d3:51:50:1b:0c:67:3b:42:35:
                    a2:4d:bb:60:50:4c:e4:00:46:51:8b:2c:19:11:42:13:
                    cb:eb:24:8d:14:9a:c0:7a:5c:f9:25:48:c2:3c:99:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:19:e5:06:28:57:67:dc:4c:b2:02:9f:7c:46:dd:b9:
        3e:4c:c8:3b:df:d4:3e:c5:4b:83:9a:8c:2f:93:86:c7:
        8a:4b:11:a3:ae:bd:f3:5e:e5:11:c4:bd:93:43:a2:0f:
        4e:8e:c4:cd:c2:31:ea:fd:6d:12:82:3f:fa:77:e6:38:
        63:0b:96:d4:6c:67:73:75:68:7d:da:f1:d1:a6:48:55:
        43:47:42:2a:96:8d:75:6f:26:eb:dd:58:01:8b:5d:bb:
        04:38:8d:a6:e2:6a:34:1f:4d:e8:3e:e8:47:4d:a6:ad:
        ad:35:4a:71:d3:50:7d:0a:6f:62:a0:20:c3:2d:64:e5:
        ef:09:44:65:31:8a:61:73:bb:aa:b3:30:81:7d:62:18:
        fc:5d:ec:5b:07:74:33:9a:c2:21:f6:32:24:bf:bb:77:
        26:34:f2:8d:19:0b:7a:58:2b:72:0e:13:1f:3f:6f:84:
        b7:50:b1:a4:dd:dd:49:66:43:83:81:bf:08:d6:88:ad:
        56:e0:4c:0c:fc:81:4c:df:bf:31:54:40:c1:92:d3:59:
        41:8d:51:25:0a:6f:6a:0d:ca:0a:d8:f2:fb:da:9b:09:
        84:b3:65:c5:99:74:42:c0:03:59:c8:3a:bb:ce:ac:70:
        6e:b4:cd:27:d6:e2:59:c6:3e:ba:89:81:8c:c5:45:9b
    Fingerprint (SHA-256):
        6D:59:EF:98:A4:74:0B:96:DD:E0:59:1C:00:4A:28:CF:FA:C0:59:04:D3:FE:68:3D:9E:F0:F6:63:F4:4E:50:28
    Fingerprint (SHA1):
        77:97:A1:D4:BE:DA:A0:2D:BE:0B:BE:A0:3D:C9:0A:7E:A1:B2:4F:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11377: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155168 (0x1dee47a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:53:08 2017
            Not After : Mon May 02 15:53:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4a:f4:34:bf:29:89:28:34:a8:21:da:0c:39:53:c5:
                    61:a3:07:fa:df:35:5a:d6:ed:21:9d:85:dc:4e:66:3a:
                    4d:a6:9a:c3:d7:7d:c1:31:01:4e:c0:cb:af:24:2e:64:
                    bd:fa:e8:25:7e:f7:d2:48:32:d0:2b:d0:fc:d4:f9:f2:
                    a1:2d:de:5d:72:e4:aa:41:88:8b:93:89:87:26:01:b9:
                    d3:2a:76:4b:c5:91:66:a3:a5:27:5c:1b:65:e9:d7:5f:
                    69:d8:99:f0:84:f6:d2:0a:e7:03:59:02:3e:7b:4d:2b:
                    30:cf:c8:71:be:b5:6f:94:20:bd:64:8c:7f:ae:7a:41:
                    88:bf:c1:e5:3b:95:42:97:09:25:18:88:4a:68:66:b7:
                    c4:36:3d:23:00:89:85:9f:bd:01:bd:70:e1:58:17:fc:
                    0b:2e:b8:ee:5d:f7:f9:52:6f:81:ff:3c:5c:6b:e7:4b:
                    a0:42:52:4f:0d:93:a6:81:d7:a8:09:98:3a:02:4c:0c:
                    62:55:06:5d:67:be:b1:8f:79:57:16:ba:68:d1:fa:a2:
                    99:d8:3f:df:90:25:7c:03:35:c8:9b:38:4c:1f:5d:5e:
                    87:c8:00:43:84:78:2d:b3:67:e8:93:50:48:75:4b:a4:
                    d8:97:fd:53:82:4b:73:90:c3:8d:d0:58:16:cc:35:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:95:c3:d5:e0:1b:64:01:2e:d7:58:f5:bb:e3:56:a1:
        97:10:6b:2f:ef:2a:e0:65:2b:dd:9d:e1:10:13:86:af:
        7f:d2:47:39:c2:50:73:ab:da:0c:34:db:f6:d3:b8:69:
        8b:91:c6:db:b1:b5:77:42:fd:bc:98:9e:86:c9:f1:ab:
        4b:48:bb:1a:d8:ef:39:90:05:b2:90:e0:e9:57:f9:3e:
        50:ca:39:23:0d:9b:f2:08:97:8a:a7:a5:39:22:d0:e6:
        f9:4e:24:ec:d6:dd:bc:fb:26:4b:9c:d0:a2:61:08:03:
        f6:d2:4e:4d:dc:d3:c5:f1:80:d3:78:05:0c:6c:c0:ce:
        eb:8b:3d:fd:c0:f0:bf:dd:db:df:3b:73:1f:f1:65:1e:
        bd:c5:9a:ad:51:26:6e:ff:98:2a:76:20:9e:6b:51:28:
        75:af:79:9b:73:b4:c6:36:8d:2c:cf:1a:88:1a:ec:6d:
        d6:d3:f6:10:e3:65:a6:35:8c:3b:a1:cf:62:f7:3b:90:
        b6:8f:dc:62:1c:1b:b5:74:8e:0e:41:f8:bc:7b:8a:c3:
        e2:4f:fa:26:55:c8:52:43:2f:8d:f7:0d:5c:a2:b2:2e:
        24:5c:8f:22:4d:b5:49:17:0f:dd:aa:07:fc:3d:39:2d:
        58:3a:14:e2:82:16:d3:78:be:87:8b:50:5c:39:d3:3d
    Fingerprint (SHA-256):
        56:D1:0A:3B:15:9F:80:3B:6E:B5:A7:5E:40:D7:89:7D:73:CA:38:71:5F:CB:77:33:95:81:7F:D0:2D:13:3A:5D
    Fingerprint (SHA1):
        2F:5A:FB:61:95:A0:C4:75:D9:BC:13:51:2B:66:A0:6C:8E:35:8B:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11378: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11379: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #11380: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #11381: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155168 (0x1dee47a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:53:08 2017
            Not After : Mon May 02 15:53:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4a:f4:34:bf:29:89:28:34:a8:21:da:0c:39:53:c5:
                    61:a3:07:fa:df:35:5a:d6:ed:21:9d:85:dc:4e:66:3a:
                    4d:a6:9a:c3:d7:7d:c1:31:01:4e:c0:cb:af:24:2e:64:
                    bd:fa:e8:25:7e:f7:d2:48:32:d0:2b:d0:fc:d4:f9:f2:
                    a1:2d:de:5d:72:e4:aa:41:88:8b:93:89:87:26:01:b9:
                    d3:2a:76:4b:c5:91:66:a3:a5:27:5c:1b:65:e9:d7:5f:
                    69:d8:99:f0:84:f6:d2:0a:e7:03:59:02:3e:7b:4d:2b:
                    30:cf:c8:71:be:b5:6f:94:20:bd:64:8c:7f:ae:7a:41:
                    88:bf:c1:e5:3b:95:42:97:09:25:18:88:4a:68:66:b7:
                    c4:36:3d:23:00:89:85:9f:bd:01:bd:70:e1:58:17:fc:
                    0b:2e:b8:ee:5d:f7:f9:52:6f:81:ff:3c:5c:6b:e7:4b:
                    a0:42:52:4f:0d:93:a6:81:d7:a8:09:98:3a:02:4c:0c:
                    62:55:06:5d:67:be:b1:8f:79:57:16:ba:68:d1:fa:a2:
                    99:d8:3f:df:90:25:7c:03:35:c8:9b:38:4c:1f:5d:5e:
                    87:c8:00:43:84:78:2d:b3:67:e8:93:50:48:75:4b:a4:
                    d8:97:fd:53:82:4b:73:90:c3:8d:d0:58:16:cc:35:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:95:c3:d5:e0:1b:64:01:2e:d7:58:f5:bb:e3:56:a1:
        97:10:6b:2f:ef:2a:e0:65:2b:dd:9d:e1:10:13:86:af:
        7f:d2:47:39:c2:50:73:ab:da:0c:34:db:f6:d3:b8:69:
        8b:91:c6:db:b1:b5:77:42:fd:bc:98:9e:86:c9:f1:ab:
        4b:48:bb:1a:d8:ef:39:90:05:b2:90:e0:e9:57:f9:3e:
        50:ca:39:23:0d:9b:f2:08:97:8a:a7:a5:39:22:d0:e6:
        f9:4e:24:ec:d6:dd:bc:fb:26:4b:9c:d0:a2:61:08:03:
        f6:d2:4e:4d:dc:d3:c5:f1:80:d3:78:05:0c:6c:c0:ce:
        eb:8b:3d:fd:c0:f0:bf:dd:db:df:3b:73:1f:f1:65:1e:
        bd:c5:9a:ad:51:26:6e:ff:98:2a:76:20:9e:6b:51:28:
        75:af:79:9b:73:b4:c6:36:8d:2c:cf:1a:88:1a:ec:6d:
        d6:d3:f6:10:e3:65:a6:35:8c:3b:a1:cf:62:f7:3b:90:
        b6:8f:dc:62:1c:1b:b5:74:8e:0e:41:f8:bc:7b:8a:c3:
        e2:4f:fa:26:55:c8:52:43:2f:8d:f7:0d:5c:a2:b2:2e:
        24:5c:8f:22:4d:b5:49:17:0f:dd:aa:07:fc:3d:39:2d:
        58:3a:14:e2:82:16:d3:78:be:87:8b:50:5c:39:d3:3d
    Fingerprint (SHA-256):
        56:D1:0A:3B:15:9F:80:3B:6E:B5:A7:5E:40:D7:89:7D:73:CA:38:71:5F:CB:77:33:95:81:7F:D0:2D:13:3A:5D
    Fingerprint (SHA1):
        2F:5A:FB:61:95:A0:C4:75:D9:BC:13:51:2B:66:A0:6C:8E:35:8B:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11382: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155169 (0x1dee47a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:53:09 2017
            Not After : Mon May 02 15:53:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:c4:05:60:39:a3:63:cc:8e:67:91:72:d3:16:2b:9c:
                    21:88:3d:10:e8:06:0b:3d:60:3c:11:c2:62:b1:2b:35:
                    06:de:0d:52:b4:df:d2:77:17:3e:29:46:17:9d:16:cd:
                    d5:10:5d:af:69:44:2c:07:cd:4c:b5:8f:7f:5a:fe:b7:
                    0e:fe:b1:3c:7e:f9:ee:0b:31:95:45:c9:23:00:25:98:
                    e0:f1:1f:1e:69:98:fe:eb:b8:56:5a:9f:4d:04:42:3f:
                    69:c9:7d:c8:a1:45:0a:8d:a0:44:2b:bf:6d:35:c1:a3:
                    ec:a7:18:d2:f5:27:c7:9f:5a:cb:6b:65:c9:4f:5b:8e:
                    f0:33:3a:c7:87:62:85:03:02:e3:42:16:79:d0:bd:14:
                    f0:e1:e9:3c:e9:c8:f7:37:1e:3e:8a:22:32:9c:ca:ab:
                    6b:d2:7b:10:a9:52:48:6e:98:b0:0a:0f:36:c5:e2:2b:
                    4d:02:64:10:7e:2b:ad:25:c0:25:07:05:dd:76:6c:de:
                    43:b7:96:65:18:97:5f:38:20:a1:0a:82:90:b7:4c:b9:
                    18:1a:a4:8f:4e:b4:ae:d3:51:50:1b:0c:67:3b:42:35:
                    a2:4d:bb:60:50:4c:e4:00:46:51:8b:2c:19:11:42:13:
                    cb:eb:24:8d:14:9a:c0:7a:5c:f9:25:48:c2:3c:99:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:19:e5:06:28:57:67:dc:4c:b2:02:9f:7c:46:dd:b9:
        3e:4c:c8:3b:df:d4:3e:c5:4b:83:9a:8c:2f:93:86:c7:
        8a:4b:11:a3:ae:bd:f3:5e:e5:11:c4:bd:93:43:a2:0f:
        4e:8e:c4:cd:c2:31:ea:fd:6d:12:82:3f:fa:77:e6:38:
        63:0b:96:d4:6c:67:73:75:68:7d:da:f1:d1:a6:48:55:
        43:47:42:2a:96:8d:75:6f:26:eb:dd:58:01:8b:5d:bb:
        04:38:8d:a6:e2:6a:34:1f:4d:e8:3e:e8:47:4d:a6:ad:
        ad:35:4a:71:d3:50:7d:0a:6f:62:a0:20:c3:2d:64:e5:
        ef:09:44:65:31:8a:61:73:bb:aa:b3:30:81:7d:62:18:
        fc:5d:ec:5b:07:74:33:9a:c2:21:f6:32:24:bf:bb:77:
        26:34:f2:8d:19:0b:7a:58:2b:72:0e:13:1f:3f:6f:84:
        b7:50:b1:a4:dd:dd:49:66:43:83:81:bf:08:d6:88:ad:
        56:e0:4c:0c:fc:81:4c:df:bf:31:54:40:c1:92:d3:59:
        41:8d:51:25:0a:6f:6a:0d:ca:0a:d8:f2:fb:da:9b:09:
        84:b3:65:c5:99:74:42:c0:03:59:c8:3a:bb:ce:ac:70:
        6e:b4:cd:27:d6:e2:59:c6:3e:ba:89:81:8c:c5:45:9b
    Fingerprint (SHA-256):
        6D:59:EF:98:A4:74:0B:96:DD:E0:59:1C:00:4A:28:CF:FA:C0:59:04:D3:FE:68:3D:9E:F0:F6:63:F4:4E:50:28
    Fingerprint (SHA1):
        77:97:A1:D4:BE:DA:A0:2D:BE:0B:BE:A0:3D:C9:0A:7E:A1:B2:4F:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11383: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #11384: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #11385: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11386: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11387: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11388: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155169 (0x1dee47a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:53:09 2017
            Not After : Mon May 02 15:53:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:c4:05:60:39:a3:63:cc:8e:67:91:72:d3:16:2b:9c:
                    21:88:3d:10:e8:06:0b:3d:60:3c:11:c2:62:b1:2b:35:
                    06:de:0d:52:b4:df:d2:77:17:3e:29:46:17:9d:16:cd:
                    d5:10:5d:af:69:44:2c:07:cd:4c:b5:8f:7f:5a:fe:b7:
                    0e:fe:b1:3c:7e:f9:ee:0b:31:95:45:c9:23:00:25:98:
                    e0:f1:1f:1e:69:98:fe:eb:b8:56:5a:9f:4d:04:42:3f:
                    69:c9:7d:c8:a1:45:0a:8d:a0:44:2b:bf:6d:35:c1:a3:
                    ec:a7:18:d2:f5:27:c7:9f:5a:cb:6b:65:c9:4f:5b:8e:
                    f0:33:3a:c7:87:62:85:03:02:e3:42:16:79:d0:bd:14:
                    f0:e1:e9:3c:e9:c8:f7:37:1e:3e:8a:22:32:9c:ca:ab:
                    6b:d2:7b:10:a9:52:48:6e:98:b0:0a:0f:36:c5:e2:2b:
                    4d:02:64:10:7e:2b:ad:25:c0:25:07:05:dd:76:6c:de:
                    43:b7:96:65:18:97:5f:38:20:a1:0a:82:90:b7:4c:b9:
                    18:1a:a4:8f:4e:b4:ae:d3:51:50:1b:0c:67:3b:42:35:
                    a2:4d:bb:60:50:4c:e4:00:46:51:8b:2c:19:11:42:13:
                    cb:eb:24:8d:14:9a:c0:7a:5c:f9:25:48:c2:3c:99:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:19:e5:06:28:57:67:dc:4c:b2:02:9f:7c:46:dd:b9:
        3e:4c:c8:3b:df:d4:3e:c5:4b:83:9a:8c:2f:93:86:c7:
        8a:4b:11:a3:ae:bd:f3:5e:e5:11:c4:bd:93:43:a2:0f:
        4e:8e:c4:cd:c2:31:ea:fd:6d:12:82:3f:fa:77:e6:38:
        63:0b:96:d4:6c:67:73:75:68:7d:da:f1:d1:a6:48:55:
        43:47:42:2a:96:8d:75:6f:26:eb:dd:58:01:8b:5d:bb:
        04:38:8d:a6:e2:6a:34:1f:4d:e8:3e:e8:47:4d:a6:ad:
        ad:35:4a:71:d3:50:7d:0a:6f:62:a0:20:c3:2d:64:e5:
        ef:09:44:65:31:8a:61:73:bb:aa:b3:30:81:7d:62:18:
        fc:5d:ec:5b:07:74:33:9a:c2:21:f6:32:24:bf:bb:77:
        26:34:f2:8d:19:0b:7a:58:2b:72:0e:13:1f:3f:6f:84:
        b7:50:b1:a4:dd:dd:49:66:43:83:81:bf:08:d6:88:ad:
        56:e0:4c:0c:fc:81:4c:df:bf:31:54:40:c1:92:d3:59:
        41:8d:51:25:0a:6f:6a:0d:ca:0a:d8:f2:fb:da:9b:09:
        84:b3:65:c5:99:74:42:c0:03:59:c8:3a:bb:ce:ac:70:
        6e:b4:cd:27:d6:e2:59:c6:3e:ba:89:81:8c:c5:45:9b
    Fingerprint (SHA-256):
        6D:59:EF:98:A4:74:0B:96:DD:E0:59:1C:00:4A:28:CF:FA:C0:59:04:D3:FE:68:3D:9E:F0:F6:63:F4:4E:50:28
    Fingerprint (SHA1):
        77:97:A1:D4:BE:DA:A0:2D:BE:0B:BE:A0:3D:C9:0A:7E:A1:B2:4F:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11389: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155169 (0x1dee47a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:53:09 2017
            Not After : Mon May 02 15:53:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:c4:05:60:39:a3:63:cc:8e:67:91:72:d3:16:2b:9c:
                    21:88:3d:10:e8:06:0b:3d:60:3c:11:c2:62:b1:2b:35:
                    06:de:0d:52:b4:df:d2:77:17:3e:29:46:17:9d:16:cd:
                    d5:10:5d:af:69:44:2c:07:cd:4c:b5:8f:7f:5a:fe:b7:
                    0e:fe:b1:3c:7e:f9:ee:0b:31:95:45:c9:23:00:25:98:
                    e0:f1:1f:1e:69:98:fe:eb:b8:56:5a:9f:4d:04:42:3f:
                    69:c9:7d:c8:a1:45:0a:8d:a0:44:2b:bf:6d:35:c1:a3:
                    ec:a7:18:d2:f5:27:c7:9f:5a:cb:6b:65:c9:4f:5b:8e:
                    f0:33:3a:c7:87:62:85:03:02:e3:42:16:79:d0:bd:14:
                    f0:e1:e9:3c:e9:c8:f7:37:1e:3e:8a:22:32:9c:ca:ab:
                    6b:d2:7b:10:a9:52:48:6e:98:b0:0a:0f:36:c5:e2:2b:
                    4d:02:64:10:7e:2b:ad:25:c0:25:07:05:dd:76:6c:de:
                    43:b7:96:65:18:97:5f:38:20:a1:0a:82:90:b7:4c:b9:
                    18:1a:a4:8f:4e:b4:ae:d3:51:50:1b:0c:67:3b:42:35:
                    a2:4d:bb:60:50:4c:e4:00:46:51:8b:2c:19:11:42:13:
                    cb:eb:24:8d:14:9a:c0:7a:5c:f9:25:48:c2:3c:99:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:19:e5:06:28:57:67:dc:4c:b2:02:9f:7c:46:dd:b9:
        3e:4c:c8:3b:df:d4:3e:c5:4b:83:9a:8c:2f:93:86:c7:
        8a:4b:11:a3:ae:bd:f3:5e:e5:11:c4:bd:93:43:a2:0f:
        4e:8e:c4:cd:c2:31:ea:fd:6d:12:82:3f:fa:77:e6:38:
        63:0b:96:d4:6c:67:73:75:68:7d:da:f1:d1:a6:48:55:
        43:47:42:2a:96:8d:75:6f:26:eb:dd:58:01:8b:5d:bb:
        04:38:8d:a6:e2:6a:34:1f:4d:e8:3e:e8:47:4d:a6:ad:
        ad:35:4a:71:d3:50:7d:0a:6f:62:a0:20:c3:2d:64:e5:
        ef:09:44:65:31:8a:61:73:bb:aa:b3:30:81:7d:62:18:
        fc:5d:ec:5b:07:74:33:9a:c2:21:f6:32:24:bf:bb:77:
        26:34:f2:8d:19:0b:7a:58:2b:72:0e:13:1f:3f:6f:84:
        b7:50:b1:a4:dd:dd:49:66:43:83:81:bf:08:d6:88:ad:
        56:e0:4c:0c:fc:81:4c:df:bf:31:54:40:c1:92:d3:59:
        41:8d:51:25:0a:6f:6a:0d:ca:0a:d8:f2:fb:da:9b:09:
        84:b3:65:c5:99:74:42:c0:03:59:c8:3a:bb:ce:ac:70:
        6e:b4:cd:27:d6:e2:59:c6:3e:ba:89:81:8c:c5:45:9b
    Fingerprint (SHA-256):
        6D:59:EF:98:A4:74:0B:96:DD:E0:59:1C:00:4A:28:CF:FA:C0:59:04:D3:FE:68:3D:9E:F0:F6:63:F4:4E:50:28
    Fingerprint (SHA1):
        77:97:A1:D4:BE:DA:A0:2D:BE:0B:BE:A0:3D:C9:0A:7E:A1:B2:4F:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11390: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #11391: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #11392: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11393: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11394: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11395: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155168 (0x1dee47a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:53:08 2017
            Not After : Mon May 02 15:53:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4a:f4:34:bf:29:89:28:34:a8:21:da:0c:39:53:c5:
                    61:a3:07:fa:df:35:5a:d6:ed:21:9d:85:dc:4e:66:3a:
                    4d:a6:9a:c3:d7:7d:c1:31:01:4e:c0:cb:af:24:2e:64:
                    bd:fa:e8:25:7e:f7:d2:48:32:d0:2b:d0:fc:d4:f9:f2:
                    a1:2d:de:5d:72:e4:aa:41:88:8b:93:89:87:26:01:b9:
                    d3:2a:76:4b:c5:91:66:a3:a5:27:5c:1b:65:e9:d7:5f:
                    69:d8:99:f0:84:f6:d2:0a:e7:03:59:02:3e:7b:4d:2b:
                    30:cf:c8:71:be:b5:6f:94:20:bd:64:8c:7f:ae:7a:41:
                    88:bf:c1:e5:3b:95:42:97:09:25:18:88:4a:68:66:b7:
                    c4:36:3d:23:00:89:85:9f:bd:01:bd:70:e1:58:17:fc:
                    0b:2e:b8:ee:5d:f7:f9:52:6f:81:ff:3c:5c:6b:e7:4b:
                    a0:42:52:4f:0d:93:a6:81:d7:a8:09:98:3a:02:4c:0c:
                    62:55:06:5d:67:be:b1:8f:79:57:16:ba:68:d1:fa:a2:
                    99:d8:3f:df:90:25:7c:03:35:c8:9b:38:4c:1f:5d:5e:
                    87:c8:00:43:84:78:2d:b3:67:e8:93:50:48:75:4b:a4:
                    d8:97:fd:53:82:4b:73:90:c3:8d:d0:58:16:cc:35:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:95:c3:d5:e0:1b:64:01:2e:d7:58:f5:bb:e3:56:a1:
        97:10:6b:2f:ef:2a:e0:65:2b:dd:9d:e1:10:13:86:af:
        7f:d2:47:39:c2:50:73:ab:da:0c:34:db:f6:d3:b8:69:
        8b:91:c6:db:b1:b5:77:42:fd:bc:98:9e:86:c9:f1:ab:
        4b:48:bb:1a:d8:ef:39:90:05:b2:90:e0:e9:57:f9:3e:
        50:ca:39:23:0d:9b:f2:08:97:8a:a7:a5:39:22:d0:e6:
        f9:4e:24:ec:d6:dd:bc:fb:26:4b:9c:d0:a2:61:08:03:
        f6:d2:4e:4d:dc:d3:c5:f1:80:d3:78:05:0c:6c:c0:ce:
        eb:8b:3d:fd:c0:f0:bf:dd:db:df:3b:73:1f:f1:65:1e:
        bd:c5:9a:ad:51:26:6e:ff:98:2a:76:20:9e:6b:51:28:
        75:af:79:9b:73:b4:c6:36:8d:2c:cf:1a:88:1a:ec:6d:
        d6:d3:f6:10:e3:65:a6:35:8c:3b:a1:cf:62:f7:3b:90:
        b6:8f:dc:62:1c:1b:b5:74:8e:0e:41:f8:bc:7b:8a:c3:
        e2:4f:fa:26:55:c8:52:43:2f:8d:f7:0d:5c:a2:b2:2e:
        24:5c:8f:22:4d:b5:49:17:0f:dd:aa:07:fc:3d:39:2d:
        58:3a:14:e2:82:16:d3:78:be:87:8b:50:5c:39:d3:3d
    Fingerprint (SHA-256):
        56:D1:0A:3B:15:9F:80:3B:6E:B5:A7:5E:40:D7:89:7D:73:CA:38:71:5F:CB:77:33:95:81:7F:D0:2D:13:3A:5D
    Fingerprint (SHA1):
        2F:5A:FB:61:95:A0:C4:75:D9:BC:13:51:2B:66:A0:6C:8E:35:8B:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11396: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155168 (0x1dee47a0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:53:08 2017
            Not After : Mon May 02 15:53:08 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4a:f4:34:bf:29:89:28:34:a8:21:da:0c:39:53:c5:
                    61:a3:07:fa:df:35:5a:d6:ed:21:9d:85:dc:4e:66:3a:
                    4d:a6:9a:c3:d7:7d:c1:31:01:4e:c0:cb:af:24:2e:64:
                    bd:fa:e8:25:7e:f7:d2:48:32:d0:2b:d0:fc:d4:f9:f2:
                    a1:2d:de:5d:72:e4:aa:41:88:8b:93:89:87:26:01:b9:
                    d3:2a:76:4b:c5:91:66:a3:a5:27:5c:1b:65:e9:d7:5f:
                    69:d8:99:f0:84:f6:d2:0a:e7:03:59:02:3e:7b:4d:2b:
                    30:cf:c8:71:be:b5:6f:94:20:bd:64:8c:7f:ae:7a:41:
                    88:bf:c1:e5:3b:95:42:97:09:25:18:88:4a:68:66:b7:
                    c4:36:3d:23:00:89:85:9f:bd:01:bd:70:e1:58:17:fc:
                    0b:2e:b8:ee:5d:f7:f9:52:6f:81:ff:3c:5c:6b:e7:4b:
                    a0:42:52:4f:0d:93:a6:81:d7:a8:09:98:3a:02:4c:0c:
                    62:55:06:5d:67:be:b1:8f:79:57:16:ba:68:d1:fa:a2:
                    99:d8:3f:df:90:25:7c:03:35:c8:9b:38:4c:1f:5d:5e:
                    87:c8:00:43:84:78:2d:b3:67:e8:93:50:48:75:4b:a4:
                    d8:97:fd:53:82:4b:73:90:c3:8d:d0:58:16:cc:35:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:95:c3:d5:e0:1b:64:01:2e:d7:58:f5:bb:e3:56:a1:
        97:10:6b:2f:ef:2a:e0:65:2b:dd:9d:e1:10:13:86:af:
        7f:d2:47:39:c2:50:73:ab:da:0c:34:db:f6:d3:b8:69:
        8b:91:c6:db:b1:b5:77:42:fd:bc:98:9e:86:c9:f1:ab:
        4b:48:bb:1a:d8:ef:39:90:05:b2:90:e0:e9:57:f9:3e:
        50:ca:39:23:0d:9b:f2:08:97:8a:a7:a5:39:22:d0:e6:
        f9:4e:24:ec:d6:dd:bc:fb:26:4b:9c:d0:a2:61:08:03:
        f6:d2:4e:4d:dc:d3:c5:f1:80:d3:78:05:0c:6c:c0:ce:
        eb:8b:3d:fd:c0:f0:bf:dd:db:df:3b:73:1f:f1:65:1e:
        bd:c5:9a:ad:51:26:6e:ff:98:2a:76:20:9e:6b:51:28:
        75:af:79:9b:73:b4:c6:36:8d:2c:cf:1a:88:1a:ec:6d:
        d6:d3:f6:10:e3:65:a6:35:8c:3b:a1:cf:62:f7:3b:90:
        b6:8f:dc:62:1c:1b:b5:74:8e:0e:41:f8:bc:7b:8a:c3:
        e2:4f:fa:26:55:c8:52:43:2f:8d:f7:0d:5c:a2:b2:2e:
        24:5c:8f:22:4d:b5:49:17:0f:dd:aa:07:fc:3d:39:2d:
        58:3a:14:e2:82:16:d3:78:be:87:8b:50:5c:39:d3:3d
    Fingerprint (SHA-256):
        56:D1:0A:3B:15:9F:80:3B:6E:B5:A7:5E:40:D7:89:7D:73:CA:38:71:5F:CB:77:33:95:81:7F:D0:2D:13:3A:5D
    Fingerprint (SHA1):
        2F:5A:FB:61:95:A0:C4:75:D9:BC:13:51:2B:66:A0:6C:8E:35:8B:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11397: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #11398: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155173 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11399: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #11400: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #11401: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155174 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11402: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #11403: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #11404: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155175 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11405: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #11406: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #11407: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155176 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11408: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #11409: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #11410: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155177 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11411: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #11412: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #11413: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155178 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11414: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #11415: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #11416: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155179 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11417: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #11418: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #11419: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155180 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11420: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #11421: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #11422: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155181 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11423: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #11424: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #11425: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11426: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502155182 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11427: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11428: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502155183 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11429: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11430: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502155184 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11431: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11432: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #11433: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #11434: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11435: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502155185 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11436: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11437: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502155186 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11438: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11439: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502155187 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11440: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11441: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #11442: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #11443: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11444: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502155188 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11445: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11446: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502155189 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11447: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11448: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502155190 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11449: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11450: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #11451: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #11452: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11453: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502155191 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11454: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11455: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502155192 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11456: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11457: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502155193 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11458: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11459: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #11460: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11461: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11462: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502155194   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11463: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11464: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11465: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11466: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155195   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11467: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11468: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155173 (0x1dee47a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:13 2017
            Not After : Mon May 02 15:53:13 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:93:2e:0a:a3:51:98:2c:c1:37:cf:0b:ed:b6:52:87:
                    4a:37:2a:ad:72:3d:dd:70:c5:03:e1:14:7d:49:8f:42:
                    35:73:01:22:cb:4b:db:3f:46:d7:a7:59:f9:af:37:88:
                    ce:79:a0:50:c6:7f:2b:85:85:8d:d4:0d:63:0a:be:e7:
                    f9:77:35:43:b3:16:51:32:6e:eb:c2:25:8c:b5:da:bc:
                    63:90:ef:bd:27:42:25:8d:45:b8:7a:a3:6a:10:a0:95:
                    e4:d4:df:2b:c6:af:f0:3d:6d:a3:cf:df:c0:47:d6:9b:
                    41:fd:02:f9:cf:3d:f2:c2:2b:54:6e:f2:c5:85:63:cc:
                    00:ca:8d:01:9b:58:87:d6:59:d9:21:7b:cd:0b:6c:6c:
                    34:71:d2:23:79:01:e0:07:53:d2:23:32:c1:a5:f9:c2:
                    55:b7:15:41:7e:79:78:23:7f:1f:36:f1:fe:49:da:99:
                    6d:f7:3e:df:79:59:73:59:31:2c:0d:3e:de:96:45:52:
                    b1:dc:a3:2e:08:31:f5:5b:24:85:f9:e7:aa:08:f9:a3:
                    d8:fe:db:62:b0:7e:58:98:dc:ab:70:82:6a:cf:41:c3:
                    d6:55:56:ea:d7:6f:02:09:37:6f:b0:9f:4a:a2:c8:03:
                    95:1a:61:29:ba:96:93:ba:d9:4a:d0:90:5e:42:4b:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:d7:48:7c:c2:09:3a:72:2e:1a:4b:b8:a5:63:f8:28:
        ae:e2:f8:17:d7:b3:27:e3:c8:40:53:d3:bc:1f:80:e5:
        55:81:af:32:81:3c:37:ac:e7:40:0d:4e:7a:1c:73:5c:
        ef:67:bc:0c:22:84:5a:8c:c1:20:be:63:61:a2:ab:3f:
        f5:d8:ab:11:a4:ee:23:5b:d7:00:24:a1:8b:05:e1:49:
        51:af:65:ce:29:9a:12:ad:11:d5:c5:5a:f7:98:bf:ec:
        6e:bf:5d:1b:da:b1:47:09:5b:6d:39:d0:96:3f:a1:3e:
        2f:67:8f:49:cb:05:06:05:fd:b6:59:05:9d:75:78:c0:
        5f:6c:0d:92:b7:1d:06:33:f8:9d:06:4e:d6:c4:7e:7e:
        15:eb:eb:84:3a:6e:e4:22:58:04:95:3a:ad:41:f7:8e:
        6c:be:b0:6f:da:87:38:7c:f6:6f:cf:f2:5f:01:a0:8d:
        df:e0:42:4b:1f:c8:78:e5:dc:58:73:10:d4:e9:8e:e3:
        f1:0c:9a:f5:6e:e6:83:b2:c2:c1:24:12:49:d6:ab:77:
        7f:50:74:4e:fe:64:78:b9:5e:0b:58:31:6d:45:27:8d:
        e6:02:93:3d:f8:11:04:84:4c:76:d8:cf:f0:d3:0b:58:
        f3:bc:c9:d1:e0:fe:37:b8:76:7c:a2:99:2d:d7:1e:fc
    Fingerprint (SHA-256):
        AE:C4:86:44:68:C2:EE:29:70:30:E9:90:98:69:69:23:62:3B:61:42:FB:CE:CD:A0:57:62:48:2F:D7:94:94:A2
    Fingerprint (SHA1):
        52:37:88:BD:3F:74:97:77:75:8C:28:88:1A:43:E4:F2:DA:32:81:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11469: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155174 (0x1dee47a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:53:14 2017
            Not After : Mon May 02 15:53:14 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:88:28:4e:6b:42:68:92:31:9f:f2:69:91:d8:f4:56:
                    8b:98:7f:52:e5:4e:3b:e3:f2:31:8b:11:91:14:71:be:
                    57:69:9c:d6:12:b5:45:1b:10:1f:e2:01:03:ac:65:e7:
                    ae:69:0b:dc:64:5e:26:d4:f7:c5:a9:ec:51:1c:87:f3:
                    69:68:ab:ed:c4:78:b1:88:1b:67:3a:43:e3:ee:7f:c8:
                    22:6d:03:d8:76:9f:82:50:75:06:ed:dd:41:0b:42:1a:
                    7e:9a:c0:b5:c0:26:18:1c:ca:8a:d4:70:4a:75:2a:77:
                    a0:11:80:26:2b:48:f5:a2:05:93:bb:9d:86:b3:f9:f6:
                    9c:05:1c:e2:7c:49:1e:4a:85:c7:1d:ca:27:bd:14:f0:
                    43:b6:fc:e9:5f:53:82:3d:b2:c3:d7:a5:1f:19:68:b6:
                    38:96:bd:e6:6c:eb:21:9a:08:74:cf:8b:e1:a4:5a:5b:
                    66:74:d2:e9:31:5e:52:80:73:18:02:cd:51:16:e1:a8:
                    23:f3:32:0f:cc:42:68:36:b6:14:c7:fe:b2:4b:ff:29:
                    21:64:a3:0d:b7:4e:1c:0f:77:38:0d:9f:d3:2d:9e:33:
                    bd:ba:10:b3:5d:29:b1:40:88:5c:b2:13:ce:3e:28:9b:
                    b1:cb:aa:46:a9:a7:bb:dd:be:87:bc:cb:a7:cf:70:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:fa:55:12:d7:bf:af:25:f9:09:fb:bf:bd:26:5a:79:
        b3:40:58:79:7a:eb:34:aa:f8:3e:17:45:67:aa:01:bb:
        4f:68:9e:e7:90:59:0f:b6:57:78:81:8e:66:3d:b0:6d:
        bb:5e:30:2b:9d:1f:1d:c9:4b:4f:cc:b5:e0:85:96:de:
        b1:d1:54:63:75:64:d0:a2:23:21:aa:d1:92:29:88:8f:
        97:06:c0:75:b6:3d:5c:5d:ac:4f:16:8a:d3:cc:b7:23:
        9b:bb:c5:69:d5:22:b0:a0:8c:6f:63:c5:66:83:9d:df:
        38:1a:55:e6:61:73:fd:28:c1:11:ef:9f:42:2c:55:2d:
        3c:8a:c2:8e:80:5f:26:29:26:79:dd:93:10:49:04:90:
        e3:7f:da:83:09:7a:ca:f9:f5:4c:80:b5:9b:df:be:97:
        d4:ff:b6:65:51:4b:34:00:85:04:56:99:b4:f3:3a:0f:
        f1:dc:55:d6:06:43:74:12:1f:36:e9:2a:cf:31:b9:01:
        f7:db:2f:fc:2b:34:3f:c0:11:6a:1b:1d:1e:6a:82:f7:
        06:3b:52:99:08:a0:3f:34:5e:8c:b2:a1:f1:ff:a3:8f:
        ac:d3:d3:dc:c0:5d:96:04:41:be:b6:53:3b:e4:65:d9:
        f7:ca:de:ab:8b:6f:30:f7:8f:4d:6b:83:ed:95:e8:9f
    Fingerprint (SHA-256):
        B8:1D:47:78:74:90:88:36:76:63:6B:80:F1:CC:1F:7E:75:75:6D:BC:6F:64:D8:15:65:36:82:F1:C9:DE:79:30
    Fingerprint (SHA1):
        52:8C:65:0C:5B:3E:E7:95:AD:99:4D:90:11:AE:CF:39:B5:5E:F8:03
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11470: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155175 (0x1dee47a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:53:14 2017
            Not After : Mon May 02 15:53:14 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:2a:db:ec:35:e1:a7:3a:1a:6e:cd:ee:3d:2c:08:45:
                    94:9e:67:d0:ea:60:29:c3:f0:03:bc:9c:40:39:f6:5e:
                    a7:57:47:01:c1:09:51:31:bb:a8:e5:d1:11:b9:ae:d0:
                    78:e0:ae:cf:52:e7:37:c6:44:03:93:96:02:29:4d:65:
                    20:17:b3:38:96:56:7b:74:fe:c9:24:68:64:d3:ea:38:
                    f8:d8:65:9a:f3:8e:09:05:6a:95:4d:32:e4:1f:a0:1b:
                    d4:93:4d:11:c9:aa:54:38:19:50:82:d2:27:06:68:6c:
                    c2:67:26:a1:92:f8:a1:f2:78:ae:4c:07:0e:1b:af:e5:
                    07:dc:ca:bc:2f:6a:e8:52:27:bd:ab:5a:d2:fb:51:16:
                    43:12:9d:ae:17:c2:18:62:93:e2:2f:56:93:ae:ab:86:
                    42:22:e4:0c:6e:00:c6:b3:98:8d:1b:55:8b:86:41:60:
                    35:81:54:02:5d:cc:23:c5:6c:e8:df:fb:a3:c6:cc:03:
                    a7:cd:a0:99:42:64:83:8e:3e:fb:1f:98:68:16:75:1a:
                    93:f2:a9:80:47:9f:f4:fe:0e:eb:89:b0:bb:00:9e:83:
                    a4:bf:e7:76:96:9c:dd:17:5c:5b:11:cc:c4:69:63:fe:
                    1e:61:68:eb:93:16:0d:df:53:65:76:10:5f:c5:d5:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:2f:27:b2:65:91:72:86:19:25:24:03:8e:da:42:bc:
        fe:cc:53:8e:74:46:0b:5f:02:98:62:33:b1:1a:cf:09:
        2e:8f:b6:ea:72:26:e9:e1:d0:d5:5f:b8:7f:36:ee:02:
        f0:fd:65:37:0f:6e:89:83:b9:9a:14:67:4a:bd:aa:00:
        3c:c0:82:0e:7e:b2:33:d5:3b:de:76:89:b0:ef:6c:ab:
        d1:4e:de:11:79:5b:d9:95:11:54:2d:fc:15:5e:cb:80:
        25:ff:64:0b:cd:83:bd:78:bc:65:04:91:2b:a1:fb:45:
        87:f8:f5:c4:14:cd:1a:ff:50:dc:36:2e:13:7f:86:46:
        a4:e6:be:08:36:82:a2:ba:69:a6:98:9e:e8:c4:88:25:
        77:11:1e:6a:4e:08:5d:63:eb:7c:19:04:aa:3a:c3:a3:
        1d:cf:56:f3:30:e4:3f:9d:1f:9d:de:1e:19:7d:88:7a:
        1a:aa:9c:2f:4e:9d:eb:f5:32:00:9c:5b:26:1d:77:1e:
        c0:3b:6b:48:2d:a1:25:07:c1:d9:01:22:2c:ba:72:b7:
        a0:e5:7b:0f:c8:df:c0:39:1b:56:bc:a4:ca:26:29:41:
        c2:a4:9b:b3:3f:68:3a:8a:d2:5f:b7:f2:ba:69:33:7a:
        6e:fe:68:5e:f7:ce:f8:09:80:33:ac:1b:46:a6:ac:c8
    Fingerprint (SHA-256):
        1B:05:D6:0E:7E:E2:5B:04:34:9F:9D:1B:05:FE:67:C1:27:61:7D:0A:99:94:7E:88:4A:1B:8C:9D:5E:B6:D8:C7
    Fingerprint (SHA1):
        3F:2C:C4:31:23:2F:BB:9A:65:0A:27:25:E2:65:69:0C:62:FD:D2:D2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11471: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155176 (0x1dee47a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:53:15 2017
            Not After : Mon May 02 15:53:15 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:cc:3c:7c:bf:23:76:aa:fa:82:d0:44:96:1c:79:b9:
                    c0:e5:04:1d:c2:78:b2:c7:1f:f8:ff:ca:72:28:48:9e:
                    84:20:15:ae:c4:52:29:e4:26:49:db:3e:83:75:97:85:
                    3e:a7:14:71:f7:54:24:5e:f0:33:97:1a:22:9b:ef:0f:
                    5b:b1:8e:06:c9:37:a1:5e:79:68:13:46:f3:3b:34:53:
                    9a:5c:62:c5:5b:be:c1:d6:72:7d:89:8f:65:ff:54:b9:
                    d9:4e:49:a8:b2:fe:b3:08:df:c0:d7:56:a6:56:17:30:
                    27:ff:eb:a6:17:97:41:6e:64:23:68:4c:63:d9:aa:4f:
                    f5:9a:8e:39:de:51:70:10:3a:30:6f:2b:fe:2b:44:f8:
                    10:9b:0b:d1:46:73:dc:1c:35:04:fe:54:a7:d2:d9:17:
                    84:a5:51:76:b7:f7:93:0e:e6:78:c2:8b:fc:da:9c:7c:
                    66:d3:bd:89:a8:44:55:68:c5:94:28:95:38:aa:77:65:
                    bf:fb:0a:0b:a9:dd:2b:fd:cc:a1:4e:8b:a7:a3:01:ca:
                    3f:8b:4c:3a:ff:2f:fb:5d:65:66:e2:a1:08:d6:b3:0e:
                    d8:a6:53:25:c1:0f:5a:78:d9:17:27:af:22:5a:88:94:
                    23:fc:4e:b3:5a:8f:b1:03:3f:1f:bd:6b:27:d0:0e:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:84:eb:6e:07:ef:81:04:0c:93:f8:34:64:52:44:4f:
        ca:43:fe:c5:16:21:ed:0f:6e:9f:68:49:fc:67:4d:50:
        0d:06:26:d0:f9:bb:0e:51:af:c0:ca:65:1d:2f:48:48:
        d3:3a:13:2b:c9:8e:ef:72:ea:c4:32:f8:0d:9a:6a:e5:
        49:57:b6:59:2e:29:f6:4d:33:c4:5c:1f:1f:75:b3:72:
        17:8e:c7:43:9f:2b:30:cb:5c:33:08:6e:90:d2:27:b2:
        e3:23:fc:cd:dd:a7:14:a4:33:f2:d3:58:bc:b3:fe:6f:
        65:14:30:0e:99:5d:1f:d9:24:f5:3f:22:5f:f9:e2:c4:
        8d:29:8a:02:b7:aa:e5:47:ee:8d:ef:29:7d:f9:7a:d1:
        b7:2e:ac:db:b1:9f:8d:4c:2b:2f:ad:4b:96:b2:89:30:
        1f:a0:ec:60:05:3c:9a:bc:77:13:41:7e:84:e2:87:7d:
        11:b9:e3:2e:06:e7:33:84:f8:c1:02:93:e6:65:19:7b:
        8a:66:c1:1c:3f:2b:3e:5a:99:fc:84:ce:f8:bf:04:15:
        e1:d2:fc:5d:d5:ed:af:b4:50:67:fb:db:e9:c9:2b:a8:
        8e:34:26:14:02:a8:c5:ff:77:1a:59:7a:ab:a4:32:d2:
        db:a5:b9:3c:db:81:58:a0:6b:f1:01:d7:42:22:43:2a
    Fingerprint (SHA-256):
        EC:AE:47:0D:1B:E2:E7:A1:4C:1D:A7:66:F1:47:F7:02:38:C6:80:43:CB:48:8A:26:90:D7:DA:D7:DE:E6:5E:14
    Fingerprint (SHA1):
        0D:1B:DF:17:A1:09:44:37:3F:7E:11:0D:E8:B4:F2:22:3A:26:97:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11472: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155177 (0x1dee47a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:53:16 2017
            Not After : Mon May 02 15:53:16 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:bb:d6:ff:ea:08:0a:af:7d:c6:53:c0:a0:3b:ce:47:
                    50:0a:0b:1c:35:d5:35:3f:26:e9:1d:59:a5:48:46:ae:
                    37:b7:7f:b9:b9:bc:8f:ba:ab:fd:6d:46:5e:6e:fe:d0:
                    f3:e0:52:10:d8:28:55:44:e5:fc:06:6b:6e:38:05:0a:
                    e4:99:3f:0b:3a:97:e1:e9:6a:de:41:fd:7b:87:08:9c:
                    de:f8:82:5b:3b:a9:f4:aa:f4:50:7c:80:ba:fa:14:ef:
                    01:58:57:27:47:91:95:51:31:25:62:e1:d4:94:39:f4:
                    18:73:0e:38:59:54:4e:5f:12:3f:c3:95:fe:ae:b0:e5:
                    1e:fc:b8:27:a2:52:16:97:89:3e:52:1c:e6:ba:0e:e6:
                    b8:0a:79:ba:75:98:44:8e:02:6b:55:90:60:ad:4d:3a:
                    ea:34:09:d5:72:41:ee:c7:0c:63:68:87:24:74:d7:8f:
                    d6:b8:bc:9d:f0:32:8b:99:eb:7c:a1:13:41:db:c8:63:
                    cf:db:2c:83:b6:c5:b3:71:5b:e2:f0:39:74:49:12:d5:
                    2b:00:7f:85:bc:58:84:ea:80:c7:88:5f:e2:5b:5f:3d:
                    e3:f8:d8:32:5a:5d:92:f3:c4:3d:e3:0e:74:c1:5e:7a:
                    92:d1:f1:30:8a:1c:f5:ac:7a:c2:db:d9:ee:30:8d:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:b6:d9:88:22:80:26:e0:e6:0d:d7:2d:62:72:0a:c6:
        f0:fc:73:1f:6a:eb:c9:6d:fe:c3:f2:eb:71:bd:fe:a5:
        9f:20:8a:2a:ea:3e:a7:41:c9:0f:68:a8:24:ac:a9:cb:
        50:57:df:af:15:11:60:0d:b2:63:17:86:00:b4:99:1f:
        94:ed:6b:da:9b:f2:8d:3b:35:cc:a2:32:f9:ff:62:3a:
        b5:ba:51:07:9d:f3:80:77:c4:19:be:01:b7:7f:56:2f:
        05:6c:59:10:e0:e6:86:c0:58:86:13:2e:91:a6:22:b7:
        82:7f:fb:3a:02:df:6b:96:b9:14:7d:fe:9b:45:0f:0f:
        74:e8:6f:74:db:e8:f4:6c:3b:51:60:45:bb:4d:3a:78:
        16:9a:d2:95:73:73:30:92:13:96:f2:3d:0f:f7:63:8e:
        d2:cc:62:ef:1c:e5:f3:7b:5c:04:d2:99:96:c8:04:d8:
        47:0a:d6:d9:ab:07:be:74:38:0d:95:bf:73:b9:bd:3d:
        cf:45:33:de:bd:37:93:42:f5:c6:45:7e:76:3f:e8:0c:
        85:08:e2:5e:f3:65:88:01:c1:1c:3e:16:40:e5:6a:88:
        8f:6f:29:7d:a3:76:67:26:04:83:d7:53:c2:51:a1:b1:
        29:36:0f:95:01:7a:33:e3:0d:9b:2d:6c:2c:ea:d2:5a
    Fingerprint (SHA-256):
        55:CF:E2:76:13:56:78:C2:F8:42:97:EA:78:C8:83:CF:59:44:07:82:4A:5F:AC:50:28:37:BE:33:8D:95:41:3B
    Fingerprint (SHA1):
        63:F3:79:B5:FF:D0:E5:A9:A6:64:C5:BD:89:AA:56:74:A8:FB:2D:AD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11473: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155178 (0x1dee47aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:53:17 2017
            Not After : Mon May 02 15:53:17 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:0a:aa:26:43:ec:06:53:90:45:09:91:c2:3e:65:5a:
                    3d:be:68:f3:0e:8c:a2:10:88:15:05:73:db:9c:1d:d9:
                    b7:87:16:3b:7e:32:fe:ac:0f:69:52:70:69:15:96:47:
                    de:a1:6c:35:0f:b9:11:83:47:9b:5b:cf:b6:e4:5a:ad:
                    16:3c:a4:6a:1d:ea:86:49:f5:05:68:57:ef:a3:67:af:
                    d4:f3:1a:df:85:88:b9:c3:36:8f:a2:e7:9b:5a:e4:94:
                    0d:b3:d7:71:a6:c5:5d:bd:e1:3d:35:c8:6e:fc:d4:c1:
                    b4:25:15:b5:1e:5f:8c:21:5c:c3:a7:a4:f4:a7:5f:20:
                    b5:ac:a2:08:0c:df:64:b4:1e:02:d0:40:78:94:71:6d:
                    9d:03:43:a9:5d:e6:cd:85:cc:f0:46:cc:fe:e8:2d:3e:
                    dc:8f:ce:af:39:3f:32:38:70:3c:9a:b2:68:ae:dd:6d:
                    d6:cb:ea:a0:45:a9:e5:46:34:d9:08:13:84:cb:60:68:
                    f6:3f:ce:23:eb:5c:f9:95:ca:f9:ab:f8:44:c8:d7:56:
                    03:21:5f:7f:1a:7a:ba:a4:fb:53:af:28:fd:d0:b0:0b:
                    2c:de:39:b9:96:7c:72:00:09:bd:e4:d8:15:83:35:9f:
                    a5:3f:a6:48:34:fd:45:86:34:99:7c:da:3a:04:8f:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:ba:d6:3c:ab:76:14:02:62:e0:e4:e3:ce:de:6d:3d:
        fb:50:41:74:a0:d3:2a:1a:7f:64:db:be:c6:e7:c2:94:
        ca:57:d3:aa:08:19:5a:c6:ff:b0:86:d6:6d:07:aa:52:
        45:5b:35:e8:4d:82:dd:97:9f:b1:d4:49:d9:4f:f6:db:
        29:45:79:c2:39:89:63:26:69:ce:ee:98:4a:46:f2:36:
        66:2f:91:a5:9c:a4:6e:04:e1:f9:38:41:c8:07:c5:96:
        9a:46:e7:ec:6e:8d:ef:fc:7d:58:02:e4:b0:43:c6:85:
        a8:3b:98:aa:0a:dc:64:a6:c3:06:e9:60:e8:51:b8:4c:
        a0:4d:62:09:44:34:a0:98:a0:80:d9:0c:ae:80:4e:11:
        0f:85:8d:f7:a3:f2:f3:99:d3:23:88:3c:32:58:9b:8e:
        b2:2c:e3:54:be:13:19:5a:d5:4e:a2:a6:f6:37:3f:45:
        80:2d:82:29:53:dc:1d:0b:ff:3b:b8:fd:66:d1:96:8d:
        be:c9:a3:02:dc:7c:3d:e4:70:a4:56:35:53:4a:07:20:
        8e:8b:cf:b9:74:19:07:73:14:ed:fe:5e:76:4b:a6:17:
        02:ef:1f:a9:ab:41:dc:c2:20:8b:2f:0e:a6:5b:38:63:
        c6:57:c6:6a:18:4f:3d:6f:9b:2e:b9:e9:89:77:7c:ce
    Fingerprint (SHA-256):
        E4:AE:CF:E6:0E:74:5F:CF:FC:49:57:69:E5:97:F6:68:65:42:E8:DA:54:F0:F8:6F:27:13:B2:04:85:77:B7:D2
    Fingerprint (SHA1):
        2B:1D:4F:14:F5:A7:07:7E:9C:4E:84:17:A9:AE:F7:8C:0C:2A:17:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11474: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155179 (0x1dee47ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:53:18 2017
            Not After : Mon May 02 15:53:18 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ee:a4:ac:ae:29:35:96:8b:57:16:36:82:b8:07:d8:
                    ec:e0:b9:ce:0a:fa:03:c6:86:9a:43:f3:3f:e1:9e:90:
                    b8:a4:1e:95:23:83:e0:fc:98:36:6f:11:0a:e4:76:60:
                    21:5e:9d:03:fc:d4:90:8f:96:27:b0:54:c1:d3:ae:b2:
                    66:47:43:44:71:fa:d5:aa:26:83:46:38:74:3f:2b:1f:
                    96:58:b3:f2:93:d4:ec:25:fa:35:76:19:f5:ea:f7:d5:
                    4d:65:e4:59:d7:e6:d3:a1:74:1c:a9:45:d6:e6:15:de:
                    c0:e1:b8:f5:27:f6:61:a0:f3:cf:c2:0b:56:04:88:c1:
                    13:69:86:02:64:9a:90:5e:36:df:88:08:a5:3a:35:34:
                    4d:0a:5b:2e:25:a5:bc:be:db:fc:5b:65:55:90:d4:49:
                    6d:7c:1d:0c:b8:93:72:81:a5:b1:cf:6a:6c:d8:f3:2f:
                    a7:c6:c4:4a:82:fc:64:0b:b1:7a:a3:92:e7:b9:5f:ae:
                    97:c0:5b:17:60:a3:36:5c:00:fb:ec:4e:e7:04:ba:e7:
                    bd:60:24:2d:b4:31:dc:a0:c6:69:57:61:63:26:2c:40:
                    d5:89:2a:be:1d:0e:9a:d5:47:6a:da:37:10:a4:be:55:
                    48:3e:25:b0:2f:dc:f7:f3:0b:d6:23:ca:23:0b:3e:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:1c:23:c6:44:76:0d:d6:30:a4:84:b8:10:e6:c9:f2:
        c9:7e:3f:df:ba:a6:6c:ab:bc:78:8c:46:a8:55:0e:98:
        cb:1b:d2:15:64:7c:99:63:2f:2a:ce:67:36:83:95:f5:
        76:60:25:db:0b:86:27:55:b9:4a:97:3c:d8:73:60:3f:
        5c:23:d7:44:5f:2b:b8:a8:1d:9b:87:7e:58:24:cd:f1:
        d4:05:f9:75:98:a5:6d:90:3f:da:20:7f:9d:65:95:07:
        b2:7c:b2:65:3e:e4:02:d8:3d:18:77:bb:b0:64:56:8f:
        c4:2c:19:59:e2:16:18:71:46:63:69:d2:2b:02:fa:a3:
        4c:04:30:e8:4f:5d:39:c2:ae:c6:fc:5a:19:b9:44:9e:
        68:e2:5d:60:0b:84:d5:51:84:a7:07:73:c9:b3:c5:38:
        e8:d7:ec:95:9d:0e:8f:b0:77:8d:18:2b:77:6e:be:e0:
        ec:72:80:b3:a9:8e:63:af:70:0b:55:10:3e:cc:79:4e:
        42:1c:c8:d3:6d:3e:b7:41:6f:66:cd:51:96:6e:d9:e9:
        42:3d:e9:9a:d3:86:a7:ce:bc:03:00:52:1c:c0:0f:ed:
        e2:54:d8:ab:98:37:7d:a3:37:0e:df:17:33:c8:1e:48:
        7c:1f:c6:8d:45:fa:d8:be:85:cc:43:1a:5c:c9:41:73
    Fingerprint (SHA-256):
        C0:B2:2B:3E:7A:72:B6:AE:C5:F9:2A:D0:03:CB:05:AC:EA:47:D1:ED:EA:2B:0B:4F:AD:D1:36:1C:B5:F7:BF:F5
    Fingerprint (SHA1):
        97:BD:F3:89:6C:08:F1:FA:F3:D4:33:DE:ED:C8:5F:37:91:B7:75:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11475: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155180 (0x1dee47ac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:53:18 2017
            Not After : Mon May 02 15:53:18 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:e6:07:4b:e1:70:1d:29:21:74:56:44:63:25:98:37:
                    87:58:07:40:1f:61:96:89:71:f6:9b:c9:2e:92:99:02:
                    cb:fc:11:9f:64:4b:3e:80:0d:d0:63:d3:8b:f8:60:43:
                    94:6a:72:49:e0:18:86:cb:c9:64:24:ea:21:7c:cb:a8:
                    0b:d5:9a:7f:16:fb:1f:c2:17:25:86:c0:43:55:14:04:
                    3c:f8:80:ca:67:3e:38:21:80:06:b3:b7:32:32:5f:c8:
                    3c:ae:6c:bd:99:bc:f7:ea:82:bf:1e:21:56:1e:d7:cb:
                    d7:17:da:ce:30:09:58:a7:94:c2:fe:9e:e5:85:45:4e:
                    8a:29:92:f3:ff:af:e5:d5:aa:d3:9a:5c:69:31:d9:28:
                    a1:31:29:6e:df:40:58:a6:5e:97:29:26:22:37:f7:b4:
                    81:1a:55:1e:b4:6c:b8:c0:4b:fe:7a:6b:44:e7:c2:cd:
                    7c:84:ef:3c:4d:0c:fc:94:69:aa:4c:83:dd:48:1c:94:
                    67:2d:87:31:11:19:65:89:58:23:7b:41:18:15:bb:f3:
                    b4:32:e2:91:40:21:a9:4c:1a:1d:40:07:c5:6f:43:65:
                    b4:89:e5:ef:d8:2d:e4:ba:ff:8a:ec:69:e3:7c:7d:b3:
                    d8:de:78:95:4c:e8:b1:9f:6d:4e:bb:b5:73:f5:63:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:ef:77:80:aa:d1:9f:c0:35:e5:4a:9b:fa:ef:07:23:
        17:8d:06:e8:d2:e9:f3:d7:88:91:87:7b:b3:08:fd:66:
        1f:82:45:79:e7:1f:e1:9f:af:44:dd:44:2d:df:49:72:
        1c:fd:09:d4:7e:d3:7c:cf:a2:fa:73:dc:ff:50:94:00:
        65:49:cd:88:5b:e4:d8:4b:93:68:82:4e:5f:4a:2a:55:
        9f:54:4f:c9:77:2c:1d:c7:a8:29:05:e9:31:aa:38:2c:
        8a:e6:0c:e2:fe:61:c0:72:45:20:70:38:72:3f:b0:fa:
        2e:61:cc:f7:df:da:ab:77:06:5c:aa:3a:2e:d3:c3:6e:
        f9:dc:d2:44:85:c7:78:36:9c:6a:03:6e:ad:19:6b:c2:
        55:38:7f:5c:58:e3:10:d4:54:f4:64:35:1a:db:b5:66:
        15:29:97:c5:ed:f7:3c:0d:1b:04:ca:cd:3a:22:ad:90:
        d7:f1:7b:83:47:aa:64:f6:0d:c6:1f:68:8e:55:7e:a8:
        99:d5:91:bd:0c:23:87:d7:18:fe:5d:2e:b0:d9:b4:12:
        aa:02:f6:c8:a6:9e:5e:b5:6e:32:6b:13:7c:46:18:77:
        e3:73:83:f6:53:e6:6c:4f:6c:9b:17:51:13:c6:78:d5:
        61:e5:70:53:60:bc:87:a0:6b:b3:e7:61:04:7e:c9:24
    Fingerprint (SHA-256):
        37:AF:51:1F:8A:E1:71:A8:3E:75:33:D8:01:5B:DE:B9:FD:1D:A4:69:79:35:F4:B0:A8:40:16:E9:4F:BF:EA:B3
    Fingerprint (SHA1):
        7C:49:FD:B2:8D:83:57:24:F1:17:72:9F:BC:AB:1F:8A:03:A0:13:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11476: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155181 (0x1dee47ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:53:19 2017
            Not After : Mon May 02 15:53:19 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:3f:30:c0:96:a3:47:60:49:a8:0b:57:e2:ca:d5:71:
                    fd:7a:bc:b7:3d:9a:08:49:26:97:92:07:0e:0f:81:ca:
                    21:d4:44:fa:87:74:0d:75:9c:07:9d:31:e4:08:2d:25:
                    fe:58:4c:88:2f:6a:55:d2:f2:58:06:2b:a8:fe:2d:f9:
                    84:de:44:46:df:42:d7:e7:93:e7:4f:88:b8:f9:5d:0e:
                    80:ba:5e:80:3e:0e:f2:fa:3f:bd:3b:67:d6:7b:e7:49:
                    99:93:29:52:31:22:5e:11:5a:fa:36:0c:50:03:02:07:
                    53:83:26:84:62:71:3e:d1:e0:e4:3b:21:7e:08:f5:ba:
                    34:a0:48:05:d0:6b:13:a2:5e:a2:de:98:3c:d6:a6:95:
                    f0:f7:e8:1b:45:ff:f9:03:6f:5e:79:e9:2a:da:db:2c:
                    77:a2:4d:bc:ad:4a:8b:69:f2:de:00:6e:9d:f4:82:a1:
                    4a:ab:c2:85:e1:5f:87:ab:14:31:bb:4a:b0:3e:39:84:
                    6a:85:13:c5:d3:ba:a9:d1:0b:83:9e:16:72:1e:38:42:
                    48:21:bd:a6:27:82:73:6e:43:e0:fb:9b:3b:d0:be:d2:
                    e2:f7:1f:61:c1:e4:6c:8d:a5:d4:ce:93:e0:29:91:a7:
                    e6:09:8c:e8:ec:cd:3c:ae:d1:23:cd:7c:01:9a:ce:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:ce:97:50:6e:d0:75:e8:f9:a5:d9:9c:85:59:f2:9b:
        fd:4f:82:20:a9:97:02:52:89:c9:31:16:02:02:a2:ed:
        16:92:84:b8:e8:45:d2:00:ef:ae:aa:68:8f:0a:57:df:
        27:4d:17:11:cf:ac:86:c0:92:d3:29:8c:54:75:61:58:
        fa:ca:a8:91:1c:5f:22:88:88:38:38:c7:ed:c1:a0:1a:
        61:92:87:f6:98:ae:71:af:38:83:2a:d4:2b:f0:e2:2e:
        1e:e9:ff:4c:3b:5e:4b:9f:b1:93:15:8c:ed:5b:f6:ef:
        75:c2:4c:0d:29:e0:f1:56:c0:fb:8c:c8:23:51:ba:be:
        aa:e2:9d:11:10:00:25:bd:b2:d4:8d:32:0e:43:f1:23:
        a2:47:63:6f:ae:52:26:dd:d8:bf:bd:16:9e:be:bb:04:
        79:e0:29:c4:21:2a:a2:44:74:15:e8:53:3f:de:5e:a1:
        9f:3c:67:67:c7:5a:ab:bf:bf:24:c8:a4:c7:eb:99:83:
        2f:ae:bd:a9:8f:a3:cc:3f:1d:31:c5:ab:f5:0f:2e:e3:
        fd:3c:8c:7e:d7:ea:26:a2:a9:aa:e1:94:f7:79:ad:e5:
        62:dd:68:d3:60:e0:5a:9f:79:87:25:ec:82:98:34:a0:
        5a:12:1a:d2:23:b1:5f:e6:ec:bc:53:3a:3e:26:4d:41
    Fingerprint (SHA-256):
        E1:25:3E:9A:5F:BA:5B:5D:13:35:93:A9:23:82:8F:FF:D2:FA:57:E3:68:CE:33:87:04:FC:10:4A:05:24:25:1E
    Fingerprint (SHA1):
        C1:D8:6B:24:B0:79:27:FA:44:41:C0:C8:6C:D2:8F:C0:F1:73:DD:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11477: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11478: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155196 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11479: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11480: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11481: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11482: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155197   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11483: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11484: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11485: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11486: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155198   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11487: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11488: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11489: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11490: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155199   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11491: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11492: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11493: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155196 (0x1dee47bc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:27 2017
            Not After : Mon May 02 15:53:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:70:25:59:f3:4f:27:9d:64:df:96:93:c9:54:98:
                    f3:f3:51:7c:42:eb:1e:2b:e2:51:3d:5f:e9:5d:8b:20:
                    f9:e5:82:a8:02:8f:df:21:4d:43:af:f5:88:c9:73:b7:
                    cb:c4:33:7c:c5:59:1a:89:48:4d:4a:90:92:50:12:bb:
                    55:86:1f:9c:7d:05:6a:3d:47:7d:b5:f7:06:e5:f3:eb:
                    07:4a:a0:41:32:c3:74:c2:d6:cf:70:6f:13:81:d2:fe:
                    65:a1:0d:da:9c:75:29:0f:22:71:a9:fc:69:db:d3:2d:
                    5e:c3:ee:64:c9:6c:d5:35:d6:27:c7:ec:b2:e1:71:b5:
                    5f:6e:a0:c3:34:49:fc:3b:7e:d0:5e:06:af:8c:cc:c0:
                    b7:9d:5a:30:7e:53:30:08:0f:8b:37:af:3a:0a:54:c8:
                    49:9d:be:bb:70:83:51:32:0f:80:53:51:c8:69:1c:71:
                    6e:2f:0d:2b:75:89:03:d7:72:4e:09:f0:57:86:82:49:
                    31:f5:66:61:93:66:3b:c5:f0:68:16:9c:bf:af:c2:9c:
                    5e:b9:ce:0f:17:29:d1:6a:eb:4d:59:46:63:b9:b5:c0:
                    39:12:00:2d:86:b6:6b:bc:2e:26:01:3b:c8:eb:8c:d6:
                    f0:b0:b1:87:02:aa:dc:55:1c:13:9a:d2:e7:3f:a9:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:43:74:49:a8:1d:d4:6d:b5:84:e2:94:ba:91:6e:88:
        8c:3a:da:c0:97:2d:c8:e7:0b:12:c8:2c:cf:b1:b3:7b:
        5b:69:f1:8c:66:d6:2d:3b:c1:a6:31:19:87:fa:1a:a4:
        79:8d:98:5e:0c:a7:37:16:48:cf:80:cb:21:3d:63:36:
        a4:7b:bc:fe:59:c1:d7:04:c3:fd:9d:b4:1c:84:0a:5b:
        87:28:0b:a3:35:a9:f5:82:61:e0:40:66:ab:2a:f9:83:
        a8:40:4e:5a:93:cb:a5:5e:02:d5:a9:25:70:bb:7b:62:
        41:9b:e2:fd:6f:f5:01:e2:60:cc:a5:25:a9:52:03:f8:
        2b:a5:9b:4f:1d:0a:43:4d:15:6f:ad:c3:78:b7:57:2c:
        26:1f:56:7c:99:16:9f:9f:c7:7a:f1:4e:af:1b:c3:8f:
        6a:24:aa:46:37:cc:1a:a3:88:0f:f5:8e:5b:81:63:14:
        46:a2:76:eb:ed:49:3d:73:77:02:e6:5e:2a:b3:23:d9:
        0a:87:e6:6c:12:eb:76:98:d7:ce:41:4f:9f:e4:db:34:
        c8:ff:2f:8c:29:19:18:ef:30:87:eb:fd:46:7b:42:2c:
        e9:69:5e:10:6e:77:4c:ac:02:3a:81:3e:c3:97:69:55:
        0a:1b:ee:53:3b:06:7d:3d:a5:7e:50:81:a6:61:de:28
    Fingerprint (SHA-256):
        BA:24:47:0F:27:BB:9B:59:C4:CF:23:DC:89:39:62:BD:7B:96:F3:80:BE:63:22:B7:DE:83:C9:E7:F2:F4:6B:F6
    Fingerprint (SHA1):
        AA:88:0D:43:37:A9:65:C1:52:60:F2:00:29:01:6A:0C:1A:E9:9C:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11494: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11495: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155197 (0x1dee47bd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:28 2017
            Not After : Mon May 02 15:53:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:ec:16:10:34:f2:b3:8c:ab:26:94:a9:ba:ae:41:ad:
                    f6:bc:c9:9b:5c:ca:3d:25:bd:53:ef:f3:f6:d9:9e:9b:
                    e1:6f:eb:b9:3d:86:88:3a:c2:d6:39:1b:b5:a4:04:d2:
                    c7:14:09:c1:45:e6:b6:66:9a:e2:bf:6b:bf:10:09:94:
                    bd:2c:22:ee:da:47:e9:c1:f0:53:87:5f:1d:fe:e2:2e:
                    3c:69:5e:cd:11:d9:17:7d:d1:fb:78:1a:78:e4:c8:44:
                    7e:21:c6:c5:1b:1e:f9:0c:37:4b:94:28:ab:15:9d:4e:
                    de:83:93:c2:71:20:03:2a:47:c8:b9:b9:fd:48:ef:c8:
                    db:44:b5:7d:18:d6:b4:07:5e:0d:9c:fb:87:74:a0:10:
                    98:7d:41:94:ce:ec:67:65:47:bc:04:7d:ba:dd:e9:8b:
                    a4:02:e3:af:6f:b6:34:7c:19:e8:d7:88:a5:a7:b3:a5:
                    a6:57:e9:75:d5:41:1d:e1:6e:29:34:13:cb:6d:b4:7b:
                    46:e8:f5:52:75:b8:57:9e:d7:b2:86:82:de:98:2f:f6:
                    88:e2:e1:f2:b5:28:66:b8:c4:a4:1c:d8:fe:75:0b:45:
                    8b:26:3a:34:88:1a:70:4a:69:d0:f4:46:d1:2d:6d:ae:
                    04:45:9d:9f:28:b8:be:b0:f6:30:97:bd:44:e4:f7:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:38:f4:2e:f9:93:65:67:99:66:d7:2c:36:77:44:5c:
        44:77:d9:c9:68:cf:2c:f5:b9:b6:f2:5c:ea:e2:f3:4f:
        4f:df:68:5b:c6:d1:25:58:bf:0f:35:49:9e:28:91:78:
        18:72:db:5d:ad:35:c6:cd:46:0b:7c:22:49:0e:c6:04:
        34:91:9f:79:78:22:21:b3:f9:bd:2a:3c:73:14:58:54:
        1f:19:52:4a:4b:07:7a:57:de:7c:04:ca:4b:8f:4e:b4:
        e8:72:39:e4:a5:07:ba:0e:67:f4:27:b6:bc:a3:8f:2d:
        7d:3d:6c:e5:80:47:e1:ef:ab:61:7c:11:d1:e3:74:ca:
        4c:66:02:99:c8:2d:99:35:41:fa:de:66:31:08:20:2d:
        57:99:cc:02:eb:af:16:2c:ef:d8:59:cf:37:5d:c9:31:
        02:33:e0:dd:8e:30:7d:58:26:33:73:18:9a:9d:28:17:
        59:e1:26:15:59:02:69:b2:67:41:be:a5:47:4d:77:b4:
        c2:3e:2f:3c:44:3d:6f:3c:40:aa:01:a0:b3:7d:5b:b9:
        22:13:6b:53:8e:5e:02:3e:88:99:f6:6e:b8:fe:02:93:
        f8:15:61:a1:37:6b:9d:09:dd:92:b9:2e:dd:22:de:31:
        c2:62:51:f0:c0:7e:f9:71:8a:86:23:39:e5:02:fc:9b
    Fingerprint (SHA-256):
        C0:EB:0F:2E:FC:AF:60:2C:58:1E:05:52:7B:BB:19:4C:E6:C3:01:F0:8B:33:8E:FE:15:DF:DD:F8:EC:69:81:F8
    Fingerprint (SHA1):
        24:DD:69:42:F4:D3:F6:AD:35:F5:D1:5A:B3:32:60:6D:31:06:36:63
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11496: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11497: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155198 (0x1dee47be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:29 2017
            Not After : Mon May 02 15:53:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:69:bf:69:df:cd:2b:e0:5a:ae:b8:2a:ac:a5:7d:88:
                    84:a4:04:2c:f7:b1:03:d5:c0:fe:8f:24:f7:ea:8a:d1:
                    76:44:9a:44:27:9d:6a:99:7d:d9:0f:b0:b0:85:71:68:
                    29:15:9e:ab:8f:b0:6e:35:60:04:75:cb:95:1a:98:02:
                    a3:22:72:b3:6d:68:fc:2a:23:5f:e5:f4:09:96:d6:7f:
                    a4:92:a0:b0:a3:34:ee:f8:c4:e1:a4:fa:0e:fd:97:81:
                    8a:ac:52:78:fc:ee:de:4a:12:1b:df:36:a9:bf:ce:04:
                    83:ae:cc:82:ca:ba:4c:0e:e8:4f:fd:92:5c:52:7c:02:
                    fb:26:ad:f4:82:42:9a:98:a3:06:ea:4b:b0:ba:55:d8:
                    19:4b:d9:26:6e:1e:6d:da:7d:0d:9d:3c:4b:77:a5:99:
                    59:c1:95:b8:b1:cf:45:34:68:9b:7a:43:74:07:2e:ae:
                    ba:52:0d:f8:1f:66:2c:1d:bc:7a:fd:75:a6:3c:1a:04:
                    03:f3:cf:69:d5:db:ff:ed:67:41:c8:27:43:0d:fa:61:
                    d6:b9:3f:a1:78:dc:d0:9d:c5:6b:8b:8f:60:0d:6f:99:
                    18:10:e5:07:c4:49:90:8c:84:9e:0c:0d:2b:8b:94:23:
                    ee:26:f0:53:34:ec:27:72:a2:9c:8c:f1:e4:bb:fc:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:44:e6:0d:ea:a1:d5:f3:70:49:51:85:e9:87:09:ba:
        77:56:87:05:56:69:34:92:50:70:05:61:18:dc:b1:87:
        5c:14:9b:8b:c0:56:5b:e1:59:af:de:70:8c:18:79:86:
        8f:05:11:45:29:cb:3c:90:d7:91:8e:3a:11:82:78:78:
        58:e7:a1:41:ab:94:fc:fc:db:49:79:62:5b:6b:9f:df:
        be:ce:06:de:4c:b5:c5:eb:27:d7:18:35:2c:6d:02:e4:
        b8:e9:7c:f1:44:04:f6:9b:b0:6b:c6:e6:35:55:2e:51:
        d5:38:1d:ee:1e:ca:9d:87:e3:7f:a6:62:34:10:04:30:
        4f:36:92:20:1f:b9:b4:02:03:3d:2e:d1:80:c2:d2:8f:
        cd:0b:e2:2f:2e:51:a7:98:e3:62:ea:9b:02:5a:23:ea:
        28:be:ed:31:cd:1c:00:d6:21:e0:95:24:71:72:ff:34:
        7b:43:81:33:63:d8:84:9d:61:cc:00:9a:87:11:ff:e6:
        da:49:93:f1:45:4e:0a:04:d9:18:0f:0c:57:51:72:29:
        f0:24:e7:15:30:8d:82:9f:0a:9f:5f:a2:95:9e:de:47:
        84:7b:75:64:8f:8e:7e:18:32:cd:b4:44:61:99:cb:95:
        1c:21:f5:bf:6f:6b:c5:34:62:c8:24:22:06:92:41:c7
    Fingerprint (SHA-256):
        EF:26:4F:58:83:A3:6F:86:D1:D1:B7:07:66:24:42:A0:1B:B5:5A:87:1A:F0:12:92:29:58:0A:27:1E:73:72:6E
    Fingerprint (SHA1):
        D3:E9:BC:87:64:65:B0:94:50:17:F2:20:95:55:65:34:A7:0C:61:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11498: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11499: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11500: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11501: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11502: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155196 (0x1dee47bc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:27 2017
            Not After : Mon May 02 15:53:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:70:25:59:f3:4f:27:9d:64:df:96:93:c9:54:98:
                    f3:f3:51:7c:42:eb:1e:2b:e2:51:3d:5f:e9:5d:8b:20:
                    f9:e5:82:a8:02:8f:df:21:4d:43:af:f5:88:c9:73:b7:
                    cb:c4:33:7c:c5:59:1a:89:48:4d:4a:90:92:50:12:bb:
                    55:86:1f:9c:7d:05:6a:3d:47:7d:b5:f7:06:e5:f3:eb:
                    07:4a:a0:41:32:c3:74:c2:d6:cf:70:6f:13:81:d2:fe:
                    65:a1:0d:da:9c:75:29:0f:22:71:a9:fc:69:db:d3:2d:
                    5e:c3:ee:64:c9:6c:d5:35:d6:27:c7:ec:b2:e1:71:b5:
                    5f:6e:a0:c3:34:49:fc:3b:7e:d0:5e:06:af:8c:cc:c0:
                    b7:9d:5a:30:7e:53:30:08:0f:8b:37:af:3a:0a:54:c8:
                    49:9d:be:bb:70:83:51:32:0f:80:53:51:c8:69:1c:71:
                    6e:2f:0d:2b:75:89:03:d7:72:4e:09:f0:57:86:82:49:
                    31:f5:66:61:93:66:3b:c5:f0:68:16:9c:bf:af:c2:9c:
                    5e:b9:ce:0f:17:29:d1:6a:eb:4d:59:46:63:b9:b5:c0:
                    39:12:00:2d:86:b6:6b:bc:2e:26:01:3b:c8:eb:8c:d6:
                    f0:b0:b1:87:02:aa:dc:55:1c:13:9a:d2:e7:3f:a9:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:43:74:49:a8:1d:d4:6d:b5:84:e2:94:ba:91:6e:88:
        8c:3a:da:c0:97:2d:c8:e7:0b:12:c8:2c:cf:b1:b3:7b:
        5b:69:f1:8c:66:d6:2d:3b:c1:a6:31:19:87:fa:1a:a4:
        79:8d:98:5e:0c:a7:37:16:48:cf:80:cb:21:3d:63:36:
        a4:7b:bc:fe:59:c1:d7:04:c3:fd:9d:b4:1c:84:0a:5b:
        87:28:0b:a3:35:a9:f5:82:61:e0:40:66:ab:2a:f9:83:
        a8:40:4e:5a:93:cb:a5:5e:02:d5:a9:25:70:bb:7b:62:
        41:9b:e2:fd:6f:f5:01:e2:60:cc:a5:25:a9:52:03:f8:
        2b:a5:9b:4f:1d:0a:43:4d:15:6f:ad:c3:78:b7:57:2c:
        26:1f:56:7c:99:16:9f:9f:c7:7a:f1:4e:af:1b:c3:8f:
        6a:24:aa:46:37:cc:1a:a3:88:0f:f5:8e:5b:81:63:14:
        46:a2:76:eb:ed:49:3d:73:77:02:e6:5e:2a:b3:23:d9:
        0a:87:e6:6c:12:eb:76:98:d7:ce:41:4f:9f:e4:db:34:
        c8:ff:2f:8c:29:19:18:ef:30:87:eb:fd:46:7b:42:2c:
        e9:69:5e:10:6e:77:4c:ac:02:3a:81:3e:c3:97:69:55:
        0a:1b:ee:53:3b:06:7d:3d:a5:7e:50:81:a6:61:de:28
    Fingerprint (SHA-256):
        BA:24:47:0F:27:BB:9B:59:C4:CF:23:DC:89:39:62:BD:7B:96:F3:80:BE:63:22:B7:DE:83:C9:E7:F2:F4:6B:F6
    Fingerprint (SHA1):
        AA:88:0D:43:37:A9:65:C1:52:60:F2:00:29:01:6A:0C:1A:E9:9C:11
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11503: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11504: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155197 (0x1dee47bd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:28 2017
            Not After : Mon May 02 15:53:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:ec:16:10:34:f2:b3:8c:ab:26:94:a9:ba:ae:41:ad:
                    f6:bc:c9:9b:5c:ca:3d:25:bd:53:ef:f3:f6:d9:9e:9b:
                    e1:6f:eb:b9:3d:86:88:3a:c2:d6:39:1b:b5:a4:04:d2:
                    c7:14:09:c1:45:e6:b6:66:9a:e2:bf:6b:bf:10:09:94:
                    bd:2c:22:ee:da:47:e9:c1:f0:53:87:5f:1d:fe:e2:2e:
                    3c:69:5e:cd:11:d9:17:7d:d1:fb:78:1a:78:e4:c8:44:
                    7e:21:c6:c5:1b:1e:f9:0c:37:4b:94:28:ab:15:9d:4e:
                    de:83:93:c2:71:20:03:2a:47:c8:b9:b9:fd:48:ef:c8:
                    db:44:b5:7d:18:d6:b4:07:5e:0d:9c:fb:87:74:a0:10:
                    98:7d:41:94:ce:ec:67:65:47:bc:04:7d:ba:dd:e9:8b:
                    a4:02:e3:af:6f:b6:34:7c:19:e8:d7:88:a5:a7:b3:a5:
                    a6:57:e9:75:d5:41:1d:e1:6e:29:34:13:cb:6d:b4:7b:
                    46:e8:f5:52:75:b8:57:9e:d7:b2:86:82:de:98:2f:f6:
                    88:e2:e1:f2:b5:28:66:b8:c4:a4:1c:d8:fe:75:0b:45:
                    8b:26:3a:34:88:1a:70:4a:69:d0:f4:46:d1:2d:6d:ae:
                    04:45:9d:9f:28:b8:be:b0:f6:30:97:bd:44:e4:f7:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:38:f4:2e:f9:93:65:67:99:66:d7:2c:36:77:44:5c:
        44:77:d9:c9:68:cf:2c:f5:b9:b6:f2:5c:ea:e2:f3:4f:
        4f:df:68:5b:c6:d1:25:58:bf:0f:35:49:9e:28:91:78:
        18:72:db:5d:ad:35:c6:cd:46:0b:7c:22:49:0e:c6:04:
        34:91:9f:79:78:22:21:b3:f9:bd:2a:3c:73:14:58:54:
        1f:19:52:4a:4b:07:7a:57:de:7c:04:ca:4b:8f:4e:b4:
        e8:72:39:e4:a5:07:ba:0e:67:f4:27:b6:bc:a3:8f:2d:
        7d:3d:6c:e5:80:47:e1:ef:ab:61:7c:11:d1:e3:74:ca:
        4c:66:02:99:c8:2d:99:35:41:fa:de:66:31:08:20:2d:
        57:99:cc:02:eb:af:16:2c:ef:d8:59:cf:37:5d:c9:31:
        02:33:e0:dd:8e:30:7d:58:26:33:73:18:9a:9d:28:17:
        59:e1:26:15:59:02:69:b2:67:41:be:a5:47:4d:77:b4:
        c2:3e:2f:3c:44:3d:6f:3c:40:aa:01:a0:b3:7d:5b:b9:
        22:13:6b:53:8e:5e:02:3e:88:99:f6:6e:b8:fe:02:93:
        f8:15:61:a1:37:6b:9d:09:dd:92:b9:2e:dd:22:de:31:
        c2:62:51:f0:c0:7e:f9:71:8a:86:23:39:e5:02:fc:9b
    Fingerprint (SHA-256):
        C0:EB:0F:2E:FC:AF:60:2C:58:1E:05:52:7B:BB:19:4C:E6:C3:01:F0:8B:33:8E:FE:15:DF:DD:F8:EC:69:81:F8
    Fingerprint (SHA1):
        24:DD:69:42:F4:D3:F6:AD:35:F5:D1:5A:B3:32:60:6D:31:06:36:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11505: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11506: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155198 (0x1dee47be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:29 2017
            Not After : Mon May 02 15:53:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:69:bf:69:df:cd:2b:e0:5a:ae:b8:2a:ac:a5:7d:88:
                    84:a4:04:2c:f7:b1:03:d5:c0:fe:8f:24:f7:ea:8a:d1:
                    76:44:9a:44:27:9d:6a:99:7d:d9:0f:b0:b0:85:71:68:
                    29:15:9e:ab:8f:b0:6e:35:60:04:75:cb:95:1a:98:02:
                    a3:22:72:b3:6d:68:fc:2a:23:5f:e5:f4:09:96:d6:7f:
                    a4:92:a0:b0:a3:34:ee:f8:c4:e1:a4:fa:0e:fd:97:81:
                    8a:ac:52:78:fc:ee:de:4a:12:1b:df:36:a9:bf:ce:04:
                    83:ae:cc:82:ca:ba:4c:0e:e8:4f:fd:92:5c:52:7c:02:
                    fb:26:ad:f4:82:42:9a:98:a3:06:ea:4b:b0:ba:55:d8:
                    19:4b:d9:26:6e:1e:6d:da:7d:0d:9d:3c:4b:77:a5:99:
                    59:c1:95:b8:b1:cf:45:34:68:9b:7a:43:74:07:2e:ae:
                    ba:52:0d:f8:1f:66:2c:1d:bc:7a:fd:75:a6:3c:1a:04:
                    03:f3:cf:69:d5:db:ff:ed:67:41:c8:27:43:0d:fa:61:
                    d6:b9:3f:a1:78:dc:d0:9d:c5:6b:8b:8f:60:0d:6f:99:
                    18:10:e5:07:c4:49:90:8c:84:9e:0c:0d:2b:8b:94:23:
                    ee:26:f0:53:34:ec:27:72:a2:9c:8c:f1:e4:bb:fc:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:44:e6:0d:ea:a1:d5:f3:70:49:51:85:e9:87:09:ba:
        77:56:87:05:56:69:34:92:50:70:05:61:18:dc:b1:87:
        5c:14:9b:8b:c0:56:5b:e1:59:af:de:70:8c:18:79:86:
        8f:05:11:45:29:cb:3c:90:d7:91:8e:3a:11:82:78:78:
        58:e7:a1:41:ab:94:fc:fc:db:49:79:62:5b:6b:9f:df:
        be:ce:06:de:4c:b5:c5:eb:27:d7:18:35:2c:6d:02:e4:
        b8:e9:7c:f1:44:04:f6:9b:b0:6b:c6:e6:35:55:2e:51:
        d5:38:1d:ee:1e:ca:9d:87:e3:7f:a6:62:34:10:04:30:
        4f:36:92:20:1f:b9:b4:02:03:3d:2e:d1:80:c2:d2:8f:
        cd:0b:e2:2f:2e:51:a7:98:e3:62:ea:9b:02:5a:23:ea:
        28:be:ed:31:cd:1c:00:d6:21:e0:95:24:71:72:ff:34:
        7b:43:81:33:63:d8:84:9d:61:cc:00:9a:87:11:ff:e6:
        da:49:93:f1:45:4e:0a:04:d9:18:0f:0c:57:51:72:29:
        f0:24:e7:15:30:8d:82:9f:0a:9f:5f:a2:95:9e:de:47:
        84:7b:75:64:8f:8e:7e:18:32:cd:b4:44:61:99:cb:95:
        1c:21:f5:bf:6f:6b:c5:34:62:c8:24:22:06:92:41:c7
    Fingerprint (SHA-256):
        EF:26:4F:58:83:A3:6F:86:D1:D1:B7:07:66:24:42:A0:1B:B5:5A:87:1A:F0:12:92:29:58:0A:27:1E:73:72:6E
    Fingerprint (SHA1):
        D3:E9:BC:87:64:65:B0:94:50:17:F2:20:95:55:65:34:A7:0C:61:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11507: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11508: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11509: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155200 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11510: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11511: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11512: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11513: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155201   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11514: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11515: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11516: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11517: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155202   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11518: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11519: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11520: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11521: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155203   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11522: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11523: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11524: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11525: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155204   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11526: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11527: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11528: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155200 (0x1dee47c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:32 2017
            Not After : Mon May 02 15:53:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:60:58:74:85:1d:ce:af:12:37:5b:84:d1:3b:0a:3c:
                    e8:8e:92:0e:7d:d4:8a:e8:e1:98:dc:44:11:0d:8d:13:
                    7a:ae:4d:7c:d3:4a:fa:22:f6:2e:fc:58:ec:93:43:a8:
                    a3:a4:20:61:0d:ff:4f:60:5a:f5:3e:f1:50:4e:80:08:
                    67:a1:28:b9:f8:a2:3f:9d:9f:25:55:90:1d:42:0f:f7:
                    6e:ef:20:f1:91:4e:30:d0:ac:14:68:99:cb:12:e8:c8:
                    22:29:05:a4:6b:ca:f2:62:a2:db:08:b5:a4:3c:2e:cd:
                    27:c4:f6:a3:ec:79:76:28:67:d3:42:03:11:30:2a:6b:
                    4d:fe:7a:5c:a5:89:38:4e:f0:58:23:04:75:69:27:c8:
                    44:1b:90:d8:90:a9:3a:80:ea:b8:ab:63:18:92:76:97:
                    f7:e2:a7:d1:e8:3e:31:59:e4:d5:a7:6d:37:db:01:5f:
                    27:87:f2:a6:16:6f:00:a7:60:ee:a6:d1:8d:80:74:84:
                    4f:c2:61:1b:e5:9e:ab:a9:4f:e9:ca:ad:f1:56:e8:4c:
                    5c:c9:48:b2:d4:96:fc:af:6b:2b:56:93:a9:81:76:93:
                    8b:94:d2:9d:06:6e:a4:a5:ff:c8:fa:0a:63:cc:18:6f:
                    f2:50:8b:63:6f:ec:85:a5:d0:d8:40:11:8c:cb:62:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:3f:ce:de:a2:cc:3e:99:83:f2:ae:ea:e7:a6:20:e7:
        80:c3:63:1b:d9:88:c6:79:95:42:01:dc:c1:c3:a3:7c:
        f1:b0:1d:e0:03:d7:b3:90:15:d0:f9:45:14:5d:57:5f:
        5c:4c:9c:77:75:bd:bf:a0:21:92:f5:49:f6:0c:c0:b3:
        89:89:f1:b7:79:9c:a5:39:b2:36:19:c3:ce:0d:25:22:
        91:5b:70:07:9b:d4:52:0c:d5:a9:12:a7:c7:17:c5:0b:
        d9:ca:45:48:1a:37:29:57:b5:d1:d2:22:eb:86:c2:40:
        2c:8c:51:5c:34:d5:d4:69:f8:32:ce:41:bc:5d:b9:6c:
        97:1a:9c:cb:05:59:73:67:09:2f:3a:4f:82:61:6d:8c:
        73:83:74:7c:f5:5e:49:46:3a:8d:2b:02:5d:69:f2:df:
        a4:d3:94:3d:d6:66:1e:fb:57:26:18:2e:df:32:66:9a:
        d7:2c:db:04:70:85:81:47:a5:fb:c8:51:31:44:a2:c7:
        b7:66:23:b6:42:1f:34:94:e8:8b:35:f8:47:9a:9b:b9:
        9e:02:06:3e:88:04:cf:b5:c8:b8:b9:03:78:de:d6:15:
        7a:22:af:ac:9a:c7:ce:26:e7:c3:3a:a5:b9:ea:86:aa:
        dd:af:ed:29:c0:0d:af:ad:cc:dd:5b:ae:ef:95:ec:9a
    Fingerprint (SHA-256):
        29:A3:7F:19:FC:B2:07:0B:8A:80:A9:D8:43:8B:4F:F9:AE:FF:62:3E:E6:B1:DE:C0:8E:78:08:53:B6:34:DA:5B
    Fingerprint (SHA1):
        6A:DF:2F:6F:92:3D:CE:A0:05:C5:31:DA:50:F3:98:4A:F0:CD:71:2C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11529: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11530: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155201 (0x1dee47c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:33 2017
            Not After : Mon May 02 15:53:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:d1:74:e9:60:dd:58:6c:d1:cd:a2:38:02:c4:5b:3b:
                    e7:c5:57:59:98:a1:c8:5b:9b:43:0e:1b:a3:21:33:03:
                    a7:22:7a:f4:d0:bd:49:2d:e3:28:20:de:fc:c4:64:5c:
                    1f:61:5e:2b:b8:b4:51:91:42:3f:94:be:3e:62:c1:c4:
                    9e:0d:b6:57:97:c6:45:fc:26:37:c4:76:45:12:5a:cb:
                    a3:b1:52:e4:1a:8c:24:7f:a6:97:98:84:cd:58:55:af:
                    57:44:4c:28:81:3a:d1:eb:d1:94:b6:43:1e:b6:41:7e:
                    84:25:85:bd:a5:93:35:f2:3d:b2:78:a8:ea:c1:cb:a8:
                    84:b7:43:9b:83:16:cc:ef:ca:c6:93:4c:99:26:10:5d:
                    f8:5e:fb:c6:e4:85:3a:9d:06:c8:87:1a:ae:97:a8:70:
                    fe:b6:3b:d9:07:c7:af:d7:a4:04:64:d9:00:d0:8f:b8:
                    5d:f1:52:cb:1c:7b:be:40:12:a3:d1:df:3c:77:9b:2c:
                    71:b7:21:ac:12:71:10:79:4b:b7:3a:89:ef:06:81:ee:
                    60:dd:05:62:5e:be:3c:0a:af:a4:11:80:3b:b2:4b:39:
                    f4:ee:e8:83:97:7b:32:69:3b:94:54:58:07:08:0f:b2:
                    6b:6b:ed:a3:80:77:3f:ba:26:90:03:21:64:9e:28:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:d6:5b:a0:97:d8:8e:5a:49:ca:37:69:11:ce:0c:ba:
        ec:3c:8d:0c:7a:02:a9:92:6e:7a:82:5f:fd:3b:70:48:
        3b:b7:2f:a2:27:aa:51:12:c3:2c:42:2e:b3:e6:40:da:
        b3:61:4b:cc:b0:8b:c0:35:e7:7e:6e:ca:69:e2:6e:e3:
        35:d3:05:c7:32:88:62:f8:d0:c3:70:a1:be:0a:b4:16:
        a3:73:93:4a:a2:58:4f:50:13:e9:14:31:91:42:7d:d3:
        bf:0c:9a:b3:8f:9a:6f:05:95:e4:70:6b:9f:5c:b6:dd:
        dc:75:60:30:94:fe:85:35:88:0a:fa:53:74:2e:5b:61:
        70:5b:d5:64:65:4b:97:b5:20:81:65:8a:a1:a8:1e:10:
        97:c1:8c:a3:8b:fd:c7:bc:f2:c2:48:ff:c4:ef:fb:57:
        2e:3b:60:b0:64:f7:7b:05:60:ae:f5:1e:31:f2:98:14:
        fe:1a:b7:18:58:53:d6:be:35:b3:5d:19:7e:52:cf:ed:
        e4:72:c5:33:17:1c:18:9d:71:35:05:83:0b:b6:5f:52:
        1c:59:ce:d0:5c:56:cb:db:df:22:04:0a:e6:0f:0a:eb:
        a1:8e:8b:6a:39:b4:50:ee:ae:4e:24:7c:2e:77:a5:58:
        7d:3a:a4:33:71:55:51:a9:32:15:98:72:79:e7:2b:94
    Fingerprint (SHA-256):
        CC:6C:43:6F:8D:28:95:F2:46:D1:46:2C:CD:ED:8C:10:D5:60:24:A7:6E:FF:01:30:89:C4:BD:3B:DD:D2:E2:61
    Fingerprint (SHA1):
        62:3C:54:5B:95:9B:EB:DB:B0:7D:01:37:64:16:14:DA:5A:AF:4A:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11531: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11532: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155202 (0x1dee47c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:34 2017
            Not After : Mon May 02 15:53:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:af:4c:73:ac:22:9b:07:3a:d4:a9:2f:72:fb:df:64:
                    d2:68:bc:d2:d3:55:22:2a:a4:c6:ef:bc:53:99:d2:a9:
                    fb:d8:7e:76:22:0c:22:6c:db:3f:b8:ae:a7:fb:ac:79:
                    d7:6d:30:fe:44:9d:a5:64:79:e8:68:c4:bb:41:2e:22:
                    25:99:28:ba:73:83:8a:b5:4d:07:7e:5f:bb:fe:f7:9c:
                    d1:ef:b8:c4:70:b0:41:11:bf:18:ae:47:e4:36:66:2e:
                    25:3b:c3:ec:a3:22:65:d8:cd:31:37:45:5b:de:e6:e5:
                    f3:ab:7c:85:a7:8c:eb:62:35:96:fc:d3:fa:5e:c3:29:
                    32:4b:e2:34:93:2c:64:76:c2:8e:47:9e:93:7a:fc:d6:
                    a7:02:d4:c2:b7:4e:76:9d:6e:49:b5:86:0a:b2:a7:58:
                    dc:79:d6:99:8d:dd:0f:6c:61:25:71:80:69:d8:c2:13:
                    01:18:d6:ac:3d:6b:b5:97:bf:bf:e7:e0:2e:1f:8a:c2:
                    dd:dd:9b:12:e9:db:ff:7c:02:cc:79:23:20:34:8e:32:
                    00:c0:eb:1c:64:0f:29:21:f6:41:89:6f:34:5e:d1:15:
                    93:8f:b6:dd:16:3c:df:de:63:72:86:27:cc:e9:bd:10:
                    23:2f:66:db:75:d5:45:dc:30:32:19:37:07:0b:be:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:5b:0f:c0:67:6a:2a:cd:f8:a7:e0:f6:64:54:79:2c:
        6c:11:7c:5a:7e:a3:4e:38:05:32:cc:b3:02:fe:a5:38:
        42:d4:10:20:82:11:fe:81:4f:96:3d:2f:b4:bb:91:15:
        7d:eb:ac:e9:ef:f9:d6:cd:01:70:48:e3:9f:40:87:5e:
        ed:a3:07:00:ac:17:9d:35:f5:ed:38:c5:2a:8b:90:6f:
        c0:6a:cb:e4:d5:54:78:81:56:3b:4f:17:51:6c:20:6b:
        57:33:aa:8a:44:f9:de:31:f4:f5:8e:8a:7b:4a:55:fd:
        ba:76:91:2a:62:a5:46:5d:63:5b:d6:72:a8:14:cd:49:
        cb:e8:8f:bc:69:04:58:35:1f:13:ec:0f:f0:3d:37:53:
        70:25:4b:c3:ff:f3:98:31:75:e3:2b:28:aa:4e:ae:56:
        eb:51:e2:05:36:f8:99:e1:6c:e2:62:a7:e3:4f:39:48:
        53:1f:f5:46:a0:02:03:55:46:33:60:66:45:7f:55:b0:
        de:13:06:1b:f4:07:80:38:5e:4f:91:ba:1b:63:09:e9:
        00:30:ce:aa:e1:9a:f3:14:ec:6c:43:36:9d:b1:c1:75:
        54:4f:71:05:f8:3b:7c:23:b0:0b:89:fb:ec:45:0e:f5:
        f6:42:d6:92:93:2e:cf:8e:e5:59:a4:8c:80:1d:4a:d8
    Fingerprint (SHA-256):
        01:E2:A3:71:12:39:24:FC:0D:C8:B1:20:5C:3C:72:C9:A0:E7:26:F1:C8:92:5E:5B:47:83:AC:F4:66:63:6B:D0
    Fingerprint (SHA1):
        D7:23:55:E9:76:AC:82:89:CD:61:03:30:4B:91:45:2B:F5:09:AF:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11533: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11534: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11535: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11536: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11537: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155200 (0x1dee47c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:32 2017
            Not After : Mon May 02 15:53:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:60:58:74:85:1d:ce:af:12:37:5b:84:d1:3b:0a:3c:
                    e8:8e:92:0e:7d:d4:8a:e8:e1:98:dc:44:11:0d:8d:13:
                    7a:ae:4d:7c:d3:4a:fa:22:f6:2e:fc:58:ec:93:43:a8:
                    a3:a4:20:61:0d:ff:4f:60:5a:f5:3e:f1:50:4e:80:08:
                    67:a1:28:b9:f8:a2:3f:9d:9f:25:55:90:1d:42:0f:f7:
                    6e:ef:20:f1:91:4e:30:d0:ac:14:68:99:cb:12:e8:c8:
                    22:29:05:a4:6b:ca:f2:62:a2:db:08:b5:a4:3c:2e:cd:
                    27:c4:f6:a3:ec:79:76:28:67:d3:42:03:11:30:2a:6b:
                    4d:fe:7a:5c:a5:89:38:4e:f0:58:23:04:75:69:27:c8:
                    44:1b:90:d8:90:a9:3a:80:ea:b8:ab:63:18:92:76:97:
                    f7:e2:a7:d1:e8:3e:31:59:e4:d5:a7:6d:37:db:01:5f:
                    27:87:f2:a6:16:6f:00:a7:60:ee:a6:d1:8d:80:74:84:
                    4f:c2:61:1b:e5:9e:ab:a9:4f:e9:ca:ad:f1:56:e8:4c:
                    5c:c9:48:b2:d4:96:fc:af:6b:2b:56:93:a9:81:76:93:
                    8b:94:d2:9d:06:6e:a4:a5:ff:c8:fa:0a:63:cc:18:6f:
                    f2:50:8b:63:6f:ec:85:a5:d0:d8:40:11:8c:cb:62:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:3f:ce:de:a2:cc:3e:99:83:f2:ae:ea:e7:a6:20:e7:
        80:c3:63:1b:d9:88:c6:79:95:42:01:dc:c1:c3:a3:7c:
        f1:b0:1d:e0:03:d7:b3:90:15:d0:f9:45:14:5d:57:5f:
        5c:4c:9c:77:75:bd:bf:a0:21:92:f5:49:f6:0c:c0:b3:
        89:89:f1:b7:79:9c:a5:39:b2:36:19:c3:ce:0d:25:22:
        91:5b:70:07:9b:d4:52:0c:d5:a9:12:a7:c7:17:c5:0b:
        d9:ca:45:48:1a:37:29:57:b5:d1:d2:22:eb:86:c2:40:
        2c:8c:51:5c:34:d5:d4:69:f8:32:ce:41:bc:5d:b9:6c:
        97:1a:9c:cb:05:59:73:67:09:2f:3a:4f:82:61:6d:8c:
        73:83:74:7c:f5:5e:49:46:3a:8d:2b:02:5d:69:f2:df:
        a4:d3:94:3d:d6:66:1e:fb:57:26:18:2e:df:32:66:9a:
        d7:2c:db:04:70:85:81:47:a5:fb:c8:51:31:44:a2:c7:
        b7:66:23:b6:42:1f:34:94:e8:8b:35:f8:47:9a:9b:b9:
        9e:02:06:3e:88:04:cf:b5:c8:b8:b9:03:78:de:d6:15:
        7a:22:af:ac:9a:c7:ce:26:e7:c3:3a:a5:b9:ea:86:aa:
        dd:af:ed:29:c0:0d:af:ad:cc:dd:5b:ae:ef:95:ec:9a
    Fingerprint (SHA-256):
        29:A3:7F:19:FC:B2:07:0B:8A:80:A9:D8:43:8B:4F:F9:AE:FF:62:3E:E6:B1:DE:C0:8E:78:08:53:B6:34:DA:5B
    Fingerprint (SHA1):
        6A:DF:2F:6F:92:3D:CE:A0:05:C5:31:DA:50:F3:98:4A:F0:CD:71:2C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11538: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11539: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155201 (0x1dee47c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:33 2017
            Not After : Mon May 02 15:53:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:d1:74:e9:60:dd:58:6c:d1:cd:a2:38:02:c4:5b:3b:
                    e7:c5:57:59:98:a1:c8:5b:9b:43:0e:1b:a3:21:33:03:
                    a7:22:7a:f4:d0:bd:49:2d:e3:28:20:de:fc:c4:64:5c:
                    1f:61:5e:2b:b8:b4:51:91:42:3f:94:be:3e:62:c1:c4:
                    9e:0d:b6:57:97:c6:45:fc:26:37:c4:76:45:12:5a:cb:
                    a3:b1:52:e4:1a:8c:24:7f:a6:97:98:84:cd:58:55:af:
                    57:44:4c:28:81:3a:d1:eb:d1:94:b6:43:1e:b6:41:7e:
                    84:25:85:bd:a5:93:35:f2:3d:b2:78:a8:ea:c1:cb:a8:
                    84:b7:43:9b:83:16:cc:ef:ca:c6:93:4c:99:26:10:5d:
                    f8:5e:fb:c6:e4:85:3a:9d:06:c8:87:1a:ae:97:a8:70:
                    fe:b6:3b:d9:07:c7:af:d7:a4:04:64:d9:00:d0:8f:b8:
                    5d:f1:52:cb:1c:7b:be:40:12:a3:d1:df:3c:77:9b:2c:
                    71:b7:21:ac:12:71:10:79:4b:b7:3a:89:ef:06:81:ee:
                    60:dd:05:62:5e:be:3c:0a:af:a4:11:80:3b:b2:4b:39:
                    f4:ee:e8:83:97:7b:32:69:3b:94:54:58:07:08:0f:b2:
                    6b:6b:ed:a3:80:77:3f:ba:26:90:03:21:64:9e:28:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:d6:5b:a0:97:d8:8e:5a:49:ca:37:69:11:ce:0c:ba:
        ec:3c:8d:0c:7a:02:a9:92:6e:7a:82:5f:fd:3b:70:48:
        3b:b7:2f:a2:27:aa:51:12:c3:2c:42:2e:b3:e6:40:da:
        b3:61:4b:cc:b0:8b:c0:35:e7:7e:6e:ca:69:e2:6e:e3:
        35:d3:05:c7:32:88:62:f8:d0:c3:70:a1:be:0a:b4:16:
        a3:73:93:4a:a2:58:4f:50:13:e9:14:31:91:42:7d:d3:
        bf:0c:9a:b3:8f:9a:6f:05:95:e4:70:6b:9f:5c:b6:dd:
        dc:75:60:30:94:fe:85:35:88:0a:fa:53:74:2e:5b:61:
        70:5b:d5:64:65:4b:97:b5:20:81:65:8a:a1:a8:1e:10:
        97:c1:8c:a3:8b:fd:c7:bc:f2:c2:48:ff:c4:ef:fb:57:
        2e:3b:60:b0:64:f7:7b:05:60:ae:f5:1e:31:f2:98:14:
        fe:1a:b7:18:58:53:d6:be:35:b3:5d:19:7e:52:cf:ed:
        e4:72:c5:33:17:1c:18:9d:71:35:05:83:0b:b6:5f:52:
        1c:59:ce:d0:5c:56:cb:db:df:22:04:0a:e6:0f:0a:eb:
        a1:8e:8b:6a:39:b4:50:ee:ae:4e:24:7c:2e:77:a5:58:
        7d:3a:a4:33:71:55:51:a9:32:15:98:72:79:e7:2b:94
    Fingerprint (SHA-256):
        CC:6C:43:6F:8D:28:95:F2:46:D1:46:2C:CD:ED:8C:10:D5:60:24:A7:6E:FF:01:30:89:C4:BD:3B:DD:D2:E2:61
    Fingerprint (SHA1):
        62:3C:54:5B:95:9B:EB:DB:B0:7D:01:37:64:16:14:DA:5A:AF:4A:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11540: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11541: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155202 (0x1dee47c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:34 2017
            Not After : Mon May 02 15:53:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:af:4c:73:ac:22:9b:07:3a:d4:a9:2f:72:fb:df:64:
                    d2:68:bc:d2:d3:55:22:2a:a4:c6:ef:bc:53:99:d2:a9:
                    fb:d8:7e:76:22:0c:22:6c:db:3f:b8:ae:a7:fb:ac:79:
                    d7:6d:30:fe:44:9d:a5:64:79:e8:68:c4:bb:41:2e:22:
                    25:99:28:ba:73:83:8a:b5:4d:07:7e:5f:bb:fe:f7:9c:
                    d1:ef:b8:c4:70:b0:41:11:bf:18:ae:47:e4:36:66:2e:
                    25:3b:c3:ec:a3:22:65:d8:cd:31:37:45:5b:de:e6:e5:
                    f3:ab:7c:85:a7:8c:eb:62:35:96:fc:d3:fa:5e:c3:29:
                    32:4b:e2:34:93:2c:64:76:c2:8e:47:9e:93:7a:fc:d6:
                    a7:02:d4:c2:b7:4e:76:9d:6e:49:b5:86:0a:b2:a7:58:
                    dc:79:d6:99:8d:dd:0f:6c:61:25:71:80:69:d8:c2:13:
                    01:18:d6:ac:3d:6b:b5:97:bf:bf:e7:e0:2e:1f:8a:c2:
                    dd:dd:9b:12:e9:db:ff:7c:02:cc:79:23:20:34:8e:32:
                    00:c0:eb:1c:64:0f:29:21:f6:41:89:6f:34:5e:d1:15:
                    93:8f:b6:dd:16:3c:df:de:63:72:86:27:cc:e9:bd:10:
                    23:2f:66:db:75:d5:45:dc:30:32:19:37:07:0b:be:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:5b:0f:c0:67:6a:2a:cd:f8:a7:e0:f6:64:54:79:2c:
        6c:11:7c:5a:7e:a3:4e:38:05:32:cc:b3:02:fe:a5:38:
        42:d4:10:20:82:11:fe:81:4f:96:3d:2f:b4:bb:91:15:
        7d:eb:ac:e9:ef:f9:d6:cd:01:70:48:e3:9f:40:87:5e:
        ed:a3:07:00:ac:17:9d:35:f5:ed:38:c5:2a:8b:90:6f:
        c0:6a:cb:e4:d5:54:78:81:56:3b:4f:17:51:6c:20:6b:
        57:33:aa:8a:44:f9:de:31:f4:f5:8e:8a:7b:4a:55:fd:
        ba:76:91:2a:62:a5:46:5d:63:5b:d6:72:a8:14:cd:49:
        cb:e8:8f:bc:69:04:58:35:1f:13:ec:0f:f0:3d:37:53:
        70:25:4b:c3:ff:f3:98:31:75:e3:2b:28:aa:4e:ae:56:
        eb:51:e2:05:36:f8:99:e1:6c:e2:62:a7:e3:4f:39:48:
        53:1f:f5:46:a0:02:03:55:46:33:60:66:45:7f:55:b0:
        de:13:06:1b:f4:07:80:38:5e:4f:91:ba:1b:63:09:e9:
        00:30:ce:aa:e1:9a:f3:14:ec:6c:43:36:9d:b1:c1:75:
        54:4f:71:05:f8:3b:7c:23:b0:0b:89:fb:ec:45:0e:f5:
        f6:42:d6:92:93:2e:cf:8e:e5:59:a4:8c:80:1d:4a:d8
    Fingerprint (SHA-256):
        01:E2:A3:71:12:39:24:FC:0D:C8:B1:20:5C:3C:72:C9:A0:E7:26:F1:C8:92:5E:5B:47:83:AC:F4:66:63:6B:D0
    Fingerprint (SHA1):
        D7:23:55:E9:76:AC:82:89:CD:61:03:30:4B:91:45:2B:F5:09:AF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11542: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11543: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155200 (0x1dee47c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:32 2017
            Not After : Mon May 02 15:53:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:60:58:74:85:1d:ce:af:12:37:5b:84:d1:3b:0a:3c:
                    e8:8e:92:0e:7d:d4:8a:e8:e1:98:dc:44:11:0d:8d:13:
                    7a:ae:4d:7c:d3:4a:fa:22:f6:2e:fc:58:ec:93:43:a8:
                    a3:a4:20:61:0d:ff:4f:60:5a:f5:3e:f1:50:4e:80:08:
                    67:a1:28:b9:f8:a2:3f:9d:9f:25:55:90:1d:42:0f:f7:
                    6e:ef:20:f1:91:4e:30:d0:ac:14:68:99:cb:12:e8:c8:
                    22:29:05:a4:6b:ca:f2:62:a2:db:08:b5:a4:3c:2e:cd:
                    27:c4:f6:a3:ec:79:76:28:67:d3:42:03:11:30:2a:6b:
                    4d:fe:7a:5c:a5:89:38:4e:f0:58:23:04:75:69:27:c8:
                    44:1b:90:d8:90:a9:3a:80:ea:b8:ab:63:18:92:76:97:
                    f7:e2:a7:d1:e8:3e:31:59:e4:d5:a7:6d:37:db:01:5f:
                    27:87:f2:a6:16:6f:00:a7:60:ee:a6:d1:8d:80:74:84:
                    4f:c2:61:1b:e5:9e:ab:a9:4f:e9:ca:ad:f1:56:e8:4c:
                    5c:c9:48:b2:d4:96:fc:af:6b:2b:56:93:a9:81:76:93:
                    8b:94:d2:9d:06:6e:a4:a5:ff:c8:fa:0a:63:cc:18:6f:
                    f2:50:8b:63:6f:ec:85:a5:d0:d8:40:11:8c:cb:62:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:3f:ce:de:a2:cc:3e:99:83:f2:ae:ea:e7:a6:20:e7:
        80:c3:63:1b:d9:88:c6:79:95:42:01:dc:c1:c3:a3:7c:
        f1:b0:1d:e0:03:d7:b3:90:15:d0:f9:45:14:5d:57:5f:
        5c:4c:9c:77:75:bd:bf:a0:21:92:f5:49:f6:0c:c0:b3:
        89:89:f1:b7:79:9c:a5:39:b2:36:19:c3:ce:0d:25:22:
        91:5b:70:07:9b:d4:52:0c:d5:a9:12:a7:c7:17:c5:0b:
        d9:ca:45:48:1a:37:29:57:b5:d1:d2:22:eb:86:c2:40:
        2c:8c:51:5c:34:d5:d4:69:f8:32:ce:41:bc:5d:b9:6c:
        97:1a:9c:cb:05:59:73:67:09:2f:3a:4f:82:61:6d:8c:
        73:83:74:7c:f5:5e:49:46:3a:8d:2b:02:5d:69:f2:df:
        a4:d3:94:3d:d6:66:1e:fb:57:26:18:2e:df:32:66:9a:
        d7:2c:db:04:70:85:81:47:a5:fb:c8:51:31:44:a2:c7:
        b7:66:23:b6:42:1f:34:94:e8:8b:35:f8:47:9a:9b:b9:
        9e:02:06:3e:88:04:cf:b5:c8:b8:b9:03:78:de:d6:15:
        7a:22:af:ac:9a:c7:ce:26:e7:c3:3a:a5:b9:ea:86:aa:
        dd:af:ed:29:c0:0d:af:ad:cc:dd:5b:ae:ef:95:ec:9a
    Fingerprint (SHA-256):
        29:A3:7F:19:FC:B2:07:0B:8A:80:A9:D8:43:8B:4F:F9:AE:FF:62:3E:E6:B1:DE:C0:8E:78:08:53:B6:34:DA:5B
    Fingerprint (SHA1):
        6A:DF:2F:6F:92:3D:CE:A0:05:C5:31:DA:50:F3:98:4A:F0:CD:71:2C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11544: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155200 (0x1dee47c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:32 2017
            Not After : Mon May 02 15:53:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:60:58:74:85:1d:ce:af:12:37:5b:84:d1:3b:0a:3c:
                    e8:8e:92:0e:7d:d4:8a:e8:e1:98:dc:44:11:0d:8d:13:
                    7a:ae:4d:7c:d3:4a:fa:22:f6:2e:fc:58:ec:93:43:a8:
                    a3:a4:20:61:0d:ff:4f:60:5a:f5:3e:f1:50:4e:80:08:
                    67:a1:28:b9:f8:a2:3f:9d:9f:25:55:90:1d:42:0f:f7:
                    6e:ef:20:f1:91:4e:30:d0:ac:14:68:99:cb:12:e8:c8:
                    22:29:05:a4:6b:ca:f2:62:a2:db:08:b5:a4:3c:2e:cd:
                    27:c4:f6:a3:ec:79:76:28:67:d3:42:03:11:30:2a:6b:
                    4d:fe:7a:5c:a5:89:38:4e:f0:58:23:04:75:69:27:c8:
                    44:1b:90:d8:90:a9:3a:80:ea:b8:ab:63:18:92:76:97:
                    f7:e2:a7:d1:e8:3e:31:59:e4:d5:a7:6d:37:db:01:5f:
                    27:87:f2:a6:16:6f:00:a7:60:ee:a6:d1:8d:80:74:84:
                    4f:c2:61:1b:e5:9e:ab:a9:4f:e9:ca:ad:f1:56:e8:4c:
                    5c:c9:48:b2:d4:96:fc:af:6b:2b:56:93:a9:81:76:93:
                    8b:94:d2:9d:06:6e:a4:a5:ff:c8:fa:0a:63:cc:18:6f:
                    f2:50:8b:63:6f:ec:85:a5:d0:d8:40:11:8c:cb:62:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:3f:ce:de:a2:cc:3e:99:83:f2:ae:ea:e7:a6:20:e7:
        80:c3:63:1b:d9:88:c6:79:95:42:01:dc:c1:c3:a3:7c:
        f1:b0:1d:e0:03:d7:b3:90:15:d0:f9:45:14:5d:57:5f:
        5c:4c:9c:77:75:bd:bf:a0:21:92:f5:49:f6:0c:c0:b3:
        89:89:f1:b7:79:9c:a5:39:b2:36:19:c3:ce:0d:25:22:
        91:5b:70:07:9b:d4:52:0c:d5:a9:12:a7:c7:17:c5:0b:
        d9:ca:45:48:1a:37:29:57:b5:d1:d2:22:eb:86:c2:40:
        2c:8c:51:5c:34:d5:d4:69:f8:32:ce:41:bc:5d:b9:6c:
        97:1a:9c:cb:05:59:73:67:09:2f:3a:4f:82:61:6d:8c:
        73:83:74:7c:f5:5e:49:46:3a:8d:2b:02:5d:69:f2:df:
        a4:d3:94:3d:d6:66:1e:fb:57:26:18:2e:df:32:66:9a:
        d7:2c:db:04:70:85:81:47:a5:fb:c8:51:31:44:a2:c7:
        b7:66:23:b6:42:1f:34:94:e8:8b:35:f8:47:9a:9b:b9:
        9e:02:06:3e:88:04:cf:b5:c8:b8:b9:03:78:de:d6:15:
        7a:22:af:ac:9a:c7:ce:26:e7:c3:3a:a5:b9:ea:86:aa:
        dd:af:ed:29:c0:0d:af:ad:cc:dd:5b:ae:ef:95:ec:9a
    Fingerprint (SHA-256):
        29:A3:7F:19:FC:B2:07:0B:8A:80:A9:D8:43:8B:4F:F9:AE:FF:62:3E:E6:B1:DE:C0:8E:78:08:53:B6:34:DA:5B
    Fingerprint (SHA1):
        6A:DF:2F:6F:92:3D:CE:A0:05:C5:31:DA:50:F3:98:4A:F0:CD:71:2C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11545: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155201 (0x1dee47c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:33 2017
            Not After : Mon May 02 15:53:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:d1:74:e9:60:dd:58:6c:d1:cd:a2:38:02:c4:5b:3b:
                    e7:c5:57:59:98:a1:c8:5b:9b:43:0e:1b:a3:21:33:03:
                    a7:22:7a:f4:d0:bd:49:2d:e3:28:20:de:fc:c4:64:5c:
                    1f:61:5e:2b:b8:b4:51:91:42:3f:94:be:3e:62:c1:c4:
                    9e:0d:b6:57:97:c6:45:fc:26:37:c4:76:45:12:5a:cb:
                    a3:b1:52:e4:1a:8c:24:7f:a6:97:98:84:cd:58:55:af:
                    57:44:4c:28:81:3a:d1:eb:d1:94:b6:43:1e:b6:41:7e:
                    84:25:85:bd:a5:93:35:f2:3d:b2:78:a8:ea:c1:cb:a8:
                    84:b7:43:9b:83:16:cc:ef:ca:c6:93:4c:99:26:10:5d:
                    f8:5e:fb:c6:e4:85:3a:9d:06:c8:87:1a:ae:97:a8:70:
                    fe:b6:3b:d9:07:c7:af:d7:a4:04:64:d9:00:d0:8f:b8:
                    5d:f1:52:cb:1c:7b:be:40:12:a3:d1:df:3c:77:9b:2c:
                    71:b7:21:ac:12:71:10:79:4b:b7:3a:89:ef:06:81:ee:
                    60:dd:05:62:5e:be:3c:0a:af:a4:11:80:3b:b2:4b:39:
                    f4:ee:e8:83:97:7b:32:69:3b:94:54:58:07:08:0f:b2:
                    6b:6b:ed:a3:80:77:3f:ba:26:90:03:21:64:9e:28:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:d6:5b:a0:97:d8:8e:5a:49:ca:37:69:11:ce:0c:ba:
        ec:3c:8d:0c:7a:02:a9:92:6e:7a:82:5f:fd:3b:70:48:
        3b:b7:2f:a2:27:aa:51:12:c3:2c:42:2e:b3:e6:40:da:
        b3:61:4b:cc:b0:8b:c0:35:e7:7e:6e:ca:69:e2:6e:e3:
        35:d3:05:c7:32:88:62:f8:d0:c3:70:a1:be:0a:b4:16:
        a3:73:93:4a:a2:58:4f:50:13:e9:14:31:91:42:7d:d3:
        bf:0c:9a:b3:8f:9a:6f:05:95:e4:70:6b:9f:5c:b6:dd:
        dc:75:60:30:94:fe:85:35:88:0a:fa:53:74:2e:5b:61:
        70:5b:d5:64:65:4b:97:b5:20:81:65:8a:a1:a8:1e:10:
        97:c1:8c:a3:8b:fd:c7:bc:f2:c2:48:ff:c4:ef:fb:57:
        2e:3b:60:b0:64:f7:7b:05:60:ae:f5:1e:31:f2:98:14:
        fe:1a:b7:18:58:53:d6:be:35:b3:5d:19:7e:52:cf:ed:
        e4:72:c5:33:17:1c:18:9d:71:35:05:83:0b:b6:5f:52:
        1c:59:ce:d0:5c:56:cb:db:df:22:04:0a:e6:0f:0a:eb:
        a1:8e:8b:6a:39:b4:50:ee:ae:4e:24:7c:2e:77:a5:58:
        7d:3a:a4:33:71:55:51:a9:32:15:98:72:79:e7:2b:94
    Fingerprint (SHA-256):
        CC:6C:43:6F:8D:28:95:F2:46:D1:46:2C:CD:ED:8C:10:D5:60:24:A7:6E:FF:01:30:89:C4:BD:3B:DD:D2:E2:61
    Fingerprint (SHA1):
        62:3C:54:5B:95:9B:EB:DB:B0:7D:01:37:64:16:14:DA:5A:AF:4A:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11546: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155201 (0x1dee47c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:33 2017
            Not After : Mon May 02 15:53:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:d1:74:e9:60:dd:58:6c:d1:cd:a2:38:02:c4:5b:3b:
                    e7:c5:57:59:98:a1:c8:5b:9b:43:0e:1b:a3:21:33:03:
                    a7:22:7a:f4:d0:bd:49:2d:e3:28:20:de:fc:c4:64:5c:
                    1f:61:5e:2b:b8:b4:51:91:42:3f:94:be:3e:62:c1:c4:
                    9e:0d:b6:57:97:c6:45:fc:26:37:c4:76:45:12:5a:cb:
                    a3:b1:52:e4:1a:8c:24:7f:a6:97:98:84:cd:58:55:af:
                    57:44:4c:28:81:3a:d1:eb:d1:94:b6:43:1e:b6:41:7e:
                    84:25:85:bd:a5:93:35:f2:3d:b2:78:a8:ea:c1:cb:a8:
                    84:b7:43:9b:83:16:cc:ef:ca:c6:93:4c:99:26:10:5d:
                    f8:5e:fb:c6:e4:85:3a:9d:06:c8:87:1a:ae:97:a8:70:
                    fe:b6:3b:d9:07:c7:af:d7:a4:04:64:d9:00:d0:8f:b8:
                    5d:f1:52:cb:1c:7b:be:40:12:a3:d1:df:3c:77:9b:2c:
                    71:b7:21:ac:12:71:10:79:4b:b7:3a:89:ef:06:81:ee:
                    60:dd:05:62:5e:be:3c:0a:af:a4:11:80:3b:b2:4b:39:
                    f4:ee:e8:83:97:7b:32:69:3b:94:54:58:07:08:0f:b2:
                    6b:6b:ed:a3:80:77:3f:ba:26:90:03:21:64:9e:28:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:d6:5b:a0:97:d8:8e:5a:49:ca:37:69:11:ce:0c:ba:
        ec:3c:8d:0c:7a:02:a9:92:6e:7a:82:5f:fd:3b:70:48:
        3b:b7:2f:a2:27:aa:51:12:c3:2c:42:2e:b3:e6:40:da:
        b3:61:4b:cc:b0:8b:c0:35:e7:7e:6e:ca:69:e2:6e:e3:
        35:d3:05:c7:32:88:62:f8:d0:c3:70:a1:be:0a:b4:16:
        a3:73:93:4a:a2:58:4f:50:13:e9:14:31:91:42:7d:d3:
        bf:0c:9a:b3:8f:9a:6f:05:95:e4:70:6b:9f:5c:b6:dd:
        dc:75:60:30:94:fe:85:35:88:0a:fa:53:74:2e:5b:61:
        70:5b:d5:64:65:4b:97:b5:20:81:65:8a:a1:a8:1e:10:
        97:c1:8c:a3:8b:fd:c7:bc:f2:c2:48:ff:c4:ef:fb:57:
        2e:3b:60:b0:64:f7:7b:05:60:ae:f5:1e:31:f2:98:14:
        fe:1a:b7:18:58:53:d6:be:35:b3:5d:19:7e:52:cf:ed:
        e4:72:c5:33:17:1c:18:9d:71:35:05:83:0b:b6:5f:52:
        1c:59:ce:d0:5c:56:cb:db:df:22:04:0a:e6:0f:0a:eb:
        a1:8e:8b:6a:39:b4:50:ee:ae:4e:24:7c:2e:77:a5:58:
        7d:3a:a4:33:71:55:51:a9:32:15:98:72:79:e7:2b:94
    Fingerprint (SHA-256):
        CC:6C:43:6F:8D:28:95:F2:46:D1:46:2C:CD:ED:8C:10:D5:60:24:A7:6E:FF:01:30:89:C4:BD:3B:DD:D2:E2:61
    Fingerprint (SHA1):
        62:3C:54:5B:95:9B:EB:DB:B0:7D:01:37:64:16:14:DA:5A:AF:4A:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11547: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155202 (0x1dee47c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:34 2017
            Not After : Mon May 02 15:53:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:af:4c:73:ac:22:9b:07:3a:d4:a9:2f:72:fb:df:64:
                    d2:68:bc:d2:d3:55:22:2a:a4:c6:ef:bc:53:99:d2:a9:
                    fb:d8:7e:76:22:0c:22:6c:db:3f:b8:ae:a7:fb:ac:79:
                    d7:6d:30:fe:44:9d:a5:64:79:e8:68:c4:bb:41:2e:22:
                    25:99:28:ba:73:83:8a:b5:4d:07:7e:5f:bb:fe:f7:9c:
                    d1:ef:b8:c4:70:b0:41:11:bf:18:ae:47:e4:36:66:2e:
                    25:3b:c3:ec:a3:22:65:d8:cd:31:37:45:5b:de:e6:e5:
                    f3:ab:7c:85:a7:8c:eb:62:35:96:fc:d3:fa:5e:c3:29:
                    32:4b:e2:34:93:2c:64:76:c2:8e:47:9e:93:7a:fc:d6:
                    a7:02:d4:c2:b7:4e:76:9d:6e:49:b5:86:0a:b2:a7:58:
                    dc:79:d6:99:8d:dd:0f:6c:61:25:71:80:69:d8:c2:13:
                    01:18:d6:ac:3d:6b:b5:97:bf:bf:e7:e0:2e:1f:8a:c2:
                    dd:dd:9b:12:e9:db:ff:7c:02:cc:79:23:20:34:8e:32:
                    00:c0:eb:1c:64:0f:29:21:f6:41:89:6f:34:5e:d1:15:
                    93:8f:b6:dd:16:3c:df:de:63:72:86:27:cc:e9:bd:10:
                    23:2f:66:db:75:d5:45:dc:30:32:19:37:07:0b:be:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:5b:0f:c0:67:6a:2a:cd:f8:a7:e0:f6:64:54:79:2c:
        6c:11:7c:5a:7e:a3:4e:38:05:32:cc:b3:02:fe:a5:38:
        42:d4:10:20:82:11:fe:81:4f:96:3d:2f:b4:bb:91:15:
        7d:eb:ac:e9:ef:f9:d6:cd:01:70:48:e3:9f:40:87:5e:
        ed:a3:07:00:ac:17:9d:35:f5:ed:38:c5:2a:8b:90:6f:
        c0:6a:cb:e4:d5:54:78:81:56:3b:4f:17:51:6c:20:6b:
        57:33:aa:8a:44:f9:de:31:f4:f5:8e:8a:7b:4a:55:fd:
        ba:76:91:2a:62:a5:46:5d:63:5b:d6:72:a8:14:cd:49:
        cb:e8:8f:bc:69:04:58:35:1f:13:ec:0f:f0:3d:37:53:
        70:25:4b:c3:ff:f3:98:31:75:e3:2b:28:aa:4e:ae:56:
        eb:51:e2:05:36:f8:99:e1:6c:e2:62:a7:e3:4f:39:48:
        53:1f:f5:46:a0:02:03:55:46:33:60:66:45:7f:55:b0:
        de:13:06:1b:f4:07:80:38:5e:4f:91:ba:1b:63:09:e9:
        00:30:ce:aa:e1:9a:f3:14:ec:6c:43:36:9d:b1:c1:75:
        54:4f:71:05:f8:3b:7c:23:b0:0b:89:fb:ec:45:0e:f5:
        f6:42:d6:92:93:2e:cf:8e:e5:59:a4:8c:80:1d:4a:d8
    Fingerprint (SHA-256):
        01:E2:A3:71:12:39:24:FC:0D:C8:B1:20:5C:3C:72:C9:A0:E7:26:F1:C8:92:5E:5B:47:83:AC:F4:66:63:6B:D0
    Fingerprint (SHA1):
        D7:23:55:E9:76:AC:82:89:CD:61:03:30:4B:91:45:2B:F5:09:AF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11548: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155202 (0x1dee47c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:34 2017
            Not After : Mon May 02 15:53:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:af:4c:73:ac:22:9b:07:3a:d4:a9:2f:72:fb:df:64:
                    d2:68:bc:d2:d3:55:22:2a:a4:c6:ef:bc:53:99:d2:a9:
                    fb:d8:7e:76:22:0c:22:6c:db:3f:b8:ae:a7:fb:ac:79:
                    d7:6d:30:fe:44:9d:a5:64:79:e8:68:c4:bb:41:2e:22:
                    25:99:28:ba:73:83:8a:b5:4d:07:7e:5f:bb:fe:f7:9c:
                    d1:ef:b8:c4:70:b0:41:11:bf:18:ae:47:e4:36:66:2e:
                    25:3b:c3:ec:a3:22:65:d8:cd:31:37:45:5b:de:e6:e5:
                    f3:ab:7c:85:a7:8c:eb:62:35:96:fc:d3:fa:5e:c3:29:
                    32:4b:e2:34:93:2c:64:76:c2:8e:47:9e:93:7a:fc:d6:
                    a7:02:d4:c2:b7:4e:76:9d:6e:49:b5:86:0a:b2:a7:58:
                    dc:79:d6:99:8d:dd:0f:6c:61:25:71:80:69:d8:c2:13:
                    01:18:d6:ac:3d:6b:b5:97:bf:bf:e7:e0:2e:1f:8a:c2:
                    dd:dd:9b:12:e9:db:ff:7c:02:cc:79:23:20:34:8e:32:
                    00:c0:eb:1c:64:0f:29:21:f6:41:89:6f:34:5e:d1:15:
                    93:8f:b6:dd:16:3c:df:de:63:72:86:27:cc:e9:bd:10:
                    23:2f:66:db:75:d5:45:dc:30:32:19:37:07:0b:be:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:5b:0f:c0:67:6a:2a:cd:f8:a7:e0:f6:64:54:79:2c:
        6c:11:7c:5a:7e:a3:4e:38:05:32:cc:b3:02:fe:a5:38:
        42:d4:10:20:82:11:fe:81:4f:96:3d:2f:b4:bb:91:15:
        7d:eb:ac:e9:ef:f9:d6:cd:01:70:48:e3:9f:40:87:5e:
        ed:a3:07:00:ac:17:9d:35:f5:ed:38:c5:2a:8b:90:6f:
        c0:6a:cb:e4:d5:54:78:81:56:3b:4f:17:51:6c:20:6b:
        57:33:aa:8a:44:f9:de:31:f4:f5:8e:8a:7b:4a:55:fd:
        ba:76:91:2a:62:a5:46:5d:63:5b:d6:72:a8:14:cd:49:
        cb:e8:8f:bc:69:04:58:35:1f:13:ec:0f:f0:3d:37:53:
        70:25:4b:c3:ff:f3:98:31:75:e3:2b:28:aa:4e:ae:56:
        eb:51:e2:05:36:f8:99:e1:6c:e2:62:a7:e3:4f:39:48:
        53:1f:f5:46:a0:02:03:55:46:33:60:66:45:7f:55:b0:
        de:13:06:1b:f4:07:80:38:5e:4f:91:ba:1b:63:09:e9:
        00:30:ce:aa:e1:9a:f3:14:ec:6c:43:36:9d:b1:c1:75:
        54:4f:71:05:f8:3b:7c:23:b0:0b:89:fb:ec:45:0e:f5:
        f6:42:d6:92:93:2e:cf:8e:e5:59:a4:8c:80:1d:4a:d8
    Fingerprint (SHA-256):
        01:E2:A3:71:12:39:24:FC:0D:C8:B1:20:5C:3C:72:C9:A0:E7:26:F1:C8:92:5E:5B:47:83:AC:F4:66:63:6B:D0
    Fingerprint (SHA1):
        D7:23:55:E9:76:AC:82:89:CD:61:03:30:4B:91:45:2B:F5:09:AF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11549: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11550: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155205 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11551: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11552: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11553: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11554: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155206   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11555: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11556: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11557: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11558: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155207   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11559: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11560: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11561: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11562: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502155208   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11563: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11564: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11565: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11566: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155209   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11567: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11568: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11569: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11570: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155210   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11571: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11572: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11573: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11574: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502155211   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11575: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11576: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11577: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11578: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11579: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11580: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11581: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155205 (0x1dee47c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:38 2017
            Not After : Mon May 02 15:53:38 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:07:20:e4:99:3c:8e:76:bb:f1:c3:1a:9d:74:b0:b1:
                    13:01:b2:39:83:8b:51:5f:74:11:d6:1e:53:b9:73:b1:
                    6f:d5:bf:5e:42:76:46:55:d7:c4:4d:e4:b8:33:33:e9:
                    ab:e2:99:49:2a:76:de:86:a5:6f:49:9e:71:0c:12:c2:
                    42:72:4c:f1:fb:71:e6:c3:4f:53:f2:49:6f:99:86:c2:
                    e6:18:0f:23:2e:8d:55:63:75:c0:af:a2:4c:35:9a:3d:
                    3f:ae:08:9c:2a:39:96:51:ec:ea:dc:3c:00:6e:94:92:
                    48:3b:4b:23:7b:ca:c6:d8:51:42:1f:36:45:45:51:57:
                    cc:e2:36:f0:3b:01:05:3e:e8:ba:1f:a2:61:ec:d5:6f:
                    3f:96:98:21:9e:59:6e:08:43:20:3d:e4:18:f4:02:83:
                    5e:87:3e:4d:6f:dd:28:6e:c3:f6:ee:4b:16:28:0f:d1:
                    d4:0a:f1:90:40:49:ec:33:11:6e:54:6b:56:0b:4d:6b:
                    57:75:0f:e3:66:1b:7c:6f:55:97:92:0f:0e:76:e2:d9:
                    fa:42:ab:a3:59:fd:31:a7:2c:5f:80:90:94:2b:b6:c2:
                    39:60:06:ae:e5:33:9d:03:88:10:05:24:20:ec:6f:0c:
                    72:1e:81:59:01:e9:38:8e:8e:12:c3:6f:18:9b:2c:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:68:04:36:7b:4a:e9:ae:fe:a7:15:d1:03:d8:c6:51:
        c3:ca:22:18:c8:ce:34:e8:37:99:70:12:54:04:92:76:
        c3:d7:30:7e:bb:19:c0:4e:1d:df:6f:42:8a:c1:42:7c:
        c3:c0:35:43:dc:c8:f1:5d:ea:31:c7:7d:56:8b:6f:55:
        ea:38:4d:c3:de:f9:b2:6e:ad:c8:ef:ca:43:6b:74:36:
        62:a7:97:38:1e:b4:7f:87:45:9e:c3:65:9f:a5:1d:af:
        30:9e:36:38:ac:da:b4:ca:73:7c:6e:4a:d6:f5:d5:86:
        5a:95:90:fe:60:cf:55:70:dc:51:53:6c:d1:7e:eb:b6:
        ec:63:f6:18:dc:46:97:ec:fa:c9:56:b8:80:9f:66:70:
        86:b0:da:4e:2d:4b:58:9c:3e:46:46:94:af:dd:bd:04:
        c9:6d:c8:07:4d:79:22:14:23:7d:b7:6c:fe:2d:71:46:
        b7:6a:4b:f0:e4:35:4d:25:bf:d8:af:6a:19:a8:4d:01:
        04:c2:23:bc:10:8b:13:a4:5b:d9:22:04:42:a9:99:8f:
        e8:8c:9f:03:59:6d:e1:d8:c1:c8:f3:3f:90:a9:aa:85:
        89:da:74:ca:04:59:db:db:6a:98:3c:18:26:a6:8c:43:
        41:6a:0d:58:5c:e1:e2:e4:51:03:d3:b5:cd:5c:9c:7c
    Fingerprint (SHA-256):
        A5:61:FA:28:1C:F0:C7:E2:7B:A7:43:86:66:A0:B8:90:24:1F:E7:AE:6A:ED:60:F3:62:70:37:34:15:AB:23:C5
    Fingerprint (SHA1):
        E9:51:AF:AC:D1:4B:7C:5E:88:27:27:43:CE:8E:BD:5B:31:04:BF:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11582: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11583: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11584: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11585: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155205 (0x1dee47c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:38 2017
            Not After : Mon May 02 15:53:38 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:07:20:e4:99:3c:8e:76:bb:f1:c3:1a:9d:74:b0:b1:
                    13:01:b2:39:83:8b:51:5f:74:11:d6:1e:53:b9:73:b1:
                    6f:d5:bf:5e:42:76:46:55:d7:c4:4d:e4:b8:33:33:e9:
                    ab:e2:99:49:2a:76:de:86:a5:6f:49:9e:71:0c:12:c2:
                    42:72:4c:f1:fb:71:e6:c3:4f:53:f2:49:6f:99:86:c2:
                    e6:18:0f:23:2e:8d:55:63:75:c0:af:a2:4c:35:9a:3d:
                    3f:ae:08:9c:2a:39:96:51:ec:ea:dc:3c:00:6e:94:92:
                    48:3b:4b:23:7b:ca:c6:d8:51:42:1f:36:45:45:51:57:
                    cc:e2:36:f0:3b:01:05:3e:e8:ba:1f:a2:61:ec:d5:6f:
                    3f:96:98:21:9e:59:6e:08:43:20:3d:e4:18:f4:02:83:
                    5e:87:3e:4d:6f:dd:28:6e:c3:f6:ee:4b:16:28:0f:d1:
                    d4:0a:f1:90:40:49:ec:33:11:6e:54:6b:56:0b:4d:6b:
                    57:75:0f:e3:66:1b:7c:6f:55:97:92:0f:0e:76:e2:d9:
                    fa:42:ab:a3:59:fd:31:a7:2c:5f:80:90:94:2b:b6:c2:
                    39:60:06:ae:e5:33:9d:03:88:10:05:24:20:ec:6f:0c:
                    72:1e:81:59:01:e9:38:8e:8e:12:c3:6f:18:9b:2c:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:68:04:36:7b:4a:e9:ae:fe:a7:15:d1:03:d8:c6:51:
        c3:ca:22:18:c8:ce:34:e8:37:99:70:12:54:04:92:76:
        c3:d7:30:7e:bb:19:c0:4e:1d:df:6f:42:8a:c1:42:7c:
        c3:c0:35:43:dc:c8:f1:5d:ea:31:c7:7d:56:8b:6f:55:
        ea:38:4d:c3:de:f9:b2:6e:ad:c8:ef:ca:43:6b:74:36:
        62:a7:97:38:1e:b4:7f:87:45:9e:c3:65:9f:a5:1d:af:
        30:9e:36:38:ac:da:b4:ca:73:7c:6e:4a:d6:f5:d5:86:
        5a:95:90:fe:60:cf:55:70:dc:51:53:6c:d1:7e:eb:b6:
        ec:63:f6:18:dc:46:97:ec:fa:c9:56:b8:80:9f:66:70:
        86:b0:da:4e:2d:4b:58:9c:3e:46:46:94:af:dd:bd:04:
        c9:6d:c8:07:4d:79:22:14:23:7d:b7:6c:fe:2d:71:46:
        b7:6a:4b:f0:e4:35:4d:25:bf:d8:af:6a:19:a8:4d:01:
        04:c2:23:bc:10:8b:13:a4:5b:d9:22:04:42:a9:99:8f:
        e8:8c:9f:03:59:6d:e1:d8:c1:c8:f3:3f:90:a9:aa:85:
        89:da:74:ca:04:59:db:db:6a:98:3c:18:26:a6:8c:43:
        41:6a:0d:58:5c:e1:e2:e4:51:03:d3:b5:cd:5c:9c:7c
    Fingerprint (SHA-256):
        A5:61:FA:28:1C:F0:C7:E2:7B:A7:43:86:66:A0:B8:90:24:1F:E7:AE:6A:ED:60:F3:62:70:37:34:15:AB:23:C5
    Fingerprint (SHA1):
        E9:51:AF:AC:D1:4B:7C:5E:88:27:27:43:CE:8E:BD:5B:31:04:BF:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11586: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11587: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11588: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155212 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11589: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11590: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11591: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11592: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155213   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11593: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11594: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11595: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11596: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502155214   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11597: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11598: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11599: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11600: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502155215   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11601: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11602: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11603: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11604: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502155216   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11605: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11606: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11607: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11608: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502155217   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11609: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11610: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11611: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11612: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502155218   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11613: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11614: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11615: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11616: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502155219   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11617: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11618: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11619: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11620: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502155220   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11621: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11622: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11623: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11624: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502155221   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11625: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11626: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11627: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11628: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502155222   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11629: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11630: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11631: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11632: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502155223   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11633: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11634: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11635: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11636: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502155224   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11637: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11638: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11639: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11640: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502155225   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11641: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11642: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11643: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11644: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502155226   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11645: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11646: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11647: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11648: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502155227   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11649: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11650: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11651: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11652: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502155228   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11653: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11654: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11655: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11656: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502155229   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11657: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11658: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11659: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11660: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502155230   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11661: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11662: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11663: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11664: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502155231   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11665: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11666: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11667: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11668: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502155232   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11669: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11670: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11671: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11672: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502155233   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11673: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11674: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11675: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11676: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502155234   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11677: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11678: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11679: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11680: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502155235   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11681: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11682: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11683: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11684: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502155236   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11685: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11686: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11687: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11688: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502155237   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11689: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11690: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11691: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11692: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502155238   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11693: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11694: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11695: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11696: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502155239   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11697: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11698: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11699: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11700: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502155240   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11701: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11702: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11703: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11704: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502155241   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11705: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11706: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11707: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11708: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11709: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11710: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11711: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11712: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11713: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11714: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11715: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11716: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11717: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11718: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11719: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11720: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11721: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11722: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11723: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11724: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11725: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11726: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11727: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11728: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11729: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155212 (0x1dee47cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:44 2017
            Not After : Mon May 02 15:53:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:db:9e:06:e3:43:76:e3:63:08:66:14:a9:80:cc:9c:
                    e9:16:f4:50:1d:b4:9d:60:d5:eb:05:a4:ec:c8:fd:3b:
                    3c:c1:54:56:56:ce:c3:24:8c:a4:04:d2:c2:33:e7:0c:
                    db:86:cb:a0:2a:4d:90:9b:81:35:68:13:ee:bc:09:bb:
                    96:92:56:1c:ef:37:f8:3d:c5:08:7b:c9:08:df:6b:3d:
                    06:0f:e0:bd:a1:97:45:57:41:5c:b5:7f:7c:66:95:8a:
                    ce:35:51:a1:70:57:b5:48:05:6a:22:89:b5:e8:a7:46:
                    ea:a8:2a:bc:74:79:5d:dc:c0:57:20:0b:25:c3:2d:82:
                    8d:51:c3:6c:d3:7e:71:46:07:ee:05:e9:24:e4:61:ce:
                    c8:6b:93:4b:71:64:39:cc:02:15:85:99:dd:d1:88:23:
                    fc:02:0a:e4:8b:24:32:f5:9a:cd:15:ae:cf:0e:2f:9f:
                    af:35:ea:34:9f:e3:41:82:f0:8a:20:0d:80:6b:94:09:
                    12:91:43:58:19:85:81:a7:fe:bf:6d:ea:84:fe:1f:60:
                    7d:3e:81:e9:e9:ec:fd:ec:8c:48:18:2d:50:0a:a9:19:
                    ff:86:68:cf:59:64:bb:d7:2b:66:c5:33:aa:87:49:fe:
                    e9:00:06:cc:54:f2:05:d9:35:b1:4f:92:81:99:d1:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:ba:df:83:e4:d4:b4:3c:9d:7f:42:1c:8a:9b:75:02:
        aa:d1:32:f1:87:ec:ba:07:99:5d:70:63:08:9c:1d:db:
        4e:df:9d:5f:ac:42:2f:3a:9a:99:c4:93:71:c5:09:5e:
        74:94:13:c1:a1:7f:6e:ee:a9:1d:bb:16:b8:02:70:d1:
        ff:00:79:6e:e3:35:f7:1e:4d:6a:c8:96:64:a5:57:1d:
        d9:a4:7d:62:8a:05:3f:95:10:56:4c:10:c1:3d:23:18:
        7e:f2:89:f0:cd:39:45:a4:b5:08:6f:cf:d3:91:7b:7c:
        d1:cf:d0:50:3f:2b:78:03:62:5e:e5:66:c9:70:24:b4:
        c9:94:4f:48:90:fc:62:6e:9b:de:af:e3:a0:63:34:1b:
        06:96:aa:8e:0e:24:a5:40:41:10:8b:e4:ed:3c:30:a8:
        28:8c:43:89:3a:50:84:ed:68:51:f1:4d:5d:0a:b0:23:
        49:e8:88:06:5d:e7:17:a7:1e:1e:1e:48:81:a7:da:88:
        ff:98:8c:6b:e3:74:6f:45:91:32:be:47:cc:3d:0c:dd:
        9c:1b:e1:06:a8:64:cd:9f:b2:2e:1f:a8:4a:15:73:c1:
        c1:28:25:80:d6:76:ac:a2:84:55:31:55:03:9f:c7:77:
        2d:d5:3e:3f:ee:50:7b:6f:3a:40:d8:5c:67:19:25:8e
    Fingerprint (SHA-256):
        AB:55:5A:00:44:D8:4C:B0:37:7F:39:7C:BE:39:3B:D9:F3:DB:CA:0C:F5:97:40:EF:A3:F8:B0:27:55:8F:80:09
    Fingerprint (SHA1):
        8B:97:7C:97:EF:8A:94:A8:79:D1:48:6D:A4:E8:8F:36:76:28:F4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11730: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11731: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11732: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155242 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11733: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11734: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #11735: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11736: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502155243   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11737: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11738: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #11739: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11740: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502155244   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11741: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11742: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #11743: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11744: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502155245   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11745: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11746: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #11747: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11748: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502155246   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11749: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11750: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #11751: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11752: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502155247   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11753: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11754: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #11755: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11756: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502155248   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11757: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11758: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11759: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155242 (0x1dee47ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:13 2017
            Not After : Mon May 02 15:54:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:5e:69:e2:5c:a0:54:30:fc:38:13:b1:80:da:69:4f:
                    3d:b7:bc:d4:3a:c2:fe:64:63:da:3c:ef:75:35:d6:1c:
                    d2:44:12:16:5e:ad:09:48:63:e4:79:37:26:59:84:88:
                    08:31:f7:18:8b:6b:82:28:97:35:40:8c:e1:a4:90:0e:
                    ec:05:ae:5e:5e:13:89:18:3a:c7:a5:9b:e4:ce:de:ad:
                    9e:d8:4a:39:2b:47:90:a1:df:5b:59:08:0a:70:4f:4c:
                    7b:c3:11:cc:25:80:b5:85:4a:91:58:55:12:29:6e:19:
                    bd:43:f9:7d:38:fc:c6:ca:1e:1b:63:d3:04:9b:f6:1e:
                    9d:f9:3c:5e:b2:34:cc:07:a2:ac:44:b3:d1:e1:3e:2a:
                    6d:d1:97:c8:75:d2:cc:72:10:a4:fc:35:13:eb:4f:1c:
                    09:1b:c6:da:92:44:d8:54:1f:63:e5:c9:ef:84:be:ac:
                    b6:18:2d:03:15:5b:0f:0d:a7:60:c2:2f:3d:a1:ba:39:
                    28:f1:9a:fa:43:85:81:84:f6:fd:e6:57:a8:6a:71:da:
                    c3:a3:1b:08:7a:e0:f1:df:79:4d:c4:54:e7:36:27:7d:
                    58:55:be:cb:d9:dd:c8:b2:08:58:ba:97:30:a3:cb:b9:
                    8a:b8:27:fc:86:33:c8:f1:eb:25:cd:1c:e4:7c:8b:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:e6:86:ed:3f:ec:01:bc:41:e6:db:d9:54:9c:3d:dc:
        d3:e2:3f:51:9f:4e:a1:0c:ec:cc:c6:4b:fc:52:71:bd:
        72:78:dd:8b:fa:6a:f3:42:48:9a:65:9b:23:94:f1:2e:
        b5:4d:cf:6e:92:95:ee:36:b0:5b:13:61:73:e4:2c:d7:
        0b:a5:34:ca:11:06:f5:8d:ef:c9:8d:af:af:f1:71:23:
        8c:d2:2a:67:f0:10:70:37:c3:d0:37:31:15:0c:06:87:
        5d:24:9b:58:92:41:44:27:73:11:da:63:72:98:3a:7f:
        39:c6:55:58:b0:5d:25:e7:47:94:04:8c:fb:44:a9:c3:
        66:24:d7:c4:e1:0d:d2:04:a3:a9:b6:72:df:ef:b5:93:
        f8:b6:f7:26:50:54:46:a9:9c:b2:2c:23:7d:94:ca:68:
        21:4a:c2:c9:b1:60:e9:fd:b1:df:df:55:fa:9c:45:67:
        e7:3d:33:6f:cf:4a:a1:9d:e1:25:86:c9:ef:cf:de:f2:
        1f:f7:75:ff:cf:ff:5c:ea:f8:67:d7:8a:28:c9:09:16:
        2e:66:7b:2c:29:86:ee:4f:fd:4b:8a:da:5e:0f:eb:9f:
        78:12:2d:82:1f:8a:64:e0:a4:e3:f1:93:c4:39:03:77:
        d1:41:65:d2:9a:3d:e8:94:46:24:18:6f:9f:28:6c:b5
    Fingerprint (SHA-256):
        C2:8B:0F:69:EF:02:7D:02:00:D1:CA:28:FF:03:B1:71:BE:80:0F:48:5D:42:7F:81:B9:6D:E2:9F:AF:9D:B3:4D
    Fingerprint (SHA1):
        37:6A:3B:2F:08:EF:7D:98:B3:9A:68:14:6E:02:EF:BB:EE:A5:00:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11760: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11761: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11762: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11763: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155242 (0x1dee47ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:13 2017
            Not After : Mon May 02 15:54:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:5e:69:e2:5c:a0:54:30:fc:38:13:b1:80:da:69:4f:
                    3d:b7:bc:d4:3a:c2:fe:64:63:da:3c:ef:75:35:d6:1c:
                    d2:44:12:16:5e:ad:09:48:63:e4:79:37:26:59:84:88:
                    08:31:f7:18:8b:6b:82:28:97:35:40:8c:e1:a4:90:0e:
                    ec:05:ae:5e:5e:13:89:18:3a:c7:a5:9b:e4:ce:de:ad:
                    9e:d8:4a:39:2b:47:90:a1:df:5b:59:08:0a:70:4f:4c:
                    7b:c3:11:cc:25:80:b5:85:4a:91:58:55:12:29:6e:19:
                    bd:43:f9:7d:38:fc:c6:ca:1e:1b:63:d3:04:9b:f6:1e:
                    9d:f9:3c:5e:b2:34:cc:07:a2:ac:44:b3:d1:e1:3e:2a:
                    6d:d1:97:c8:75:d2:cc:72:10:a4:fc:35:13:eb:4f:1c:
                    09:1b:c6:da:92:44:d8:54:1f:63:e5:c9:ef:84:be:ac:
                    b6:18:2d:03:15:5b:0f:0d:a7:60:c2:2f:3d:a1:ba:39:
                    28:f1:9a:fa:43:85:81:84:f6:fd:e6:57:a8:6a:71:da:
                    c3:a3:1b:08:7a:e0:f1:df:79:4d:c4:54:e7:36:27:7d:
                    58:55:be:cb:d9:dd:c8:b2:08:58:ba:97:30:a3:cb:b9:
                    8a:b8:27:fc:86:33:c8:f1:eb:25:cd:1c:e4:7c:8b:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:e6:86:ed:3f:ec:01:bc:41:e6:db:d9:54:9c:3d:dc:
        d3:e2:3f:51:9f:4e:a1:0c:ec:cc:c6:4b:fc:52:71:bd:
        72:78:dd:8b:fa:6a:f3:42:48:9a:65:9b:23:94:f1:2e:
        b5:4d:cf:6e:92:95:ee:36:b0:5b:13:61:73:e4:2c:d7:
        0b:a5:34:ca:11:06:f5:8d:ef:c9:8d:af:af:f1:71:23:
        8c:d2:2a:67:f0:10:70:37:c3:d0:37:31:15:0c:06:87:
        5d:24:9b:58:92:41:44:27:73:11:da:63:72:98:3a:7f:
        39:c6:55:58:b0:5d:25:e7:47:94:04:8c:fb:44:a9:c3:
        66:24:d7:c4:e1:0d:d2:04:a3:a9:b6:72:df:ef:b5:93:
        f8:b6:f7:26:50:54:46:a9:9c:b2:2c:23:7d:94:ca:68:
        21:4a:c2:c9:b1:60:e9:fd:b1:df:df:55:fa:9c:45:67:
        e7:3d:33:6f:cf:4a:a1:9d:e1:25:86:c9:ef:cf:de:f2:
        1f:f7:75:ff:cf:ff:5c:ea:f8:67:d7:8a:28:c9:09:16:
        2e:66:7b:2c:29:86:ee:4f:fd:4b:8a:da:5e:0f:eb:9f:
        78:12:2d:82:1f:8a:64:e0:a4:e3:f1:93:c4:39:03:77:
        d1:41:65:d2:9a:3d:e8:94:46:24:18:6f:9f:28:6c:b5
    Fingerprint (SHA-256):
        C2:8B:0F:69:EF:02:7D:02:00:D1:CA:28:FF:03:B1:71:BE:80:0F:48:5D:42:7F:81:B9:6D:E2:9F:AF:9D:B3:4D
    Fingerprint (SHA1):
        37:6A:3B:2F:08:EF:7D:98:B3:9A:68:14:6E:02:EF:BB:EE:A5:00:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11764: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11765: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11766: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11767: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155249 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11768: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11769: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11770: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11771: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155250   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11772: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11773: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11774: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11775: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155251   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11776: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11777: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11778: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11779: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155252   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11780: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11781: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11782: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11783: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11784: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11785: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155249 (0x1dee47f1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:20 2017
            Not After : Mon May 02 15:54:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:27:9e:f6:bd:de:bf:20:95:29:ec:48:a3:81:cd:f0:
                    00:2d:aa:af:8e:7e:77:1a:35:03:6e:16:b4:f9:63:10:
                    5c:38:84:d5:9d:ec:fc:9d:4d:c8:a6:4d:3a:44:af:63:
                    e4:c0:7f:37:e9:80:d2:06:58:a1:1b:fd:f7:16:45:3c:
                    72:dd:71:6f:72:25:8f:c2:aa:be:14:a1:37:f6:8e:b5:
                    8b:9f:94:c3:9f:5a:4c:bd:e6:ba:31:80:6f:c6:26:d3:
                    52:f1:04:9c:a3:8a:c2:94:d6:e8:aa:7d:83:1b:5e:8a:
                    46:61:16:0f:6d:80:30:c9:af:71:a3:89:6b:63:85:87:
                    63:0b:05:b5:ee:b2:2a:97:c8:cd:48:57:2d:b5:79:3c:
                    7a:d6:97:d4:27:ca:9c:bb:dd:87:77:99:1a:04:c1:25:
                    c2:bd:39:53:bb:e1:99:8b:50:63:4f:4c:bf:4c:81:1c:
                    76:9e:74:7a:5d:73:a0:e9:1f:cf:38:1a:c3:7c:a6:06:
                    3c:b1:d1:fd:58:21:08:57:f8:b3:89:1c:15:23:b4:d8:
                    c6:95:9b:cf:9c:fa:3f:df:50:b1:43:19:4c:a5:16:c9:
                    2d:9d:4e:90:c6:6e:9d:37:4c:a2:c6:f0:65:97:a5:af:
                    76:84:93:9d:58:0e:98:4e:8b:2a:ca:15:a6:71:c7:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:8b:a9:02:d8:26:13:07:f3:54:a6:e2:95:ac:a7:90:
        36:79:e9:17:60:8a:4a:88:55:30:d1:cc:74:77:88:5d:
        6a:95:97:88:0b:1f:29:96:a3:fc:37:79:00:1e:45:37:
        12:0a:8d:38:f8:ca:6c:7b:af:d5:c9:4e:dc:ea:e0:20:
        42:04:9b:04:1b:17:5d:08:1e:ba:65:58:2d:f4:1c:00:
        58:d2:b9:80:ed:d4:da:93:a2:14:2b:5b:0a:c2:8c:e2:
        8a:c6:71:fc:5b:d7:82:49:38:e1:0c:a1:6c:4d:ca:1e:
        83:7f:51:cb:82:10:a6:70:c1:ad:e3:49:73:8b:53:e7:
        a3:15:9f:66:0f:c4:25:eb:90:57:81:65:3a:62:77:f8:
        eb:e5:2d:0f:aa:13:a7:ce:04:ed:69:da:49:cd:7e:b0:
        a3:9b:4c:f4:bd:2b:54:1f:ed:c4:6f:71:1a:46:88:ef:
        b3:8f:bf:c4:59:a3:c9:cb:42:7f:1f:4b:c2:7b:b1:96:
        d0:8c:9c:b1:57:e8:0a:6c:a6:c7:4d:a3:11:3d:c6:dc:
        0a:fc:ef:5b:72:e0:b9:08:f6:59:04:09:09:f6:61:a1:
        7a:ce:fa:93:45:f5:dd:b0:5f:a5:db:ea:7e:9d:77:df:
        5f:2f:a3:a8:1f:e8:e8:ae:58:52:cf:9e:e3:d0:98:e0
    Fingerprint (SHA-256):
        EC:DB:63:1A:75:4E:2E:BB:23:37:EE:76:D1:AA:1C:C1:33:91:A2:1F:55:AD:58:64:81:38:A9:9F:2C:BA:76:5C
    Fingerprint (SHA1):
        F8:C3:D7:21:AF:72:1B:C8:71:E1:C2:F6:15:F6:1F:C7:7B:C5:26:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11786: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11787: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11788: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155250 (0x1dee47f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:21 2017
            Not After : Mon May 02 15:54:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:d2:3a:e7:b3:2c:cd:88:e5:23:67:94:58:65:08:1d:
                    52:6c:16:04:89:75:ce:63:0d:15:64:8a:95:b8:2d:26:
                    12:fa:b9:88:bb:8d:fb:36:9c:9b:ff:00:f8:e3:af:ac:
                    34:f5:0f:75:9f:33:ee:34:ce:91:98:6e:80:67:16:40:
                    a0:96:f0:e2:a0:9c:b0:55:6b:0e:44:9b:63:52:80:4d:
                    ef:5e:06:24:c1:cd:76:cf:e4:c9:e7:d8:04:d6:ab:f2:
                    8e:8e:48:8c:c5:e1:8f:5b:88:f7:b5:fb:c3:ae:6c:7e:
                    1d:17:94:61:a5:a5:9b:0c:7a:54:7d:ad:bc:90:7d:9e:
                    f5:7e:eb:03:b2:67:ed:d3:f0:e9:c9:62:ad:56:ae:ae:
                    82:0f:46:3d:6e:f3:1d:0c:ef:25:e7:9a:61:db:9e:26:
                    a8:8d:2b:f0:21:61:2d:c4:c6:c7:d1:81:4c:1b:98:5a:
                    6d:ad:2f:f8:ea:51:37:8c:1d:6e:86:71:45:ec:32:75:
                    18:e3:3b:33:5c:57:94:23:a4:82:9a:2d:22:d6:03:2f:
                    e1:91:e2:ad:3c:83:9e:ab:17:fd:63:4c:95:fd:18:65:
                    29:e3:01:3c:bc:c3:5f:14:1a:31:11:e2:2c:e8:e0:67:
                    e3:45:99:b8:90:e7:d6:61:af:4a:87:87:f5:01:d0:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:7c:f4:9b:fa:8b:6e:8e:9e:41:c4:eb:44:34:13:09:
        c4:a2:9c:4d:2a:3a:1f:a0:83:ed:ff:63:70:c0:8e:75:
        e6:2a:19:a1:49:19:c9:7b:6e:d4:36:97:49:99:90:83:
        f9:27:0b:a9:96:11:90:6e:c5:9f:96:72:3d:71:13:c9:
        9d:90:bd:1f:94:dd:ce:3e:52:45:79:bf:58:f5:e8:3b:
        73:19:a2:73:65:ae:0e:2b:63:ab:75:54:f8:d9:fe:ee:
        eb:f5:50:48:e7:71:b9:a2:d4:5d:5f:90:8c:4b:2b:dc:
        5d:66:dc:8f:c5:98:76:64:60:8e:42:5d:b8:5a:d4:d9:
        12:2b:36:c0:79:f4:b1:52:d1:52:e6:6c:8d:3a:cd:75:
        64:fc:aa:6b:2f:ad:1c:52:28:c1:20:2d:15:df:b6:7a:
        86:4a:af:9c:96:8e:c0:01:24:76:0f:f0:5c:96:00:71:
        3a:b1:6d:26:8e:85:c3:57:6f:e1:19:80:6e:d5:e4:0d:
        22:64:27:f0:eb:e9:d0:47:b6:aa:83:2e:ca:fa:90:a0:
        d0:8d:78:25:9f:4a:35:ff:6b:ce:ca:a0:45:10:0f:df:
        52:e5:ce:37:53:e2:f0:53:8a:ae:e7:05:52:09:be:20:
        3e:40:74:e9:3e:c2:b0:1d:66:0a:7d:a4:ed:10:5c:28
    Fingerprint (SHA-256):
        D6:EA:F7:86:8E:7F:A7:55:77:27:C5:F4:9C:A4:04:35:F3:29:88:9D:41:A0:A4:30:B6:FF:A6:08:AF:B6:C1:06
    Fingerprint (SHA1):
        EA:00:FA:F1:C2:6D:D4:6D:67:45:BD:CF:E5:65:6D:5E:0D:11:00:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11789: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11790: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155251 (0x1dee47f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:54:21 2017
            Not After : Mon May 02 15:54:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:44:cf:35:ea:ba:42:e4:96:5a:5d:67:81:42:ea:31:
                    45:6b:28:28:7a:80:35:ce:41:65:51:60:46:a0:c3:21:
                    0a:f3:61:f4:ec:90:21:a7:b5:3c:5c:77:88:1a:c0:ce:
                    54:72:e7:69:fa:17:62:2c:ce:82:16:6b:ce:01:cd:2f:
                    94:7c:fa:e0:09:58:cc:4a:49:34:ac:e8:90:85:38:47:
                    8d:9e:f2:77:a3:77:60:7b:d9:f2:78:cd:c8:cc:a2:f3:
                    ea:ff:9b:af:18:4e:f3:2d:e2:83:72:75:bd:53:d1:11:
                    e9:ba:f1:a3:68:50:aa:9b:17:f2:22:47:29:3e:94:8e:
                    47:8b:1b:af:b9:6a:85:1c:74:3b:6a:c7:8e:e0:4d:0e:
                    df:8d:1d:c2:1f:17:a7:fd:ce:1e:22:fb:2b:ae:4d:0c:
                    97:ad:6b:d4:79:30:d9:70:b0:87:28:ae:1b:ee:08:b6:
                    8d:40:f8:08:7a:00:81:0b:e9:12:d5:45:02:f7:db:d9:
                    6c:37:23:20:68:5d:d4:dd:1e:da:46:3f:a9:ab:07:a9:
                    4f:ad:2b:4d:4d:79:6d:42:bb:06:8d:a9:dd:de:2d:a3:
                    96:8c:46:d9:e6:b9:c9:c0:3d:df:56:63:72:a4:5d:18:
                    24:13:05:25:1a:32:8f:39:23:65:de:5a:7d:d2:e1:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:de:f9:4e:03:9f:9c:b2:d5:9c:d0:8b:49:f1:ec:41:
        cc:b0:eb:28:78:27:27:fa:b2:5f:3f:18:ec:34:a4:90:
        1c:51:5a:6b:1b:22:49:96:fd:9c:11:04:e4:3c:67:29:
        9b:17:7a:59:86:4c:0a:b9:97:ca:f1:7f:e6:26:be:20:
        3c:a2:2a:7a:61:2c:70:ac:90:84:96:f9:05:bd:97:b9:
        81:07:28:0e:5a:59:95:04:6f:54:41:fe:03:ab:5a:cd:
        a8:70:1b:0d:86:dc:2d:7c:e8:91:22:67:cd:62:85:06:
        e9:7f:76:7a:f4:5d:69:f8:4c:33:b5:67:a7:f1:92:e1:
        4e:f5:90:04:15:ef:1d:e1:60:8f:6e:f8:fb:42:e6:16:
        a0:1f:1d:c5:e5:81:2b:a0:03:bf:19:b6:a6:70:bb:db:
        36:50:62:c8:c5:e0:8a:8e:f9:2b:be:1c:39:b9:56:5a:
        4c:60:66:ca:1d:e0:45:ce:9a:0a:fe:ad:05:94:08:0b:
        b4:53:7f:8d:42:82:a9:3a:75:58:9a:e6:92:39:1f:fc:
        eb:e2:1a:84:c7:99:8c:95:3a:17:20:97:11:2c:0b:6a:
        a4:b5:ac:27:04:44:84:4f:8f:cf:e6:be:6c:1e:09:d4:
        76:a8:6c:4d:58:1d:f0:af:95:6d:83:7a:f8:b1:2f:82
    Fingerprint (SHA-256):
        04:F9:52:19:6F:B1:6F:5E:C7:E3:9A:F5:A7:4D:90:A6:EE:5B:E0:AC:3B:53:85:CD:0A:1A:AD:4E:D3:DB:A6:B4
    Fingerprint (SHA1):
        8F:9F:6F:D5:7D:CC:A4:A0:E4:E4:D8:B0:5E:CD:81:87:EE:5D:09:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11791: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11792: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155253 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11793: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11794: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11795: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11796: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155254   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11797: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11798: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11799: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11800: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155255   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11801: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11802: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11803: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11804: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502155256   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11805: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11806: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11807: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11808: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502155257   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11809: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11810: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11811: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11812: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11813: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11814: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11815: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155253 (0x1dee47f5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:24 2017
            Not After : Mon May 02 15:54:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:d2:15:8d:8d:85:25:a3:27:c1:e1:dd:bf:9a:8a:96:
                    4d:49:c8:9a:a7:bc:99:0d:01:bf:21:60:38:d5:97:e2:
                    80:6b:c8:3b:a0:f2:d4:71:f5:d8:79:0a:80:60:bf:1a:
                    6d:ff:e7:f6:55:c8:06:27:52:3d:02:90:cb:50:aa:37:
                    2b:75:62:a5:32:11:84:9b:4d:10:71:38:f9:e2:af:60:
                    32:24:ce:ec:46:04:a2:78:d6:d7:a0:b1:0b:53:91:d7:
                    4c:9f:97:58:0f:dc:b0:f6:3a:b7:ae:3b:e5:82:66:f8:
                    61:27:27:22:82:93:2b:5a:d2:8f:87:df:8d:ea:a3:00:
                    77:6a:ff:d6:51:d0:7f:0c:7f:bf:8b:7e:4b:89:61:0a:
                    14:53:47:30:3d:bd:c6:55:06:8b:15:43:5b:20:78:88:
                    04:33:33:04:27:0d:e7:04:cf:7f:fe:bf:26:d1:4c:68:
                    30:33:9a:43:b1:ec:c5:f0:d0:58:b6:47:19:aa:b5:a1:
                    3f:7a:f8:37:68:74:3e:31:b4:02:96:4f:2e:47:94:fc:
                    f0:f2:7c:ad:c0:9b:0b:11:e8:fe:b5:84:29:d4:98:c3:
                    07:83:fd:26:a7:02:80:cc:3e:d7:4b:97:c5:8a:a9:a7:
                    10:36:a2:bd:75:66:cb:06:8a:1b:30:14:50:1f:0e:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:75:a8:de:1c:87:96:47:b9:3e:d0:57:b5:46:0f:93:
        b6:bc:35:58:d8:48:0b:46:de:38:27:04:ca:88:28:e1:
        31:9b:42:47:53:e0:8e:93:71:2e:56:70:46:d2:7d:9b:
        ee:48:9b:ee:07:9c:5f:da:5f:dc:5a:81:34:14:16:20:
        b0:a3:41:00:b3:fa:ad:84:7c:eb:b7:9d:4c:4a:e2:97:
        2e:14:6b:4d:d5:ab:47:f0:3a:c3:2c:e0:4b:be:54:4b:
        2e:a3:8b:1f:5e:44:91:86:0c:29:7f:fe:7d:07:61:2c:
        c9:24:d2:20:db:d9:ef:cc:a4:46:50:df:ca:d6:b6:58:
        6f:a6:5f:5d:9b:fc:87:7c:ee:ce:fe:8e:82:8f:4f:02:
        4c:d2:e5:8c:82:b6:2f:54:b5:a3:6b:af:d0:71:40:b9:
        f3:4b:d7:01:ab:a3:b0:a0:42:fe:d8:98:15:9d:fe:c0:
        6a:13:3b:50:11:dd:05:eb:83:14:92:df:bd:aa:67:0d:
        8c:0d:2e:81:18:8f:77:97:41:05:74:68:e9:3d:9a:69:
        e5:1e:7b:cd:8a:51:6a:29:54:6d:ad:07:c6:57:6c:0e:
        8b:cf:67:f3:88:f8:97:16:d2:b6:86:5a:4b:9c:5e:40:
        f8:8d:ba:8a:46:55:84:2a:07:c3:5a:53:c1:e2:0b:ae
    Fingerprint (SHA-256):
        47:1E:38:97:00:51:D2:44:C6:29:C8:41:C3:0A:1B:BF:56:F4:81:3B:CD:0A:3D:FB:CC:8E:6B:74:CB:30:03:D8
    Fingerprint (SHA1):
        D8:93:B8:7C:E6:DA:90:78:B1:B2:E5:3E:4E:DF:5B:16:ED:29:DC:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11816: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11817: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155254 (0x1dee47f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:26 2017
            Not After : Mon May 02 15:54:26 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:2f:33:ab:ce:d5:6e:2c:a8:1d:6f:bc:ac:e7:12:2d:
                    d0:dd:09:6a:ee:42:2e:e2:2a:30:29:e9:90:8d:51:ae:
                    ae:f6:ce:2b:68:ab:90:8a:ea:39:47:09:7a:70:63:8a:
                    66:8f:0c:62:1b:67:6d:cd:63:e0:59:0a:58:6c:3e:9d:
                    8f:dd:8d:64:f0:7d:49:3e:a0:ba:91:0b:19:ef:74:16:
                    8c:f4:95:48:9c:49:28:e1:ec:60:af:13:bf:dc:e0:fc:
                    07:79:1d:6e:61:f3:c8:ac:f5:1f:38:8e:cd:30:9f:7d:
                    e3:e8:6d:53:9e:12:88:fb:ec:5f:08:45:71:53:52:80:
                    fc:da:d2:21:68:38:2e:0f:06:44:1c:a9:9b:58:e0:43:
                    79:5e:fc:19:22:22:fe:26:a6:33:54:69:91:0d:a0:ee:
                    38:c6:2c:ef:42:95:f4:6b:00:7b:d9:11:bd:a1:97:2e:
                    df:7e:34:5b:27:1a:13:04:47:c0:19:5b:2b:bf:9f:15:
                    5b:e4:1b:92:d6:f7:92:e2:e6:b7:27:05:39:bd:dd:6c:
                    ff:21:fc:2f:00:13:07:25:24:17:1c:5e:1f:f3:cd:cd:
                    fd:53:70:1d:3b:31:a5:6e:db:b1:db:47:c5:32:99:bb:
                    6a:2d:2e:5d:9a:8a:59:78:bf:40:8e:cf:10:6c:cc:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:c5:39:2e:eb:3e:06:4f:08:0c:db:5f:8d:5d:cd:f4:
        26:73:f8:42:3f:36:08:41:2f:0a:04:07:ac:c8:f8:7b:
        99:be:39:8b:76:86:7d:28:a1:03:13:1f:61:d0:dd:e4:
        8d:f8:d4:57:5e:88:20:29:5c:90:e6:ce:98:a1:93:d2:
        ee:22:08:b6:41:76:62:5b:a5:19:8a:a7:80:47:ea:59:
        8a:a3:27:b7:dc:39:86:b1:23:68:67:9b:66:a3:2c:cf:
        92:38:9d:95:0d:d1:4e:9b:87:8a:21:9e:69:75:96:bf:
        6a:cb:14:03:bc:7a:ef:38:3b:05:6f:07:8f:43:5c:80:
        c0:0a:f0:c0:4e:f0:7e:e4:16:be:78:32:1c:af:fc:9d:
        9f:c6:15:7c:dc:c5:f7:ad:c0:9f:70:e4:97:3d:29:e2:
        f1:b1:f4:ac:e1:4b:ce:ff:20:72:c6:e3:8d:bb:32:53:
        fc:cc:23:d3:18:64:85:b4:c6:f7:40:31:a5:d4:86:0d:
        b9:57:7b:b3:39:28:c8:1a:05:75:a6:b5:11:ed:09:6e:
        d1:b5:09:d7:56:eb:43:50:c1:05:2f:00:8e:27:8d:2f:
        5e:bd:02:9f:15:ac:1c:d0:34:25:78:df:74:4b:d7:3e:
        df:ea:f2:d8:b3:0c:a5:8e:be:8f:ec:ba:3c:4e:7f:6d
    Fingerprint (SHA-256):
        10:E0:9A:0F:75:2F:FB:77:C4:7E:62:6C:F0:96:45:AD:E7:66:B3:CD:1B:90:6E:AC:18:C9:DA:8C:11:98:CD:8E
    Fingerprint (SHA1):
        B1:C9:15:45:25:A7:70:02:93:B4:FE:CB:8F:19:1B:87:3C:0F:E2:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11818: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11819: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11820: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155255 (0x1dee47f7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:54:26 2017
            Not After : Mon May 02 15:54:26 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bc:22:f3:72:59:d4:6a:fa:f9:bd:85:bc:10:15:83:
                    da:5e:82:82:7a:07:d9:d6:fd:2e:db:b2:c0:1c:f6:be:
                    20:1a:59:a7:d4:9a:f9:5f:35:76:5c:4f:c3:13:48:bb:
                    28:f6:99:fa:95:d7:04:c6:a6:12:1e:50:3a:04:bf:d9:
                    35:d0:f2:4a:cb:10:58:c6:33:26:1e:2a:c4:63:4c:a7:
                    4a:4b:c4:f9:0f:61:ff:54:0b:61:9d:42:bc:c9:1f:6d:
                    57:d9:8a:5a:73:b3:38:1d:db:54:95:d8:b4:cf:99:e7:
                    62:a4:29:72:99:24:a3:ee:63:96:7b:a1:ba:a1:e3:62:
                    f0:89:00:4f:e6:0e:c5:c3:a2:21:18:a5:6f:c4:0c:62:
                    3d:02:8a:1c:75:85:75:a7:1b:0f:1a:b6:d3:f4:3b:10:
                    93:71:d2:c1:78:55:8e:30:af:39:ee:58:17:4f:2e:29:
                    bb:5d:d7:93:75:cc:30:be:b7:0b:a0:c4:55:3f:50:c4:
                    f5:97:5d:08:8b:54:94:78:94:78:ce:b2:90:4e:4d:af:
                    38:84:42:47:08:96:36:0c:4b:2c:26:06:2e:1d:68:9f:
                    32:db:1d:67:88:aa:86:66:8b:4d:e3:62:7a:24:4d:86:
                    a8:7b:e0:99:69:26:2c:fd:b6:53:28:ef:9a:62:32:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:7a:ef:2c:68:2d:3b:6f:20:7a:0f:77:ec:f5:46:d3:
        7d:30:fd:82:9f:72:d3:1d:ac:05:93:8f:8a:69:b5:7e:
        3b:6b:33:04:d5:2f:de:88:ba:00:2e:93:1c:ef:af:de:
        dd:6e:de:d1:49:4d:ba:48:ba:4e:32:d1:1a:37:50:73:
        a0:55:43:62:7c:75:ae:d7:66:fb:16:75:f8:90:11:67:
        bd:ac:b1:62:8f:88:e0:49:b7:5d:96:99:45:e5:f5:38:
        df:96:61:f5:b2:0a:8d:14:ff:e0:6d:38:94:2e:e2:aa:
        b7:8a:f4:1d:0d:c8:36:36:b8:59:11:3c:13:66:02:20:
        65:6c:79:35:5f:83:7c:48:78:13:18:8a:5c:98:36:66:
        ce:64:3e:14:0f:bf:4c:bf:79:10:69:c4:42:1f:0f:2a:
        7e:89:80:63:ca:52:ba:6e:b9:7c:d8:51:7a:9e:e8:f8:
        1b:67:be:8b:63:e7:01:e6:f4:36:51:b6:5f:ae:d6:f1:
        0d:0b:e5:26:27:94:0f:d2:f4:cc:68:30:00:93:ad:82:
        e8:b3:8b:55:ce:b4:5a:06:94:49:8d:0c:64:64:ce:08:
        17:0d:95:e2:4c:28:fa:7c:93:2c:e9:c5:4c:e9:6e:22:
        12:e3:8b:6d:22:4f:4d:fc:ba:db:b3:46:d8:68:b7:41
    Fingerprint (SHA-256):
        AC:23:E4:41:33:84:46:43:90:52:C7:66:0B:F3:92:6D:C5:CE:44:05:E3:10:8F:41:06:27:96:23:AA:CB:B4:08
    Fingerprint (SHA1):
        6E:79:3F:0F:58:4A:03:AD:9D:83:92:85:D3:4F:6D:61:AD:02:7A:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11821: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11822: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155258 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11823: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11824: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11825: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11826: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155259   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11827: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11828: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11829: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11830: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155260   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA1Root-502155037.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11831: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11832: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11833: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11834: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155261   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11835: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11836: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11837: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155258 (0x1dee47fa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:29 2017
            Not After : Mon May 02 15:54:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b3:2c:f6:c3:93:c2:9f:b9:d2:1b:83:f1:43:01:f6:
                    b4:05:57:28:41:af:df:38:74:63:37:b2:a5:1b:33:b1:
                    07:7f:7c:4d:68:f9:2a:92:ee:4e:a3:89:54:a5:ff:83:
                    c6:73:3d:db:6d:22:9e:7d:9c:70:73:57:60:9a:b4:f9:
                    ba:e1:03:fa:30:1d:58:9d:3c:9d:87:5e:e5:25:ca:47:
                    68:c4:48:82:a9:15:6c:cc:82:b2:c0:44:e9:b9:03:55:
                    7d:33:04:30:82:3b:f1:1b:fd:62:88:7b:12:37:b9:2e:
                    c7:f5:c8:eb:39:53:b2:dd:eb:44:49:68:a8:ff:2c:a3:
                    79:b9:5f:c2:c1:a4:48:1f:78:d9:7e:6c:bf:a5:57:f3:
                    5d:e8:8f:92:d7:b9:02:d2:07:f9:ab:e2:b7:70:b3:74:
                    04:2b:c7:9b:7c:11:c0:87:1a:3f:fb:62:20:39:5d:42:
                    a4:88:35:37:8f:80:9d:2a:f6:7a:a6:6c:5a:df:66:6c:
                    91:bd:bf:cf:05:e1:e9:19:de:43:1d:9e:40:2a:a9:74:
                    88:a7:b4:36:f3:80:05:68:60:f4:12:5d:c0:e8:f4:85:
                    ea:32:d1:f3:78:84:db:18:fc:36:98:02:63:12:d6:03:
                    7e:0b:69:1d:44:d9:8b:f9:cd:ba:0f:ee:6f:f2:24:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:03:14:df:41:6a:ac:ea:23:87:24:31:bf:ba:42:eb:
        b2:6d:32:4c:b5:f8:a4:91:b4:1f:22:0c:d0:60:3f:d3:
        ef:3f:7a:7a:6c:37:39:75:dc:9f:04:58:53:25:3f:13:
        ad:0a:ba:be:43:3f:a1:99:59:eb:d7:2e:a1:e5:1d:6d:
        6d:fe:9e:8b:0b:d5:f4:86:6a:6e:14:b5:14:4f:d6:72:
        2c:7d:82:fa:7f:61:53:81:6f:ba:4b:c3:ea:11:8e:66:
        ab:d1:fc:6e:e9:5f:b1:b7:e1:d0:27:e7:1c:6f:a1:1e:
        62:b2:76:87:65:8f:98:be:7a:a3:d9:14:29:89:03:20:
        1d:26:41:53:ac:fd:bb:c1:a8:c0:d2:ab:76:a6:c4:9b:
        fd:3e:cd:01:70:14:5f:a3:4b:73:33:01:c2:84:ad:bd:
        cb:ed:8e:85:76:12:d9:96:f6:2a:d1:b2:e3:4b:64:6f:
        c0:4b:67:c3:93:a4:68:be:85:43:cc:b7:3b:e3:9e:31:
        71:c4:3d:55:b7:85:14:99:9f:4e:bf:60:89:26:be:2c:
        7a:e5:46:59:f3:d3:91:5d:c8:64:57:e5:81:7c:82:1b:
        ba:83:e0:ac:bf:25:d9:48:e3:31:83:6f:b9:d2:c8:1d:
        cc:b8:15:bc:cf:d9:0a:00:ef:87:04:ce:01:62:cc:f9
    Fingerprint (SHA-256):
        4F:F4:43:04:E5:0C:CA:9D:CE:0B:16:63:A5:23:3E:AF:9C:FC:56:51:96:81:79:E9:C4:CE:AC:D7:B6:FA:7C:AC
    Fingerprint (SHA1):
        EB:12:DA:52:74:CC:21:56:3B:EE:24:30:BC:C6:06:5D:34:F3:C1:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11838: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11839: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155262 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11840: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11841: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11842: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155263 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11843: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11844: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11845: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11846: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155264 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11847: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11848: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155265 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11849: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11850: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11851: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11852: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11853: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155266   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502155038.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11854: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11855: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11856: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11857: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155267   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11858: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11859: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11860: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155262 (0x1dee47fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:54:31 2017
            Not After : Mon May 02 15:54:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:1c:12:13:ed:5b:78:b4:76:f4:af:31:c7:ea:43:35:
                    a5:4f:c5:d5:f9:1a:5b:72:8a:52:f7:0a:5d:93:65:46:
                    fe:38:e6:e5:26:c6:93:d8:5a:39:1d:5b:67:51:7f:24:
                    c1:ec:5c:d7:0a:24:34:5d:31:fd:c7:da:2c:50:96:a2:
                    3a:98:03:63:8c:e0:ee:e1:75:72:37:65:5f:80:0e:ec:
                    75:dd:ff:16:80:32:ee:1f:83:45:a2:60:da:af:13:29:
                    29:d0:ee:81:9d:21:b3:25:5d:35:f5:2f:f3:59:99:2a:
                    ea:19:e8:ec:fd:93:2a:75:22:09:84:1c:4c:75:39:4d:
                    0d:86:54:5a:c8:4b:ee:93:5e:5f:78:07:d6:14:1f:35:
                    11:56:65:1d:34:e5:54:61:3b:4f:25:e5:51:1f:cf:8c:
                    fe:5e:32:12:a6:12:ea:b2:0c:6c:35:b0:88:3f:be:8a:
                    05:23:4d:5b:e2:aa:b9:63:32:41:7f:b4:77:3d:46:e0:
                    58:5a:e7:a6:83:fd:de:6f:7f:6f:99:13:02:80:ac:3c:
                    75:d8:6a:95:fe:16:6d:2c:d5:0d:b8:7a:19:37:ac:8d:
                    44:68:48:c2:d3:40:95:d3:4a:0f:0f:29:3b:e7:b1:92:
                    22:5d:0d:2b:63:f3:37:cb:2b:a7:9d:55:6d:4e:42:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:af:da:be:88:aa:5c:fa:85:d1:97:48:85:65:b7:ea:
        f7:b0:8d:aa:21:b4:12:22:02:be:f0:03:77:00:4d:dc:
        83:d1:9f:cf:1a:81:dd:d3:f6:dd:f6:8b:c3:f8:35:d8:
        85:28:34:8a:9f:1b:84:85:ac:28:d0:ef:b4:52:84:2e:
        55:85:b3:c6:69:ac:8d:b0:3a:00:0e:13:5b:e8:d9:fa:
        71:9a:a4:c3:55:a9:a9:a8:97:f5:c9:23:df:f2:5d:98:
        42:49:c2:f1:ac:75:6d:e6:05:dd:c5:30:64:d3:2e:18:
        cb:2d:d7:97:92:5c:2a:b1:da:fc:90:47:c5:42:ce:23:
        77:af:c0:77:5c:c0:de:de:d2:53:4f:65:92:2f:ce:e7:
        83:d4:12:98:d4:10:be:10:f7:dd:69:51:b0:ef:49:a9:
        0d:f8:29:a3:eb:3b:79:83:0c:44:da:91:db:03:79:3d:
        70:f6:22:24:a7:d3:bc:27:16:0d:03:29:b1:6d:47:6b:
        b8:88:0d:8b:cd:2b:ac:e9:23:1d:a8:34:0a:28:f4:7d:
        9f:6b:dc:00:5d:6a:c0:d8:c5:68:39:36:ed:9a:51:8d:
        00:d2:b7:d5:32:c1:0a:76:09:60:09:1c:5e:c3:4b:2e:
        fb:2a:9a:d7:74:47:e0:26:ad:c7:9b:42:9e:b4:be:2e
    Fingerprint (SHA-256):
        37:56:B6:8E:85:5A:A1:3B:09:60:B1:05:8F:F3:23:56:DA:EE:1C:A7:54:29:68:59:86:8B:FA:22:8E:72:4F:38
    Fingerprint (SHA1):
        06:D7:9F:7D:FD:0D:F5:BE:02:E6:61:86:D0:58:B2:3B:6C:22:F7:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11861: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155263 (0x1dee47ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:32 2017
            Not After : Mon May 02 15:54:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:97:d7:85:95:ee:61:4b:a6:04:db:42:1c:e9:fa:51:
                    f1:15:91:da:0f:82:7e:6f:eb:50:d8:bf:24:ca:62:11:
                    81:9e:34:2a:1d:56:a3:cf:e3:a8:47:c8:de:12:ff:14:
                    c6:d5:0a:b6:3a:d2:c2:2f:ab:61:9d:f7:4c:af:b8:96:
                    4b:d0:55:b5:93:0e:a1:8b:c3:67:f9:3d:42:a4:f3:e4:
                    ed:b5:f2:88:60:21:87:c9:07:a5:76:84:9c:94:04:5f:
                    9e:b4:d2:47:e5:d9:51:64:3c:92:3a:b8:0e:eb:53:2a:
                    d2:ab:75:8a:a9:aa:45:7f:9d:f9:5f:88:d4:cb:2f:72:
                    9a:da:fd:a9:e7:bf:be:89:93:f8:e4:b1:a5:ca:03:0f:
                    c2:b7:9c:d9:b3:03:2c:cc:c9:9e:5b:b4:a0:67:70:93:
                    f6:e8:c9:f2:dc:3b:4f:01:b7:90:8d:51:24:1c:68:22:
                    52:0f:91:e1:9f:46:ee:4a:67:5f:92:d6:96:88:93:a8:
                    52:8b:59:a3:29:a6:78:03:07:77:83:64:47:4b:39:a2:
                    c4:cf:92:df:58:43:18:00:60:0a:8c:99:1b:bf:3c:c8:
                    58:e7:4f:1c:b5:ac:be:db:d9:0b:03:b2:24:b2:b9:6f:
                    03:4c:5b:27:b5:39:4c:9b:84:72:f4:cf:94:99:c1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:9f:9e:16:2d:55:a3:20:cb:d5:c6:0b:14:fd:f0:21:
        4a:8b:33:78:0d:07:4d:c2:4d:45:4b:61:73:52:e5:7d:
        2d:b8:48:61:48:3d:20:44:a8:08:dd:29:6a:7f:d6:6e:
        4f:15:3b:c4:8a:2f:62:0c:a8:54:b5:fe:f4:2a:cb:5c:
        6b:c2:b3:cd:2e:fa:f1:10:50:a2:eb:61:97:57:02:c8:
        8a:ab:aa:80:5d:d1:90:22:70:b9:89:21:2d:c8:28:5d:
        68:eb:19:f6:20:4a:99:6e:50:f0:0e:22:c4:2a:63:6c:
        69:b6:73:84:ac:95:03:fd:2a:3d:d5:31:ac:b0:2b:b9:
        48:ca:64:c1:03:cc:db:93:8f:05:83:41:da:eb:77:28:
        a6:4a:5b:02:78:75:98:94:af:45:a0:21:ca:88:52:e6:
        5e:36:a0:2e:4d:ed:6a:51:28:3f:14:04:3a:ad:61:e0:
        7a:f0:77:a4:bf:e6:37:89:6c:bd:38:e3:20:fc:12:ce:
        84:74:6a:d9:94:db:98:a4:6f:1b:ff:92:4c:b5:14:3a:
        4b:a6:dc:0e:d8:08:1c:40:63:9a:eb:71:be:44:1f:b7:
        0b:2b:08:65:46:15:62:4f:bc:2e:75:df:56:81:13:1c:
        95:a7:0d:6c:ee:f5:1b:03:46:e5:49:87:81:dd:60:3c
    Fingerprint (SHA-256):
        33:59:ED:EF:9C:8F:93:36:DF:92:30:EC:2E:A9:54:09:70:A7:3F:6E:15:27:B1:FB:B4:B1:DC:CA:0B:6B:1A:65
    Fingerprint (SHA1):
        DE:75:77:A2:4A:9F:6D:68:79:D2:AD:64:9A:B0:78:44:ED:A2:24:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11862: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155263 (0x1dee47ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:32 2017
            Not After : Mon May 02 15:54:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:97:d7:85:95:ee:61:4b:a6:04:db:42:1c:e9:fa:51:
                    f1:15:91:da:0f:82:7e:6f:eb:50:d8:bf:24:ca:62:11:
                    81:9e:34:2a:1d:56:a3:cf:e3:a8:47:c8:de:12:ff:14:
                    c6:d5:0a:b6:3a:d2:c2:2f:ab:61:9d:f7:4c:af:b8:96:
                    4b:d0:55:b5:93:0e:a1:8b:c3:67:f9:3d:42:a4:f3:e4:
                    ed:b5:f2:88:60:21:87:c9:07:a5:76:84:9c:94:04:5f:
                    9e:b4:d2:47:e5:d9:51:64:3c:92:3a:b8:0e:eb:53:2a:
                    d2:ab:75:8a:a9:aa:45:7f:9d:f9:5f:88:d4:cb:2f:72:
                    9a:da:fd:a9:e7:bf:be:89:93:f8:e4:b1:a5:ca:03:0f:
                    c2:b7:9c:d9:b3:03:2c:cc:c9:9e:5b:b4:a0:67:70:93:
                    f6:e8:c9:f2:dc:3b:4f:01:b7:90:8d:51:24:1c:68:22:
                    52:0f:91:e1:9f:46:ee:4a:67:5f:92:d6:96:88:93:a8:
                    52:8b:59:a3:29:a6:78:03:07:77:83:64:47:4b:39:a2:
                    c4:cf:92:df:58:43:18:00:60:0a:8c:99:1b:bf:3c:c8:
                    58:e7:4f:1c:b5:ac:be:db:d9:0b:03:b2:24:b2:b9:6f:
                    03:4c:5b:27:b5:39:4c:9b:84:72:f4:cf:94:99:c1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:9f:9e:16:2d:55:a3:20:cb:d5:c6:0b:14:fd:f0:21:
        4a:8b:33:78:0d:07:4d:c2:4d:45:4b:61:73:52:e5:7d:
        2d:b8:48:61:48:3d:20:44:a8:08:dd:29:6a:7f:d6:6e:
        4f:15:3b:c4:8a:2f:62:0c:a8:54:b5:fe:f4:2a:cb:5c:
        6b:c2:b3:cd:2e:fa:f1:10:50:a2:eb:61:97:57:02:c8:
        8a:ab:aa:80:5d:d1:90:22:70:b9:89:21:2d:c8:28:5d:
        68:eb:19:f6:20:4a:99:6e:50:f0:0e:22:c4:2a:63:6c:
        69:b6:73:84:ac:95:03:fd:2a:3d:d5:31:ac:b0:2b:b9:
        48:ca:64:c1:03:cc:db:93:8f:05:83:41:da:eb:77:28:
        a6:4a:5b:02:78:75:98:94:af:45:a0:21:ca:88:52:e6:
        5e:36:a0:2e:4d:ed:6a:51:28:3f:14:04:3a:ad:61:e0:
        7a:f0:77:a4:bf:e6:37:89:6c:bd:38:e3:20:fc:12:ce:
        84:74:6a:d9:94:db:98:a4:6f:1b:ff:92:4c:b5:14:3a:
        4b:a6:dc:0e:d8:08:1c:40:63:9a:eb:71:be:44:1f:b7:
        0b:2b:08:65:46:15:62:4f:bc:2e:75:df:56:81:13:1c:
        95:a7:0d:6c:ee:f5:1b:03:46:e5:49:87:81:dd:60:3c
    Fingerprint (SHA-256):
        33:59:ED:EF:9C:8F:93:36:DF:92:30:EC:2E:A9:54:09:70:A7:3F:6E:15:27:B1:FB:B4:B1:DC:CA:0B:6B:1A:65
    Fingerprint (SHA1):
        DE:75:77:A2:4A:9F:6D:68:79:D2:AD:64:9A:B0:78:44:ED:A2:24:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11863: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11864: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155268 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11865: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11866: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11867: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155269 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11868: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11869: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11870: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11871: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155270 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11872: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11873: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155271 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11874: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11875: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11876: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11877: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11878: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155272   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-Bridge-502155039.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11879: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11880: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11881: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11882: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155273   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11883: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11884: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11885: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11886: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155274   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-BridgeNavy-502155040.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11887: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11888: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11889: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11890: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155275   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11891: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11892: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11893: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155268 (0x1dee4804)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:5a:bc:72:51:bf:c2:da:c6:24:2d:09:53:a2:e0:0e:
                    cc:4d:cf:e9:b2:74:02:1c:fe:9d:5f:2a:23:b7:f5:bb:
                    7d:31:48:28:88:bc:c7:6e:e3:97:e1:5f:27:b4:95:c2:
                    ae:98:59:38:f1:91:46:13:2b:d2:07:55:f3:cd:10:64:
                    66:17:27:17:1a:5e:fd:92:c7:f6:3c:e7:86:79:bc:6f:
                    f8:1a:ec:c7:d5:ed:6a:d6:d7:74:1a:22:aa:fd:ba:6a:
                    9e:8f:a0:41:3b:dc:c4:2e:37:f1:4c:e0:1b:ca:dc:b8:
                    1f:8b:f9:52:dc:49:70:cf:06:2d:c4:b5:7c:29:96:40:
                    f8:8a:2a:b0:18:9d:a7:e9:f7:3f:4f:63:51:12:a7:4c:
                    ce:4a:fb:cd:96:ff:77:ec:45:b0:22:c1:6e:1e:f1:10:
                    15:3d:b0:35:91:f2:86:a6:9e:c4:f5:8d:0c:f5:69:cc:
                    60:b9:9a:1f:53:53:08:d2:cd:78:c7:17:ef:44:54:d7:
                    1d:fd:25:f8:37:1b:18:e9:e7:9b:29:88:af:0e:7e:e0:
                    2f:4a:18:57:bb:63:12:7c:3d:35:25:d5:26:da:46:73:
                    89:7d:ba:24:18:07:22:01:d4:1b:c3:e9:5b:e3:bf:05:
                    7a:5b:42:0c:95:38:6c:b9:e7:1b:bf:d9:44:e4:52:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:db:90:db:8b:fd:40:50:68:86:cd:12:e1:74:4e:80:
        8d:e2:d4:b3:4d:59:79:ef:5c:a3:34:e0:92:de:dc:1d:
        8b:16:9c:8e:50:63:2b:2a:a9:63:11:61:ad:c6:74:1e:
        f1:51:82:6e:2f:e6:a3:d9:1b:36:79:c2:85:4f:3d:7e:
        9e:33:73:af:26:e8:f4:db:2e:64:9b:10:3d:ca:dd:06:
        b4:ee:51:83:f1:b1:2f:2a:34:d9:42:9c:a2:b1:f4:08:
        ca:54:69:f7:d8:d9:ea:49:27:79:4e:74:b6:43:73:33:
        16:63:9b:28:ec:bd:1b:5d:76:b7:98:3f:07:04:ad:4f:
        d3:4e:58:34:b0:5d:9d:5c:e9:bb:e4:08:60:76:6c:ae:
        21:37:04:d3:15:aa:e1:12:54:a6:46:c5:31:16:15:f1:
        96:14:1c:0c:0d:c7:fb:11:c5:5f:d4:bb:56:a4:ff:0b:
        63:4a:29:6b:53:35:91:47:30:ee:b8:14:12:8c:86:14:
        80:90:37:4f:56:61:d7:2c:d8:12:60:17:b6:75:e2:83:
        b4:76:03:85:13:6b:7b:70:ac:01:5b:fc:bf:53:5f:e1:
        52:e4:a5:2b:56:41:db:89:4f:5c:c9:bb:f0:67:e2:f3:
        32:4e:d8:df:4c:3b:f6:f9:21:9a:76:05:1b:2f:59:3d
    Fingerprint (SHA-256):
        19:80:A6:7C:73:57:4B:A6:2C:F6:67:5C:23:78:58:57:37:47:68:C4:34:DC:73:5F:69:3B:5A:F1:EB:14:4C:E8
    Fingerprint (SHA1):
        0F:5F:63:CB:7A:CD:EE:7E:B5:1B:BB:8F:90:0D:4E:57:04:14:B9:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11894: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155269 (0x1dee4805)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:b6:6b:42:ab:c6:6f:5d:43:52:83:d5:47:60:60:a4:
                    12:57:ba:08:04:84:4e:76:9e:91:2d:33:5f:57:64:d9:
                    b6:f9:78:10:c4:51:2c:5f:0b:34:24:9e:ef:02:28:3c:
                    9c:93:19:b3:e1:f0:1b:37:3d:d8:ac:d5:40:f0:1d:a7:
                    9b:10:d3:80:90:15:6a:9e:b7:4d:50:42:e7:da:33:21:
                    7a:67:5c:06:c9:38:88:4d:76:05:6c:eb:1f:64:5b:ea:
                    65:fb:5b:fc:7e:1e:7f:b6:8c:75:53:da:e4:96:29:7e:
                    e2:a7:76:7f:84:3b:e3:7e:25:36:ec:a0:65:71:4c:82:
                    3c:5f:10:e4:d8:4d:7f:d5:2c:8d:b8:d5:04:b0:35:db:
                    fa:a5:c7:83:e8:1f:cb:0a:c0:34:81:3b:3c:04:a9:f1:
                    ca:12:7a:cb:b4:b3:db:ea:d1:81:f4:d9:d8:77:2b:f1:
                    45:a6:f3:69:6e:07:d7:be:9d:84:92:37:c0:81:f2:eb:
                    39:75:5c:56:00:e4:7a:92:32:fc:6e:bd:84:52:57:57:
                    df:50:41:45:90:8b:f0:15:fd:75:3b:3f:7c:d7:38:b4:
                    01:fb:6b:6d:ec:e2:43:3e:2b:62:0e:2a:88:d8:7a:da:
                    b0:0c:9b:a9:e9:7b:c3:1a:8a:a8:f9:59:f6:dc:5d:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:4b:04:f0:57:95:85:fd:0b:40:a0:87:b1:64:68:4f:
        57:13:18:21:8a:ae:3b:f9:a7:4c:ca:e6:7b:33:03:19:
        d5:e2:da:1d:9f:2a:08:3a:30:0f:ed:45:0c:83:0a:76:
        c4:9b:28:38:eb:07:37:6b:c1:fe:5d:74:0c:6f:8d:1c:
        ae:fa:7e:80:22:d8:f4:fd:85:50:f5:41:0b:7d:9f:e7:
        64:a7:bb:ea:af:23:96:57:cc:84:39:e6:84:87:e8:2a:
        67:5f:c9:db:7c:ce:0d:6a:61:06:ef:ee:45:5e:d6:e5:
        5a:8a:e1:8f:31:2d:11:19:83:cf:88:e1:0f:2a:ce:e9:
        c7:66:0d:60:ee:37:b1:79:ba:b0:8a:21:b0:6b:e3:82:
        e4:ca:54:87:d7:b1:69:1b:5b:48:bd:ef:6b:22:26:42:
        39:fa:48:ac:6a:3c:9b:b1:2d:24:2f:59:c5:7b:6b:cf:
        51:6d:ba:98:a0:d0:b4:00:9c:99:34:55:20:ba:38:a0:
        cc:a4:2e:8e:7b:fe:36:c5:aa:d3:25:82:2b:5e:66:7e:
        7c:6f:d3:1d:ca:72:32:e1:3b:4c:a0:c2:39:3a:12:50:
        36:c8:e0:6a:4b:d8:d8:44:46:11:ab:e9:54:52:6a:7d:
        5a:8a:88:14:e6:85:83:98:4e:e8:57:60:50:bb:82:f1
    Fingerprint (SHA-256):
        D3:06:DA:14:7A:0F:C6:2F:23:90:E7:B6:9D:27:18:F8:57:A1:53:A9:F9:19:72:9C:BD:BF:8F:78:F6:56:CE:77
    Fingerprint (SHA1):
        B3:5F:9E:D8:EB:0A:C8:96:E4:DB:E5:97:54:8C:57:D9:DC:21:C2:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11895: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155269 (0x1dee4805)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:b6:6b:42:ab:c6:6f:5d:43:52:83:d5:47:60:60:a4:
                    12:57:ba:08:04:84:4e:76:9e:91:2d:33:5f:57:64:d9:
                    b6:f9:78:10:c4:51:2c:5f:0b:34:24:9e:ef:02:28:3c:
                    9c:93:19:b3:e1:f0:1b:37:3d:d8:ac:d5:40:f0:1d:a7:
                    9b:10:d3:80:90:15:6a:9e:b7:4d:50:42:e7:da:33:21:
                    7a:67:5c:06:c9:38:88:4d:76:05:6c:eb:1f:64:5b:ea:
                    65:fb:5b:fc:7e:1e:7f:b6:8c:75:53:da:e4:96:29:7e:
                    e2:a7:76:7f:84:3b:e3:7e:25:36:ec:a0:65:71:4c:82:
                    3c:5f:10:e4:d8:4d:7f:d5:2c:8d:b8:d5:04:b0:35:db:
                    fa:a5:c7:83:e8:1f:cb:0a:c0:34:81:3b:3c:04:a9:f1:
                    ca:12:7a:cb:b4:b3:db:ea:d1:81:f4:d9:d8:77:2b:f1:
                    45:a6:f3:69:6e:07:d7:be:9d:84:92:37:c0:81:f2:eb:
                    39:75:5c:56:00:e4:7a:92:32:fc:6e:bd:84:52:57:57:
                    df:50:41:45:90:8b:f0:15:fd:75:3b:3f:7c:d7:38:b4:
                    01:fb:6b:6d:ec:e2:43:3e:2b:62:0e:2a:88:d8:7a:da:
                    b0:0c:9b:a9:e9:7b:c3:1a:8a:a8:f9:59:f6:dc:5d:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:4b:04:f0:57:95:85:fd:0b:40:a0:87:b1:64:68:4f:
        57:13:18:21:8a:ae:3b:f9:a7:4c:ca:e6:7b:33:03:19:
        d5:e2:da:1d:9f:2a:08:3a:30:0f:ed:45:0c:83:0a:76:
        c4:9b:28:38:eb:07:37:6b:c1:fe:5d:74:0c:6f:8d:1c:
        ae:fa:7e:80:22:d8:f4:fd:85:50:f5:41:0b:7d:9f:e7:
        64:a7:bb:ea:af:23:96:57:cc:84:39:e6:84:87:e8:2a:
        67:5f:c9:db:7c:ce:0d:6a:61:06:ef:ee:45:5e:d6:e5:
        5a:8a:e1:8f:31:2d:11:19:83:cf:88:e1:0f:2a:ce:e9:
        c7:66:0d:60:ee:37:b1:79:ba:b0:8a:21:b0:6b:e3:82:
        e4:ca:54:87:d7:b1:69:1b:5b:48:bd:ef:6b:22:26:42:
        39:fa:48:ac:6a:3c:9b:b1:2d:24:2f:59:c5:7b:6b:cf:
        51:6d:ba:98:a0:d0:b4:00:9c:99:34:55:20:ba:38:a0:
        cc:a4:2e:8e:7b:fe:36:c5:aa:d3:25:82:2b:5e:66:7e:
        7c:6f:d3:1d:ca:72:32:e1:3b:4c:a0:c2:39:3a:12:50:
        36:c8:e0:6a:4b:d8:d8:44:46:11:ab:e9:54:52:6a:7d:
        5a:8a:88:14:e6:85:83:98:4e:e8:57:60:50:bb:82:f1
    Fingerprint (SHA-256):
        D3:06:DA:14:7A:0F:C6:2F:23:90:E7:B6:9D:27:18:F8:57:A1:53:A9:F9:19:72:9C:BD:BF:8F:78:F6:56:CE:77
    Fingerprint (SHA1):
        B3:5F:9E:D8:EB:0A:C8:96:E4:DB:E5:97:54:8C:57:D9:DC:21:C2:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11896: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11897: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155268 (0x1dee4804)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:5a:bc:72:51:bf:c2:da:c6:24:2d:09:53:a2:e0:0e:
                    cc:4d:cf:e9:b2:74:02:1c:fe:9d:5f:2a:23:b7:f5:bb:
                    7d:31:48:28:88:bc:c7:6e:e3:97:e1:5f:27:b4:95:c2:
                    ae:98:59:38:f1:91:46:13:2b:d2:07:55:f3:cd:10:64:
                    66:17:27:17:1a:5e:fd:92:c7:f6:3c:e7:86:79:bc:6f:
                    f8:1a:ec:c7:d5:ed:6a:d6:d7:74:1a:22:aa:fd:ba:6a:
                    9e:8f:a0:41:3b:dc:c4:2e:37:f1:4c:e0:1b:ca:dc:b8:
                    1f:8b:f9:52:dc:49:70:cf:06:2d:c4:b5:7c:29:96:40:
                    f8:8a:2a:b0:18:9d:a7:e9:f7:3f:4f:63:51:12:a7:4c:
                    ce:4a:fb:cd:96:ff:77:ec:45:b0:22:c1:6e:1e:f1:10:
                    15:3d:b0:35:91:f2:86:a6:9e:c4:f5:8d:0c:f5:69:cc:
                    60:b9:9a:1f:53:53:08:d2:cd:78:c7:17:ef:44:54:d7:
                    1d:fd:25:f8:37:1b:18:e9:e7:9b:29:88:af:0e:7e:e0:
                    2f:4a:18:57:bb:63:12:7c:3d:35:25:d5:26:da:46:73:
                    89:7d:ba:24:18:07:22:01:d4:1b:c3:e9:5b:e3:bf:05:
                    7a:5b:42:0c:95:38:6c:b9:e7:1b:bf:d9:44:e4:52:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:db:90:db:8b:fd:40:50:68:86:cd:12:e1:74:4e:80:
        8d:e2:d4:b3:4d:59:79:ef:5c:a3:34:e0:92:de:dc:1d:
        8b:16:9c:8e:50:63:2b:2a:a9:63:11:61:ad:c6:74:1e:
        f1:51:82:6e:2f:e6:a3:d9:1b:36:79:c2:85:4f:3d:7e:
        9e:33:73:af:26:e8:f4:db:2e:64:9b:10:3d:ca:dd:06:
        b4:ee:51:83:f1:b1:2f:2a:34:d9:42:9c:a2:b1:f4:08:
        ca:54:69:f7:d8:d9:ea:49:27:79:4e:74:b6:43:73:33:
        16:63:9b:28:ec:bd:1b:5d:76:b7:98:3f:07:04:ad:4f:
        d3:4e:58:34:b0:5d:9d:5c:e9:bb:e4:08:60:76:6c:ae:
        21:37:04:d3:15:aa:e1:12:54:a6:46:c5:31:16:15:f1:
        96:14:1c:0c:0d:c7:fb:11:c5:5f:d4:bb:56:a4:ff:0b:
        63:4a:29:6b:53:35:91:47:30:ee:b8:14:12:8c:86:14:
        80:90:37:4f:56:61:d7:2c:d8:12:60:17:b6:75:e2:83:
        b4:76:03:85:13:6b:7b:70:ac:01:5b:fc:bf:53:5f:e1:
        52:e4:a5:2b:56:41:db:89:4f:5c:c9:bb:f0:67:e2:f3:
        32:4e:d8:df:4c:3b:f6:f9:21:9a:76:05:1b:2f:59:3d
    Fingerprint (SHA-256):
        19:80:A6:7C:73:57:4B:A6:2C:F6:67:5C:23:78:58:57:37:47:68:C4:34:DC:73:5F:69:3B:5A:F1:EB:14:4C:E8
    Fingerprint (SHA1):
        0F:5F:63:CB:7A:CD:EE:7E:B5:1B:BB:8F:90:0D:4E:57:04:14:B9:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11898: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155269 (0x1dee4805)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:b6:6b:42:ab:c6:6f:5d:43:52:83:d5:47:60:60:a4:
                    12:57:ba:08:04:84:4e:76:9e:91:2d:33:5f:57:64:d9:
                    b6:f9:78:10:c4:51:2c:5f:0b:34:24:9e:ef:02:28:3c:
                    9c:93:19:b3:e1:f0:1b:37:3d:d8:ac:d5:40:f0:1d:a7:
                    9b:10:d3:80:90:15:6a:9e:b7:4d:50:42:e7:da:33:21:
                    7a:67:5c:06:c9:38:88:4d:76:05:6c:eb:1f:64:5b:ea:
                    65:fb:5b:fc:7e:1e:7f:b6:8c:75:53:da:e4:96:29:7e:
                    e2:a7:76:7f:84:3b:e3:7e:25:36:ec:a0:65:71:4c:82:
                    3c:5f:10:e4:d8:4d:7f:d5:2c:8d:b8:d5:04:b0:35:db:
                    fa:a5:c7:83:e8:1f:cb:0a:c0:34:81:3b:3c:04:a9:f1:
                    ca:12:7a:cb:b4:b3:db:ea:d1:81:f4:d9:d8:77:2b:f1:
                    45:a6:f3:69:6e:07:d7:be:9d:84:92:37:c0:81:f2:eb:
                    39:75:5c:56:00:e4:7a:92:32:fc:6e:bd:84:52:57:57:
                    df:50:41:45:90:8b:f0:15:fd:75:3b:3f:7c:d7:38:b4:
                    01:fb:6b:6d:ec:e2:43:3e:2b:62:0e:2a:88:d8:7a:da:
                    b0:0c:9b:a9:e9:7b:c3:1a:8a:a8:f9:59:f6:dc:5d:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:4b:04:f0:57:95:85:fd:0b:40:a0:87:b1:64:68:4f:
        57:13:18:21:8a:ae:3b:f9:a7:4c:ca:e6:7b:33:03:19:
        d5:e2:da:1d:9f:2a:08:3a:30:0f:ed:45:0c:83:0a:76:
        c4:9b:28:38:eb:07:37:6b:c1:fe:5d:74:0c:6f:8d:1c:
        ae:fa:7e:80:22:d8:f4:fd:85:50:f5:41:0b:7d:9f:e7:
        64:a7:bb:ea:af:23:96:57:cc:84:39:e6:84:87:e8:2a:
        67:5f:c9:db:7c:ce:0d:6a:61:06:ef:ee:45:5e:d6:e5:
        5a:8a:e1:8f:31:2d:11:19:83:cf:88:e1:0f:2a:ce:e9:
        c7:66:0d:60:ee:37:b1:79:ba:b0:8a:21:b0:6b:e3:82:
        e4:ca:54:87:d7:b1:69:1b:5b:48:bd:ef:6b:22:26:42:
        39:fa:48:ac:6a:3c:9b:b1:2d:24:2f:59:c5:7b:6b:cf:
        51:6d:ba:98:a0:d0:b4:00:9c:99:34:55:20:ba:38:a0:
        cc:a4:2e:8e:7b:fe:36:c5:aa:d3:25:82:2b:5e:66:7e:
        7c:6f:d3:1d:ca:72:32:e1:3b:4c:a0:c2:39:3a:12:50:
        36:c8:e0:6a:4b:d8:d8:44:46:11:ab:e9:54:52:6a:7d:
        5a:8a:88:14:e6:85:83:98:4e:e8:57:60:50:bb:82:f1
    Fingerprint (SHA-256):
        D3:06:DA:14:7A:0F:C6:2F:23:90:E7:B6:9D:27:18:F8:57:A1:53:A9:F9:19:72:9C:BD:BF:8F:78:F6:56:CE:77
    Fingerprint (SHA1):
        B3:5F:9E:D8:EB:0A:C8:96:E4:DB:E5:97:54:8C:57:D9:DC:21:C2:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11899: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155269 (0x1dee4805)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:36 2017
            Not After : Mon May 02 15:54:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:b6:6b:42:ab:c6:6f:5d:43:52:83:d5:47:60:60:a4:
                    12:57:ba:08:04:84:4e:76:9e:91:2d:33:5f:57:64:d9:
                    b6:f9:78:10:c4:51:2c:5f:0b:34:24:9e:ef:02:28:3c:
                    9c:93:19:b3:e1:f0:1b:37:3d:d8:ac:d5:40:f0:1d:a7:
                    9b:10:d3:80:90:15:6a:9e:b7:4d:50:42:e7:da:33:21:
                    7a:67:5c:06:c9:38:88:4d:76:05:6c:eb:1f:64:5b:ea:
                    65:fb:5b:fc:7e:1e:7f:b6:8c:75:53:da:e4:96:29:7e:
                    e2:a7:76:7f:84:3b:e3:7e:25:36:ec:a0:65:71:4c:82:
                    3c:5f:10:e4:d8:4d:7f:d5:2c:8d:b8:d5:04:b0:35:db:
                    fa:a5:c7:83:e8:1f:cb:0a:c0:34:81:3b:3c:04:a9:f1:
                    ca:12:7a:cb:b4:b3:db:ea:d1:81:f4:d9:d8:77:2b:f1:
                    45:a6:f3:69:6e:07:d7:be:9d:84:92:37:c0:81:f2:eb:
                    39:75:5c:56:00:e4:7a:92:32:fc:6e:bd:84:52:57:57:
                    df:50:41:45:90:8b:f0:15:fd:75:3b:3f:7c:d7:38:b4:
                    01:fb:6b:6d:ec:e2:43:3e:2b:62:0e:2a:88:d8:7a:da:
                    b0:0c:9b:a9:e9:7b:c3:1a:8a:a8:f9:59:f6:dc:5d:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:4b:04:f0:57:95:85:fd:0b:40:a0:87:b1:64:68:4f:
        57:13:18:21:8a:ae:3b:f9:a7:4c:ca:e6:7b:33:03:19:
        d5:e2:da:1d:9f:2a:08:3a:30:0f:ed:45:0c:83:0a:76:
        c4:9b:28:38:eb:07:37:6b:c1:fe:5d:74:0c:6f:8d:1c:
        ae:fa:7e:80:22:d8:f4:fd:85:50:f5:41:0b:7d:9f:e7:
        64:a7:bb:ea:af:23:96:57:cc:84:39:e6:84:87:e8:2a:
        67:5f:c9:db:7c:ce:0d:6a:61:06:ef:ee:45:5e:d6:e5:
        5a:8a:e1:8f:31:2d:11:19:83:cf:88:e1:0f:2a:ce:e9:
        c7:66:0d:60:ee:37:b1:79:ba:b0:8a:21:b0:6b:e3:82:
        e4:ca:54:87:d7:b1:69:1b:5b:48:bd:ef:6b:22:26:42:
        39:fa:48:ac:6a:3c:9b:b1:2d:24:2f:59:c5:7b:6b:cf:
        51:6d:ba:98:a0:d0:b4:00:9c:99:34:55:20:ba:38:a0:
        cc:a4:2e:8e:7b:fe:36:c5:aa:d3:25:82:2b:5e:66:7e:
        7c:6f:d3:1d:ca:72:32:e1:3b:4c:a0:c2:39:3a:12:50:
        36:c8:e0:6a:4b:d8:d8:44:46:11:ab:e9:54:52:6a:7d:
        5a:8a:88:14:e6:85:83:98:4e:e8:57:60:50:bb:82:f1
    Fingerprint (SHA-256):
        D3:06:DA:14:7A:0F:C6:2F:23:90:E7:B6:9D:27:18:F8:57:A1:53:A9:F9:19:72:9C:BD:BF:8F:78:F6:56:CE:77
    Fingerprint (SHA1):
        B3:5F:9E:D8:EB:0A:C8:96:E4:DB:E5:97:54:8C:57:D9:DC:21:C2:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11900: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11901: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155276 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11902: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11903: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11904: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155277 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11905: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11906: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11907: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11908: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502155278   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11909: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11910: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11911: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11912: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502155279   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11913: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11914: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11915: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11916: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502155280 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11917: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11918: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502155281 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11919: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11920: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11921: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11922: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11923: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155282   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11924: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11925: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11926: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11927: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155283   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11928: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11929: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11930: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11931: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155284   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11932: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11933: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11934: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11935: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155285   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11936: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11937: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155276 (0x1dee480c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:54:42 2017
            Not After : Mon May 02 15:54:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:67:1b:bd:50:ed:63:a4:fc:a6:bc:a9:50:d6:86:
                    64:3f:1a:83:b9:ab:71:9f:a9:1c:a1:50:e8:a2:94:7a:
                    a3:cd:90:ab:cd:11:31:8f:ba:86:6d:9b:69:2f:81:d7:
                    bd:e5:e4:d4:df:8c:18:87:38:a6:6a:53:d8:be:0e:bb:
                    c5:5f:29:65:d8:2f:48:32:fd:b7:8b:6f:f1:c8:e3:f4:
                    78:37:3d:5a:f2:5a:71:62:97:1d:62:71:55:47:1a:e1:
                    94:7d:2d:ba:b3:bd:f4:ba:a2:0d:3a:5f:ab:9b:f3:9b:
                    d2:e6:a5:0b:d1:ba:06:da:09:af:bc:cc:5a:4e:8e:5a:
                    f8:dc:ff:b7:16:96:1f:f4:ec:af:11:37:07:b3:4b:04:
                    b6:f4:1c:a1:db:9a:a2:a4:b7:f8:fa:b6:e3:3d:2a:5e:
                    ee:7d:34:e9:c0:c5:59:b9:12:9b:e2:a5:18:59:59:b9:
                    a9:e0:a9:a6:67:6e:8c:2a:83:e7:a5:2e:84:f5:ef:18:
                    92:24:16:58:73:fd:57:ba:43:0f:40:45:e5:e6:ec:dc:
                    92:10:e1:13:58:0d:5c:84:45:61:75:80:fd:13:4e:ba:
                    79:0e:61:8f:26:f1:f5:af:f0:5d:e1:eb:78:dc:0a:40:
                    77:e8:0e:b1:e0:9e:22:f8:d4:c4:99:1e:f2:79:c6:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:2f:53:6c:35:34:c4:a0:ae:1d:57:d3:e0:f4:b1:88:
        b0:08:04:98:68:d3:e5:d1:84:4c:22:ec:92:13:cd:c9:
        bc:12:21:c4:c9:43:59:09:e0:97:74:5c:98:2e:7c:19:
        cf:b2:4b:77:88:5d:9f:45:df:a6:b0:d0:c4:71:39:2a:
        24:67:2c:d5:5a:f0:96:13:5d:81:03:ab:0e:bf:24:53:
        6a:a2:cb:02:91:d4:4e:50:bf:b0:4b:ee:d5:ef:cc:3d:
        e3:ae:63:1c:ce:7d:e6:47:55:10:ee:c7:b5:7c:00:03:
        e6:b1:b5:c9:06:87:96:55:eb:9e:97:79:50:a4:03:81:
        92:41:99:fa:9d:05:86:fe:40:4a:e7:ab:c6:eb:44:5a:
        51:2a:96:e2:3a:07:d7:27:35:46:ef:f1:07:91:cd:ee:
        9f:e7:54:dd:15:20:5d:b8:00:4e:65:02:20:55:b1:e7:
        42:7a:dc:6d:13:14:85:ad:41:b8:67:69:07:17:80:b7:
        7b:40:8a:f4:36:79:3a:ea:84:fa:90:32:71:b5:5a:00:
        b3:1a:62:51:4a:c3:9a:39:ac:a4:60:d3:0b:2f:5b:98:
        8a:34:ef:8b:36:c5:b9:bd:6b:78:74:1a:b1:d7:77:77:
        5c:66:f9:b1:31:f2:d2:99:bd:29:b3:6a:7d:db:87:6e
    Fingerprint (SHA-256):
        FC:3A:82:89:99:85:85:85:59:8F:BF:7C:AB:68:C2:D7:59:B8:59:B6:5D:02:69:16:BC:4B:41:27:00:28:3F:61
    Fingerprint (SHA1):
        F5:D2:01:33:E5:8C:84:0D:75:57:06:68:22:7D:61:42:BF:54:AC:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11941: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11942: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11943: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11944: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11945: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11946: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11947: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155277 (0x1dee480d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:54:43 2017
            Not After : Mon May 02 15:54:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:fc:e3:5c:39:49:ce:33:3d:6b:cf:99:f3:d5:a6:58:
                    86:00:8a:2c:c6:b7:41:f9:70:60:cb:4b:7c:48:6e:a4:
                    b3:ce:40:ac:bf:eb:89:00:87:9e:47:c6:7b:ba:8c:2a:
                    d9:62:f8:91:f9:be:de:c7:e8:b2:4d:f0:46:f6:d8:e8:
                    a4:16:bb:1f:f6:44:76:96:e7:81:a2:14:c5:ca:eb:c1:
                    25:83:7f:52:e6:13:3e:b2:06:95:14:ad:cc:ff:58:ec:
                    16:84:cb:be:87:a6:a2:93:b4:de:79:e2:64:ab:74:27:
                    49:f9:db:e4:6c:b5:10:cf:0c:c1:e8:30:54:d0:ec:69:
                    f4:ef:6d:e6:bd:ef:a8:76:5c:4e:43:fa:83:6d:13:97:
                    64:19:67:c3:70:a9:4e:4b:c2:8c:33:e2:51:58:9d:7a:
                    a9:81:94:52:6f:90:c1:11:8e:4e:19:a9:b1:56:10:6c:
                    18:eb:e7:a2:fd:25:71:e7:68:ac:66:64:52:50:3b:57:
                    99:86:65:7c:e4:e1:c7:f3:0d:08:21:aa:dd:b8:a3:3f:
                    4f:df:f1:65:13:fe:89:6f:72:31:34:f0:aa:cc:e3:2a:
                    18:e3:c7:57:73:e3:22:bf:44:b1:00:71:e1:cc:6c:17:
                    b8:5a:98:61:f9:2e:18:0b:df:a7:9e:68:a3:01:b2:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:10:93:ae:9d:d8:b4:49:c7:cb:e3:25:6d:23:19:0e:
        5f:10:83:93:1c:82:ea:b2:09:b4:a2:cd:32:bf:55:47:
        d5:f8:66:47:fe:4a:22:92:c0:6e:81:ce:77:fc:b8:4b:
        0d:62:a2:b8:60:1d:ab:8a:6f:ea:47:56:f2:cc:2c:e3:
        22:7d:c4:99:43:cb:e0:f9:85:12:d3:d4:10:0e:a8:fa:
        57:c7:d0:03:29:c3:b7:90:01:ba:19:ad:25:43:e7:30:
        7d:03:dc:22:5e:95:5b:ee:70:ab:4e:c6:66:5d:04:c7:
        7a:c4:57:a7:b1:b4:20:20:f5:42:e8:cc:d3:a1:62:69:
        89:98:d9:ba:cd:b0:60:74:29:7e:05:7f:80:23:54:f9:
        da:d4:21:31:14:89:bf:dc:bb:a8:93:33:a2:e8:01:e0:
        7e:cc:df:af:76:bb:54:37:f9:73:cf:ba:ad:00:39:e1:
        e6:98:9c:e4:64:26:a9:90:c5:71:f9:2d:c6:03:9d:c9:
        5a:91:ed:5b:7f:3a:fe:0d:f2:d4:dc:e9:40:17:5c:cf:
        9f:49:d6:ab:d3:f5:7c:c1:60:9f:71:43:17:61:1d:8b:
        b1:aa:f1:f0:bc:34:4a:f6:8c:77:31:37:2d:ce:25:40:
        ee:ef:30:5b:a7:20:bb:1a:39:6f:ec:72:18:70:ff:ec
    Fingerprint (SHA-256):
        D1:E3:77:C5:DD:F0:BE:54:CE:34:EF:6E:48:19:8C:CA:22:EF:67:4D:98:EE:1A:C3:7B:47:35:97:DB:31:02:9A
    Fingerprint (SHA1):
        FA:D5:5B:22:E9:A3:44:12:AE:A1:A4:AF:31:8C:7B:49:02:64:C7:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11948: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11949: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11950: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11951: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11952: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11953: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11954: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11955: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11956: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11957: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11958: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11959: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11960: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11961: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11962: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11963: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11964: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11965: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11966: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155286 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11967: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11968: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11969: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11970: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155287   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11971: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11972: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11973: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11974: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155288   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11975: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11976: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11977: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11978: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502155289   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11979: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11980: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11981: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11982: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155290   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11983: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11984: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11985: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11986: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502155291   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11987: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11988: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11989: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11990: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502155292   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11991: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11992: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11993: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11994: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502155293   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11995: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11996: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11997: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11998: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502155294   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11999: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12000: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12001: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155286 (0x1dee4816)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:50 2017
            Not After : Mon May 02 15:54:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0f:86:01:0c:53:de:aa:16:82:d9:0d:a2:63:af:59:b8:
                    5f:9f:6c:2b:0d:e7:69:0e:62:f5:76:a0:dd:54:0f:d7:
                    21:0d:54:85:a4:eb:43:e3:cc:2c:74:ef:c7:e9:28:0e:
                    43:ef:85:f4:9a:91:b9:46:fd:eb:70:67:04:e4:f0:93:
                    ab:5a:48:75:13:19:9f:e8:3c:cf:bf:a2:7e:ba:ae:84:
                    63:1a:03:94:c8:5a:c3:b9:28:20:b0:82:4c:59:88:46:
                    85:10:24:ce:0a:4c:6e:51:b6:c3:5c:0b:63:88:d3:23:
                    ef:94:47:c7:90:03:b3:f8:88:4e:0b:32:84:b4:1d:40:
                    ae:be:94:d6:a5:7d:9b:51:ec:1f:d3:ae:40:4f:ba:4a:
                    3f:bf:5f:0c:d6:d3:73:5c:0f:8a:cd:88:85:ca:d2:9c:
                    13:6b:82:88:89:02:19:be:cc:7e:8e:a5:d4:e2:3c:f0:
                    0b:a1:66:b8:80:2e:3e:c9:a8:f8:d7:5f:65:84:20:d3:
                    9a:a8:df:e8:06:5a:39:ec:11:12:0e:79:77:58:b3:b0:
                    33:d2:a8:ec:21:bf:37:bc:a8:b6:40:f7:ba:b8:43:19:
                    bd:78:9b:0d:59:c9:64:72:15:97:a6:e4:47:c3:4b:2f:
                    28:24:06:9e:ad:57:92:5b:d4:96:73:c2:5a:e4:29:98
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:45:f4:bd:2c:9a:dc:bd:f2:c2:00:3e:3b:
        aa:0d:27:12:06:ab:9f:c4:4c:87:46:5f:f2:b2:47:3b:
        02:1c:03:50:82:84:5b:65:22:cc:27:3f:8c:5c:31:80:
        d9:55:08:08:f3:7b:31:ad:63:92:c5:b8:6e:d7
    Fingerprint (SHA-256):
        CA:F6:56:77:6D:BA:06:13:63:96:0A:61:38:D8:8B:CF:98:FC:50:ED:C6:F1:0C:ED:F5:1C:16:42:AA:4D:1E:52
    Fingerprint (SHA1):
        C7:3E:52:F0:F4:83:DB:66:88:73:A0:9B:53:DC:59:45:2C:DA:58:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12002: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155286 (0x1dee4816)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:50 2017
            Not After : Mon May 02 15:54:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0f:86:01:0c:53:de:aa:16:82:d9:0d:a2:63:af:59:b8:
                    5f:9f:6c:2b:0d:e7:69:0e:62:f5:76:a0:dd:54:0f:d7:
                    21:0d:54:85:a4:eb:43:e3:cc:2c:74:ef:c7:e9:28:0e:
                    43:ef:85:f4:9a:91:b9:46:fd:eb:70:67:04:e4:f0:93:
                    ab:5a:48:75:13:19:9f:e8:3c:cf:bf:a2:7e:ba:ae:84:
                    63:1a:03:94:c8:5a:c3:b9:28:20:b0:82:4c:59:88:46:
                    85:10:24:ce:0a:4c:6e:51:b6:c3:5c:0b:63:88:d3:23:
                    ef:94:47:c7:90:03:b3:f8:88:4e:0b:32:84:b4:1d:40:
                    ae:be:94:d6:a5:7d:9b:51:ec:1f:d3:ae:40:4f:ba:4a:
                    3f:bf:5f:0c:d6:d3:73:5c:0f:8a:cd:88:85:ca:d2:9c:
                    13:6b:82:88:89:02:19:be:cc:7e:8e:a5:d4:e2:3c:f0:
                    0b:a1:66:b8:80:2e:3e:c9:a8:f8:d7:5f:65:84:20:d3:
                    9a:a8:df:e8:06:5a:39:ec:11:12:0e:79:77:58:b3:b0:
                    33:d2:a8:ec:21:bf:37:bc:a8:b6:40:f7:ba:b8:43:19:
                    bd:78:9b:0d:59:c9:64:72:15:97:a6:e4:47:c3:4b:2f:
                    28:24:06:9e:ad:57:92:5b:d4:96:73:c2:5a:e4:29:98
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:45:f4:bd:2c:9a:dc:bd:f2:c2:00:3e:3b:
        aa:0d:27:12:06:ab:9f:c4:4c:87:46:5f:f2:b2:47:3b:
        02:1c:03:50:82:84:5b:65:22:cc:27:3f:8c:5c:31:80:
        d9:55:08:08:f3:7b:31:ad:63:92:c5:b8:6e:d7
    Fingerprint (SHA-256):
        CA:F6:56:77:6D:BA:06:13:63:96:0A:61:38:D8:8B:CF:98:FC:50:ED:C6:F1:0C:ED:F5:1C:16:42:AA:4D:1E:52
    Fingerprint (SHA1):
        C7:3E:52:F0:F4:83:DB:66:88:73:A0:9B:53:DC:59:45:2C:DA:58:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12003: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155286 (0x1dee4816)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:50 2017
            Not After : Mon May 02 15:54:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0f:86:01:0c:53:de:aa:16:82:d9:0d:a2:63:af:59:b8:
                    5f:9f:6c:2b:0d:e7:69:0e:62:f5:76:a0:dd:54:0f:d7:
                    21:0d:54:85:a4:eb:43:e3:cc:2c:74:ef:c7:e9:28:0e:
                    43:ef:85:f4:9a:91:b9:46:fd:eb:70:67:04:e4:f0:93:
                    ab:5a:48:75:13:19:9f:e8:3c:cf:bf:a2:7e:ba:ae:84:
                    63:1a:03:94:c8:5a:c3:b9:28:20:b0:82:4c:59:88:46:
                    85:10:24:ce:0a:4c:6e:51:b6:c3:5c:0b:63:88:d3:23:
                    ef:94:47:c7:90:03:b3:f8:88:4e:0b:32:84:b4:1d:40:
                    ae:be:94:d6:a5:7d:9b:51:ec:1f:d3:ae:40:4f:ba:4a:
                    3f:bf:5f:0c:d6:d3:73:5c:0f:8a:cd:88:85:ca:d2:9c:
                    13:6b:82:88:89:02:19:be:cc:7e:8e:a5:d4:e2:3c:f0:
                    0b:a1:66:b8:80:2e:3e:c9:a8:f8:d7:5f:65:84:20:d3:
                    9a:a8:df:e8:06:5a:39:ec:11:12:0e:79:77:58:b3:b0:
                    33:d2:a8:ec:21:bf:37:bc:a8:b6:40:f7:ba:b8:43:19:
                    bd:78:9b:0d:59:c9:64:72:15:97:a6:e4:47:c3:4b:2f:
                    28:24:06:9e:ad:57:92:5b:d4:96:73:c2:5a:e4:29:98
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:45:f4:bd:2c:9a:dc:bd:f2:c2:00:3e:3b:
        aa:0d:27:12:06:ab:9f:c4:4c:87:46:5f:f2:b2:47:3b:
        02:1c:03:50:82:84:5b:65:22:cc:27:3f:8c:5c:31:80:
        d9:55:08:08:f3:7b:31:ad:63:92:c5:b8:6e:d7
    Fingerprint (SHA-256):
        CA:F6:56:77:6D:BA:06:13:63:96:0A:61:38:D8:8B:CF:98:FC:50:ED:C6:F1:0C:ED:F5:1C:16:42:AA:4D:1E:52
    Fingerprint (SHA1):
        C7:3E:52:F0:F4:83:DB:66:88:73:A0:9B:53:DC:59:45:2C:DA:58:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12004: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155286 (0x1dee4816)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:50 2017
            Not After : Mon May 02 15:54:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    0f:86:01:0c:53:de:aa:16:82:d9:0d:a2:63:af:59:b8:
                    5f:9f:6c:2b:0d:e7:69:0e:62:f5:76:a0:dd:54:0f:d7:
                    21:0d:54:85:a4:eb:43:e3:cc:2c:74:ef:c7:e9:28:0e:
                    43:ef:85:f4:9a:91:b9:46:fd:eb:70:67:04:e4:f0:93:
                    ab:5a:48:75:13:19:9f:e8:3c:cf:bf:a2:7e:ba:ae:84:
                    63:1a:03:94:c8:5a:c3:b9:28:20:b0:82:4c:59:88:46:
                    85:10:24:ce:0a:4c:6e:51:b6:c3:5c:0b:63:88:d3:23:
                    ef:94:47:c7:90:03:b3:f8:88:4e:0b:32:84:b4:1d:40:
                    ae:be:94:d6:a5:7d:9b:51:ec:1f:d3:ae:40:4f:ba:4a:
                    3f:bf:5f:0c:d6:d3:73:5c:0f:8a:cd:88:85:ca:d2:9c:
                    13:6b:82:88:89:02:19:be:cc:7e:8e:a5:d4:e2:3c:f0:
                    0b:a1:66:b8:80:2e:3e:c9:a8:f8:d7:5f:65:84:20:d3:
                    9a:a8:df:e8:06:5a:39:ec:11:12:0e:79:77:58:b3:b0:
                    33:d2:a8:ec:21:bf:37:bc:a8:b6:40:f7:ba:b8:43:19:
                    bd:78:9b:0d:59:c9:64:72:15:97:a6:e4:47:c3:4b:2f:
                    28:24:06:9e:ad:57:92:5b:d4:96:73:c2:5a:e4:29:98
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:45:f4:bd:2c:9a:dc:bd:f2:c2:00:3e:3b:
        aa:0d:27:12:06:ab:9f:c4:4c:87:46:5f:f2:b2:47:3b:
        02:1c:03:50:82:84:5b:65:22:cc:27:3f:8c:5c:31:80:
        d9:55:08:08:f3:7b:31:ad:63:92:c5:b8:6e:d7
    Fingerprint (SHA-256):
        CA:F6:56:77:6D:BA:06:13:63:96:0A:61:38:D8:8B:CF:98:FC:50:ED:C6:F1:0C:ED:F5:1C:16:42:AA:4D:1E:52
    Fingerprint (SHA1):
        C7:3E:52:F0:F4:83:DB:66:88:73:A0:9B:53:DC:59:45:2C:DA:58:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #12005: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12006: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12007: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12008: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12009: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12010: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12011: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12012: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12013: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12014: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12015: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12016: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12017: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12018: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12019: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12020: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #12021: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12022: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12023: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12024: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12025: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12026: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12027: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12028: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12029: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12030: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12031: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12032: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155501Z
nextupdate=20180502155501Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:55:01 2017
    Next Update: Wed May 02 15:55:01 2018
    CRL Extensions:
chains.sh: #12033: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155502Z
nextupdate=20180502155502Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:55:02 2017
    Next Update: Wed May 02 15:55:02 2018
    CRL Extensions:
chains.sh: #12034: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155502Z
nextupdate=20180502155502Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:55:02 2017
    Next Update: Wed May 02 15:55:02 2018
    CRL Extensions:
chains.sh: #12035: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155502Z
nextupdate=20180502155502Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:55:02 2017
    Next Update: Wed May 02 15:55:02 2018
    CRL Extensions:
chains.sh: #12036: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155503Z
addcert 14 20170502155503Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:55:03 2017
    Next Update: Wed May 02 15:55:02 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:55:03 2017
    CRL Extensions:
chains.sh: #12037: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155504Z
addcert 15 20170502155504Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:55:04 2017
    Next Update: Wed May 02 15:55:02 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:55:04 2017
    CRL Extensions:
chains.sh: #12038: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12039: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12040: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12041: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #12042: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #12043: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #12044: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #12045: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #12046: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #12047: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:56 2017
            Not After : Mon May 02 15:54:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:d1:37:f3:be:66:25:51:b2:bb:b1:ef:cc:64:5e:7a:
                    01:2e:e8:eb:d5:c2:f3:45:e1:78:8d:3d:53:c3:a7:a8:
                    41:52:4c:4f:68:6f:eb:85:e5:b7:65:44:1c:6b:4e:5f:
                    da:ee:e4:97:02:2e:bb:b5:b5:83:fd:f5:93:3d:7c:d1:
                    55:0b:b6:aa:a0:e4:e4:f8:58:71:4f:f3:93:3d:4f:ee:
                    84:8f:33:cd:81:b6:05:d4:cb:3a:22:88:40:b3:65:e5:
                    f9:e5:77:42:83:94:8c:6f:53:83:a4:cd:72:ee:1d:ed:
                    3f:a5:94:ae:f7:48:b0:74:5f:c3:3e:9e:f8:0c:3f:80:
                    f6:aa:2f:18:02:19:a4:d9:e3:b5:cc:3f:dc:0a:1f:cb:
                    b8:90:e8:a1:49:68:06:36:ec:b4:81:5e:6f:33:ca:ba:
                    57:88:44:6b:b0:72:1b:3b:40:c4:e7:6f:16:6d:b2:1a:
                    b2:c5:17:d2:ad:3f:b6:0a:c0:7e:ff:b2:e0:cf:66:12:
                    07:76:d1:6d:4b:a4:30:4e:93:cd:4d:0b:44:de:df:c0:
                    22:43:5f:49:9b:4d:75:cd:0e:57:ca:94:86:7c:dd:ee:
                    eb:64:95:32:0c:b2:da:02:17:bb:8c:c8:df:4b:55:5b:
                    b3:ab:42:f7:97:ec:42:9f:15:d8:01:b2:69:03:a5:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:dd:b2:93:83:ef:d9:36:a2:1f:af:52:e3:e3:f1:83:
        11:9e:b4:73:dc:c5:0e:1d:70:fd:bd:7d:f5:00:1a:d9:
        b0:78:51:27:6f:fd:2d:a6:f7:bb:ea:48:b1:8f:97:0c:
        ee:57:c7:8b:5c:9e:56:2b:3e:ae:8d:aa:02:f0:91:b7:
        bd:27:d0:65:bf:53:93:eb:34:80:9a:64:29:de:9f:c8:
        ae:14:24:5d:cd:4a:8d:09:e4:29:9b:7b:b8:3a:7a:20:
        b3:f6:7e:1c:1e:6c:3e:6e:7e:9b:40:b7:e0:7e:64:d0:
        6d:f0:93:70:fa:b3:11:ef:f6:9d:e6:5c:df:77:eb:e6:
        c8:b8:8f:28:28:bd:0d:04:b4:2c:a6:31:c8:c3:30:a2:
        f8:e0:60:99:fc:99:e4:46:83:10:53:91:e6:59:fa:bc:
        85:6b:94:d5:e2:23:33:86:92:8c:6c:f3:2c:01:7d:0d:
        c1:83:87:09:59:8a:2f:1b:51:1c:9a:55:00:6a:8a:c5:
        fd:16:0a:b9:eb:95:7a:86:8c:72:7f:64:22:88:fd:78:
        33:51:c4:ec:d3:5c:1b:b0:da:95:ca:a6:18:a2:2c:6b:
        64:40:f7:e2:b3:9e:05:51:ae:ca:19:68:3e:d6:83:a6:
        9c:0d:66:44:4a:41:b1:fe:e6:3a:b3:dc:1c:cb:9a:bf
    Fingerprint (SHA-256):
        F6:0E:42:24:2E:C5:5E:3D:ED:0E:7E:90:C1:E5:5E:8B:53:24:AC:B0:5D:DB:D5:D7:4F:53:72:AD:E3:EA:62:42
    Fingerprint (SHA1):
        C7:87:42:D1:63:55:0C:A4:43:A2:4C:02:FC:3C:2A:5B:44:C5:F8:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12048: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12049: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:54:56 2017
            Not After : Mon May 02 15:54:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:d1:37:f3:be:66:25:51:b2:bb:b1:ef:cc:64:5e:7a:
                    01:2e:e8:eb:d5:c2:f3:45:e1:78:8d:3d:53:c3:a7:a8:
                    41:52:4c:4f:68:6f:eb:85:e5:b7:65:44:1c:6b:4e:5f:
                    da:ee:e4:97:02:2e:bb:b5:b5:83:fd:f5:93:3d:7c:d1:
                    55:0b:b6:aa:a0:e4:e4:f8:58:71:4f:f3:93:3d:4f:ee:
                    84:8f:33:cd:81:b6:05:d4:cb:3a:22:88:40:b3:65:e5:
                    f9:e5:77:42:83:94:8c:6f:53:83:a4:cd:72:ee:1d:ed:
                    3f:a5:94:ae:f7:48:b0:74:5f:c3:3e:9e:f8:0c:3f:80:
                    f6:aa:2f:18:02:19:a4:d9:e3:b5:cc:3f:dc:0a:1f:cb:
                    b8:90:e8:a1:49:68:06:36:ec:b4:81:5e:6f:33:ca:ba:
                    57:88:44:6b:b0:72:1b:3b:40:c4:e7:6f:16:6d:b2:1a:
                    b2:c5:17:d2:ad:3f:b6:0a:c0:7e:ff:b2:e0:cf:66:12:
                    07:76:d1:6d:4b:a4:30:4e:93:cd:4d:0b:44:de:df:c0:
                    22:43:5f:49:9b:4d:75:cd:0e:57:ca:94:86:7c:dd:ee:
                    eb:64:95:32:0c:b2:da:02:17:bb:8c:c8:df:4b:55:5b:
                    b3:ab:42:f7:97:ec:42:9f:15:d8:01:b2:69:03:a5:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:dd:b2:93:83:ef:d9:36:a2:1f:af:52:e3:e3:f1:83:
        11:9e:b4:73:dc:c5:0e:1d:70:fd:bd:7d:f5:00:1a:d9:
        b0:78:51:27:6f:fd:2d:a6:f7:bb:ea:48:b1:8f:97:0c:
        ee:57:c7:8b:5c:9e:56:2b:3e:ae:8d:aa:02:f0:91:b7:
        bd:27:d0:65:bf:53:93:eb:34:80:9a:64:29:de:9f:c8:
        ae:14:24:5d:cd:4a:8d:09:e4:29:9b:7b:b8:3a:7a:20:
        b3:f6:7e:1c:1e:6c:3e:6e:7e:9b:40:b7:e0:7e:64:d0:
        6d:f0:93:70:fa:b3:11:ef:f6:9d:e6:5c:df:77:eb:e6:
        c8:b8:8f:28:28:bd:0d:04:b4:2c:a6:31:c8:c3:30:a2:
        f8:e0:60:99:fc:99:e4:46:83:10:53:91:e6:59:fa:bc:
        85:6b:94:d5:e2:23:33:86:92:8c:6c:f3:2c:01:7d:0d:
        c1:83:87:09:59:8a:2f:1b:51:1c:9a:55:00:6a:8a:c5:
        fd:16:0a:b9:eb:95:7a:86:8c:72:7f:64:22:88:fd:78:
        33:51:c4:ec:d3:5c:1b:b0:da:95:ca:a6:18:a2:2c:6b:
        64:40:f7:e2:b3:9e:05:51:ae:ca:19:68:3e:d6:83:a6:
        9c:0d:66:44:4a:41:b1:fe:e6:3a:b3:dc:1c:cb:9a:bf
    Fingerprint (SHA-256):
        F6:0E:42:24:2E:C5:5E:3D:ED:0E:7E:90:C1:E5:5E:8B:53:24:AC:B0:5D:DB:D5:D7:4F:53:72:AD:E3:EA:62:42
    Fingerprint (SHA1):
        C7:87:42:D1:63:55:0C:A4:43:A2:4C:02:FC:3C:2A:5B:44:C5:F8:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12050: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12051: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12052: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155295 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12053: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12054: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12055: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12056: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502155296   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12057: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12058: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12059: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155067.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12060: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155041.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12061: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12062: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12063: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155067.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12064: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502155297   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12065: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12066: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12067: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155067.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12068: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155042.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12069: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12070: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12071: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12072: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502155298   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12073: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12074: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12075: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155067.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12076: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155043.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12077: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12078: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12079: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0-502155067.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12080: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9132/localhost-12777-CA0Root-502155044.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12081: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12082: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155512Z
nextupdate=20180502155512Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:55:12 2017
    Next Update: Wed May 02 15:55:12 2018
    CRL Extensions:
chains.sh: #12083: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155512Z
nextupdate=20180502155512Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:55:12 2017
    Next Update: Wed May 02 15:55:12 2018
    CRL Extensions:
chains.sh: #12084: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155512Z
nextupdate=20180502155512Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:55:12 2017
    Next Update: Wed May 02 15:55:12 2018
    CRL Extensions:
chains.sh: #12085: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155512Z
nextupdate=20180502155512Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:55:12 2017
    Next Update: Wed May 02 15:55:12 2018
    CRL Extensions:
chains.sh: #12086: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155513Z
addcert 20 20170502155513Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:55:13 2017
    Next Update: Wed May 02 15:55:12 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:55:13 2017
    CRL Extensions:
chains.sh: #12087: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155514Z
addcert 40 20170502155514Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:55:14 2017
    Next Update: Wed May 02 15:55:12 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:55:13 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:55:14 2017
    CRL Extensions:
chains.sh: #12088: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12089: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12090: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12091: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155295 (0x1dee481f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:55:06 2017
            Not After : Mon May 02 15:55:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:78:7e:97:21:e5:28:22:b2:f9:72:ee:3e:28:5a:28:
                    68:ae:b2:6b:73:2b:9e:6a:8c:c0:1a:c9:9b:a3:3a:49:
                    22:5f:0f:e6:cb:58:94:b2:3a:82:ec:2d:d9:af:fb:ec:
                    79:a9:4e:6a:c0:5a:ba:26:53:65:0c:b7:7f:5d:17:f7:
                    66:44:84:0f:0f:32:46:f7:0f:d4:af:f7:df:82:b5:7c:
                    2b:16:38:28:32:52:22:d8:94:76:22:9b:23:65:ff:a5:
                    47:a3:e9:85:2e:1f:21:c3:67:63:f5:84:16:b5:12:41:
                    32:de:92:dd:b6:10:7c:09:56:ab:06:88:9d:4f:53:79:
                    30:fc:3f:b6:2c:f3:83:fc:77:e6:8e:64:5b:73:65:8f:
                    8c:f0:00:25:d1:24:d5:d2:23:06:51:6c:fc:ac:01:87:
                    b6:36:28:86:2a:ed:5a:fc:e9:b8:95:0c:6c:b8:47:2c:
                    e4:6c:c8:d7:03:b4:24:c9:0d:7a:d4:55:64:7f:78:bd:
                    a8:ba:e3:ae:3c:90:e6:bb:b2:d8:ee:5b:fb:38:cf:b4:
                    d7:7a:41:fc:dc:ba:7d:01:f4:9f:ba:03:ec:22:cd:d8:
                    66:b1:93:4b:66:42:85:ba:03:23:28:76:73:fc:b3:c7:
                    20:4e:a3:f4:f0:73:62:f4:3a:aa:1e:18:91:e8:ff:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:bc:e7:85:c3:8c:fd:2f:b5:d9:7b:5c:36:69:eb:0b:
        c0:85:1c:8a:22:11:ab:27:2f:3c:e1:43:0b:31:19:18:
        55:e5:2e:18:01:c0:af:a5:11:a8:94:3e:59:dd:dd:21:
        a0:2e:31:ae:41:91:d4:7d:f7:fa:6a:f4:6c:0f:0d:b6:
        0b:0b:05:ad:c2:3e:eb:7f:70:89:67:5b:3c:20:1f:37:
        04:4f:bf:40:0a:b7:99:41:1f:a9:12:5c:8b:31:9c:53:
        6a:36:b9:a3:bf:eb:1c:f9:24:d7:a2:55:51:3f:c9:e0:
        fc:20:da:a5:2f:3d:7d:85:8c:fb:70:f9:ad:64:36:ad:
        0b:36:64:fd:28:c2:16:a6:b7:8f:10:f2:bf:6c:99:92:
        0e:d9:fd:10:ae:6d:77:a0:bf:06:db:4a:9a:5c:85:0d:
        45:cc:f6:5f:1c:7a:54:ce:62:b8:be:4d:5a:c1:e6:b2:
        de:ee:77:ea:71:c0:c7:16:dc:fc:1f:db:98:43:88:b9:
        fd:7a:66:76:f4:b7:df:ff:5c:14:08:3e:8a:1f:f4:bd:
        c6:66:6e:97:57:1d:70:ac:dc:96:54:d4:b3:91:39:a0:
        f7:27:88:1b:fc:08:35:5b:54:f7:a3:c6:15:c4:96:21:
        59:87:40:75:d6:d7:3f:ed:99:8e:ac:00:eb:90:23:7b
    Fingerprint (SHA-256):
        A1:19:76:7E:58:C0:88:1F:90:9D:A3:0C:CA:AC:FC:EE:2F:17:6A:AB:B6:27:79:EC:A2:B2:26:5F:AB:B6:67:0E
    Fingerprint (SHA1):
        D7:0D:8E:0C:6D:DE:4D:87:28:9D:0D:47:A8:01:3D:8F:4F:D2:E0:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12092: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12093: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155295 (0x1dee481f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:55:06 2017
            Not After : Mon May 02 15:55:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:78:7e:97:21:e5:28:22:b2:f9:72:ee:3e:28:5a:28:
                    68:ae:b2:6b:73:2b:9e:6a:8c:c0:1a:c9:9b:a3:3a:49:
                    22:5f:0f:e6:cb:58:94:b2:3a:82:ec:2d:d9:af:fb:ec:
                    79:a9:4e:6a:c0:5a:ba:26:53:65:0c:b7:7f:5d:17:f7:
                    66:44:84:0f:0f:32:46:f7:0f:d4:af:f7:df:82:b5:7c:
                    2b:16:38:28:32:52:22:d8:94:76:22:9b:23:65:ff:a5:
                    47:a3:e9:85:2e:1f:21:c3:67:63:f5:84:16:b5:12:41:
                    32:de:92:dd:b6:10:7c:09:56:ab:06:88:9d:4f:53:79:
                    30:fc:3f:b6:2c:f3:83:fc:77:e6:8e:64:5b:73:65:8f:
                    8c:f0:00:25:d1:24:d5:d2:23:06:51:6c:fc:ac:01:87:
                    b6:36:28:86:2a:ed:5a:fc:e9:b8:95:0c:6c:b8:47:2c:
                    e4:6c:c8:d7:03:b4:24:c9:0d:7a:d4:55:64:7f:78:bd:
                    a8:ba:e3:ae:3c:90:e6:bb:b2:d8:ee:5b:fb:38:cf:b4:
                    d7:7a:41:fc:dc:ba:7d:01:f4:9f:ba:03:ec:22:cd:d8:
                    66:b1:93:4b:66:42:85:ba:03:23:28:76:73:fc:b3:c7:
                    20:4e:a3:f4:f0:73:62:f4:3a:aa:1e:18:91:e8:ff:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:bc:e7:85:c3:8c:fd:2f:b5:d9:7b:5c:36:69:eb:0b:
        c0:85:1c:8a:22:11:ab:27:2f:3c:e1:43:0b:31:19:18:
        55:e5:2e:18:01:c0:af:a5:11:a8:94:3e:59:dd:dd:21:
        a0:2e:31:ae:41:91:d4:7d:f7:fa:6a:f4:6c:0f:0d:b6:
        0b:0b:05:ad:c2:3e:eb:7f:70:89:67:5b:3c:20:1f:37:
        04:4f:bf:40:0a:b7:99:41:1f:a9:12:5c:8b:31:9c:53:
        6a:36:b9:a3:bf:eb:1c:f9:24:d7:a2:55:51:3f:c9:e0:
        fc:20:da:a5:2f:3d:7d:85:8c:fb:70:f9:ad:64:36:ad:
        0b:36:64:fd:28:c2:16:a6:b7:8f:10:f2:bf:6c:99:92:
        0e:d9:fd:10:ae:6d:77:a0:bf:06:db:4a:9a:5c:85:0d:
        45:cc:f6:5f:1c:7a:54:ce:62:b8:be:4d:5a:c1:e6:b2:
        de:ee:77:ea:71:c0:c7:16:dc:fc:1f:db:98:43:88:b9:
        fd:7a:66:76:f4:b7:df:ff:5c:14:08:3e:8a:1f:f4:bd:
        c6:66:6e:97:57:1d:70:ac:dc:96:54:d4:b3:91:39:a0:
        f7:27:88:1b:fc:08:35:5b:54:f7:a3:c6:15:c4:96:21:
        59:87:40:75:d6:d7:3f:ed:99:8e:ac:00:eb:90:23:7b
    Fingerprint (SHA-256):
        A1:19:76:7E:58:C0:88:1F:90:9D:A3:0C:CA:AC:FC:EE:2F:17:6A:AB:B6:27:79:EC:A2:B2:26:5F:AB:B6:67:0E
    Fingerprint (SHA1):
        D7:0D:8E:0C:6D:DE:4D:87:28:9D:0D:47:A8:01:3D:8F:4F:D2:E0:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12094: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12095: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #12096: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155299 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12097: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #12098: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12099: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12100: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155300   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12101: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12102: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12103: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12104: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155301   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12105: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12106: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12107: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12108: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502155302   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12109: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12110: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #12111: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502155303 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12112: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #12113: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #12114: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12115: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502155304   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12116: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12117: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12118: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12119: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502155305   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12120: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12121: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #12122: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #12123: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #12124: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155299 (0x1dee4823)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:55:16 2017
            Not After : Mon May 02 15:55:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:5a:ee:7a:a2:eb:ad:df:b3:9b:c9:48:95:99:e2:25:
                    89:37:1a:ab:00:aa:32:58:76:e0:70:00:52:2c:03:9c:
                    7d:a7:b8:1d:be:16:2c:e0:a0:cb:db:28:8a:07:81:82:
                    08:48:d3:67:55:fb:d1:f2:16:f3:d0:6e:5c:67:42:a1:
                    8e:7d:d3:90:56:2d:36:63:49:e1:6a:8e:28:54:d2:17:
                    eb:1a:1a:e6:54:46:45:d7:a3:92:10:99:0a:0f:af:94:
                    e8:54:51:89:12:30:1e:ea:69:4b:b4:1b:23:7d:65:d8:
                    96:49:59:92:ee:7b:1f:01:8e:75:85:d7:a8:8c:9c:f4:
                    94:ef:25:38:a2:ba:67:89:22:02:10:17:c5:48:b6:02:
                    48:ae:e1:66:5e:2f:41:c8:1c:eb:62:97:49:11:fd:60:
                    12:3e:a8:18:47:88:ae:ab:16:b9:8f:bd:e2:ae:f3:35:
                    75:1e:fe:ba:61:76:33:f3:de:d5:72:41:01:91:91:c2:
                    43:14:02:ed:fe:1d:11:56:89:82:37:95:f9:f3:74:59:
                    2c:40:e8:77:02:32:60:f0:7d:f6:a2:1f:2f:f3:32:7e:
                    b1:10:da:51:d3:d9:e9:61:7f:18:47:6f:eb:f8:df:aa:
                    da:34:d6:3e:57:f4:05:46:c0:65:79:ea:2c:c7:34:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:32:0c:45:30:d3:82:80:cd:10:4a:9b:29:9c:00:5e:
        ef:22:3c:9b:e1:ee:d0:86:95:40:1c:04:9f:23:d0:c0:
        a5:2c:3e:e0:85:e5:fa:62:70:ab:5f:92:cf:e3:cf:f1:
        5d:e0:f0:8d:ec:b4:e2:7c:a1:7f:a6:6a:fd:cd:99:cd:
        2a:71:86:09:ee:49:5f:87:35:ba:29:84:74:f6:05:9d:
        29:9c:50:c3:8c:3f:fe:8c:b8:cd:14:36:e1:77:f8:94:
        60:78:c0:73:42:af:2b:71:a0:7b:b1:e5:b0:33:45:7b:
        a6:8c:9c:87:9b:be:19:da:e3:21:8f:58:e2:a8:bf:6b:
        7f:01:76:ca:7b:34:0e:98:1f:66:cc:2b:66:55:2c:90:
        9d:32:b4:b9:9a:e6:a2:8d:b8:42:cc:29:57:1f:e9:b0:
        f1:6c:e5:a4:50:e9:0e:99:73:61:93:bd:20:18:ea:e8:
        b6:a5:82:0a:86:a2:79:a1:f6:88:82:8e:7d:95:38:d4:
        80:8f:9c:c7:18:e0:64:10:2b:2f:ef:e2:c0:24:47:13:
        bb:fe:f1:f1:45:88:d0:c0:39:30:9a:82:ce:d0:c7:ac:
        a4:ee:46:45:7e:80:b3:1d:7a:90:10:d3:70:b9:b4:b2:
        76:b5:96:e4:11:41:51:39:21:38:dc:79:b9:d1:5e:10
    Fingerprint (SHA-256):
        7A:0A:6A:D6:F9:E0:AA:D5:56:13:53:65:D7:E2:BC:28:27:6C:A3:CA:40:BD:59:1B:3A:D5:0B:89:D8:65:6D:0F
    Fingerprint (SHA1):
        88:84:FA:43:78:C6:48:F0:45:45:2F:8E:F1:56:E4:05:65:7A:13:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12125: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155301 (0x1dee4825)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:55:17 2017
            Not After : Mon May 02 15:55:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9f:62:17:e7:22:06:23:a1:fb:3e:72:67:45:86:bb:
                    e1:95:50:30:6a:7b:59:e0:11:47:46:cd:4d:dc:f5:0b:
                    b3:df:00:c9:21:f5:4e:ad:57:03:e8:f6:0a:12:2c:98:
                    d7:af:9b:4f:21:db:21:b9:5c:68:90:b3:ea:2f:89:4d:
                    79:21:c5:38:b5:ed:c8:4e:d5:c6:91:7b:30:b9:1a:8e:
                    e8:01:21:17:aa:6f:a3:2f:34:99:f4:b0:39:3f:a8:9e:
                    ab:da:ca:f4:40:07:d1:e6:51:eb:a2:8b:de:89:8f:03:
                    45:22:94:2a:37:66:b0:42:33:e0:05:48:1d:27:44:f2:
                    9f:bd:81:de:54:49:ae:50:e1:d9:38:d7:ee:76:92:26:
                    ec:8d:ac:15:4e:0a:b7:0a:a7:2a:90:ce:a0:50:99:30:
                    3a:a9:fa:63:6a:ac:c1:0b:0b:d0:54:85:7b:7b:91:e2:
                    d4:51:d4:ff:e3:d0:27:62:0a:a9:56:be:68:69:64:a0:
                    b0:1f:df:b2:87:86:ce:a3:c7:92:de:08:e0:88:b2:f2:
                    11:21:fb:6d:7f:48:98:70:f2:5c:51:01:67:8e:6c:5f:
                    5b:42:80:12:08:3c:88:d2:a1:98:27:6c:6b:73:b8:4b:
                    04:bf:4f:f8:0a:04:8b:00:04:89:8f:8c:76:27:45:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:f5:77:19:8a:6e:5f:5c:c1:78:71:38:cc:be:a7:74:
        f4:90:43:d1:a9:17:b2:a1:05:58:ea:56:f5:45:2d:65:
        c1:af:fc:05:e1:ee:7a:97:51:4d:93:a1:39:e4:51:5e:
        5c:26:06:85:fc:dc:50:a0:5d:d3:24:43:a3:90:db:bd:
        c2:2d:87:9b:72:d7:06:db:14:e3:a1:56:80:19:80:3d:
        ac:31:7d:2c:d3:2e:9f:32:51:24:ce:df:d4:d8:de:67:
        cb:13:c1:86:c5:03:53:f3:79:ab:09:2d:1b:a0:8e:0b:
        df:c4:78:cc:19:41:7b:25:d2:25:70:15:dd:c5:3d:67:
        a7:21:20:dc:b8:8b:4d:65:3a:d7:53:d5:8c:6d:0d:30:
        77:5a:73:9b:e3:87:8c:0e:12:dd:bb:27:65:f3:27:8c:
        85:87:74:c4:70:5a:61:35:86:2b:ff:58:ea:d8:e2:cb:
        16:f5:b0:5a:75:b6:ed:7f:70:31:1f:89:c6:20:8d:c4:
        46:20:97:df:23:7f:b3:0b:46:97:e8:5a:8a:57:1a:74:
        81:09:43:b3:13:9f:b1:01:ce:a4:dc:bc:f9:ff:51:0a:
        59:2a:ea:0d:01:6d:ef:cb:3a:9b:c0:eb:ab:43:71:c7:
        31:6a:30:79:b9:7e:8f:52:e1:c7:50:2e:5c:03:5a:60
    Fingerprint (SHA-256):
        99:E2:C7:BA:06:34:FA:B2:74:2C:14:15:AA:CF:06:13:2C:C2:8C:C9:BF:C1:D9:38:78:EA:21:F1:A8:80:BE:F3
    Fingerprint (SHA1):
        67:AC:23:02:E0:AF:54:61:82:85:E0:34:BF:26:F0:82:A5:3D:C1:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12126: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155299 (0x1dee4823)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:55:16 2017
            Not After : Mon May 02 15:55:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:5a:ee:7a:a2:eb:ad:df:b3:9b:c9:48:95:99:e2:25:
                    89:37:1a:ab:00:aa:32:58:76:e0:70:00:52:2c:03:9c:
                    7d:a7:b8:1d:be:16:2c:e0:a0:cb:db:28:8a:07:81:82:
                    08:48:d3:67:55:fb:d1:f2:16:f3:d0:6e:5c:67:42:a1:
                    8e:7d:d3:90:56:2d:36:63:49:e1:6a:8e:28:54:d2:17:
                    eb:1a:1a:e6:54:46:45:d7:a3:92:10:99:0a:0f:af:94:
                    e8:54:51:89:12:30:1e:ea:69:4b:b4:1b:23:7d:65:d8:
                    96:49:59:92:ee:7b:1f:01:8e:75:85:d7:a8:8c:9c:f4:
                    94:ef:25:38:a2:ba:67:89:22:02:10:17:c5:48:b6:02:
                    48:ae:e1:66:5e:2f:41:c8:1c:eb:62:97:49:11:fd:60:
                    12:3e:a8:18:47:88:ae:ab:16:b9:8f:bd:e2:ae:f3:35:
                    75:1e:fe:ba:61:76:33:f3:de:d5:72:41:01:91:91:c2:
                    43:14:02:ed:fe:1d:11:56:89:82:37:95:f9:f3:74:59:
                    2c:40:e8:77:02:32:60:f0:7d:f6:a2:1f:2f:f3:32:7e:
                    b1:10:da:51:d3:d9:e9:61:7f:18:47:6f:eb:f8:df:aa:
                    da:34:d6:3e:57:f4:05:46:c0:65:79:ea:2c:c7:34:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:32:0c:45:30:d3:82:80:cd:10:4a:9b:29:9c:00:5e:
        ef:22:3c:9b:e1:ee:d0:86:95:40:1c:04:9f:23:d0:c0:
        a5:2c:3e:e0:85:e5:fa:62:70:ab:5f:92:cf:e3:cf:f1:
        5d:e0:f0:8d:ec:b4:e2:7c:a1:7f:a6:6a:fd:cd:99:cd:
        2a:71:86:09:ee:49:5f:87:35:ba:29:84:74:f6:05:9d:
        29:9c:50:c3:8c:3f:fe:8c:b8:cd:14:36:e1:77:f8:94:
        60:78:c0:73:42:af:2b:71:a0:7b:b1:e5:b0:33:45:7b:
        a6:8c:9c:87:9b:be:19:da:e3:21:8f:58:e2:a8:bf:6b:
        7f:01:76:ca:7b:34:0e:98:1f:66:cc:2b:66:55:2c:90:
        9d:32:b4:b9:9a:e6:a2:8d:b8:42:cc:29:57:1f:e9:b0:
        f1:6c:e5:a4:50:e9:0e:99:73:61:93:bd:20:18:ea:e8:
        b6:a5:82:0a:86:a2:79:a1:f6:88:82:8e:7d:95:38:d4:
        80:8f:9c:c7:18:e0:64:10:2b:2f:ef:e2:c0:24:47:13:
        bb:fe:f1:f1:45:88:d0:c0:39:30:9a:82:ce:d0:c7:ac:
        a4:ee:46:45:7e:80:b3:1d:7a:90:10:d3:70:b9:b4:b2:
        76:b5:96:e4:11:41:51:39:21:38:dc:79:b9:d1:5e:10
    Fingerprint (SHA-256):
        7A:0A:6A:D6:F9:E0:AA:D5:56:13:53:65:D7:E2:BC:28:27:6C:A3:CA:40:BD:59:1B:3A:D5:0B:89:D8:65:6D:0F
    Fingerprint (SHA1):
        88:84:FA:43:78:C6:48:F0:45:45:2F:8E:F1:56:E4:05:65:7A:13:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12127: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #12128: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155299 (0x1dee4823)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:55:16 2017
            Not After : Mon May 02 15:55:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:5a:ee:7a:a2:eb:ad:df:b3:9b:c9:48:95:99:e2:25:
                    89:37:1a:ab:00:aa:32:58:76:e0:70:00:52:2c:03:9c:
                    7d:a7:b8:1d:be:16:2c:e0:a0:cb:db:28:8a:07:81:82:
                    08:48:d3:67:55:fb:d1:f2:16:f3:d0:6e:5c:67:42:a1:
                    8e:7d:d3:90:56:2d:36:63:49:e1:6a:8e:28:54:d2:17:
                    eb:1a:1a:e6:54:46:45:d7:a3:92:10:99:0a:0f:af:94:
                    e8:54:51:89:12:30:1e:ea:69:4b:b4:1b:23:7d:65:d8:
                    96:49:59:92:ee:7b:1f:01:8e:75:85:d7:a8:8c:9c:f4:
                    94:ef:25:38:a2:ba:67:89:22:02:10:17:c5:48:b6:02:
                    48:ae:e1:66:5e:2f:41:c8:1c:eb:62:97:49:11:fd:60:
                    12:3e:a8:18:47:88:ae:ab:16:b9:8f:bd:e2:ae:f3:35:
                    75:1e:fe:ba:61:76:33:f3:de:d5:72:41:01:91:91:c2:
                    43:14:02:ed:fe:1d:11:56:89:82:37:95:f9:f3:74:59:
                    2c:40:e8:77:02:32:60:f0:7d:f6:a2:1f:2f:f3:32:7e:
                    b1:10:da:51:d3:d9:e9:61:7f:18:47:6f:eb:f8:df:aa:
                    da:34:d6:3e:57:f4:05:46:c0:65:79:ea:2c:c7:34:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:32:0c:45:30:d3:82:80:cd:10:4a:9b:29:9c:00:5e:
        ef:22:3c:9b:e1:ee:d0:86:95:40:1c:04:9f:23:d0:c0:
        a5:2c:3e:e0:85:e5:fa:62:70:ab:5f:92:cf:e3:cf:f1:
        5d:e0:f0:8d:ec:b4:e2:7c:a1:7f:a6:6a:fd:cd:99:cd:
        2a:71:86:09:ee:49:5f:87:35:ba:29:84:74:f6:05:9d:
        29:9c:50:c3:8c:3f:fe:8c:b8:cd:14:36:e1:77:f8:94:
        60:78:c0:73:42:af:2b:71:a0:7b:b1:e5:b0:33:45:7b:
        a6:8c:9c:87:9b:be:19:da:e3:21:8f:58:e2:a8:bf:6b:
        7f:01:76:ca:7b:34:0e:98:1f:66:cc:2b:66:55:2c:90:
        9d:32:b4:b9:9a:e6:a2:8d:b8:42:cc:29:57:1f:e9:b0:
        f1:6c:e5:a4:50:e9:0e:99:73:61:93:bd:20:18:ea:e8:
        b6:a5:82:0a:86:a2:79:a1:f6:88:82:8e:7d:95:38:d4:
        80:8f:9c:c7:18:e0:64:10:2b:2f:ef:e2:c0:24:47:13:
        bb:fe:f1:f1:45:88:d0:c0:39:30:9a:82:ce:d0:c7:ac:
        a4:ee:46:45:7e:80:b3:1d:7a:90:10:d3:70:b9:b4:b2:
        76:b5:96:e4:11:41:51:39:21:38:dc:79:b9:d1:5e:10
    Fingerprint (SHA-256):
        7A:0A:6A:D6:F9:E0:AA:D5:56:13:53:65:D7:E2:BC:28:27:6C:A3:CA:40:BD:59:1B:3A:D5:0B:89:D8:65:6D:0F
    Fingerprint (SHA1):
        88:84:FA:43:78:C6:48:F0:45:45:2F:8E:F1:56:E4:05:65:7A:13:BA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12129: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155301 (0x1dee4825)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:55:17 2017
            Not After : Mon May 02 15:55:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9f:62:17:e7:22:06:23:a1:fb:3e:72:67:45:86:bb:
                    e1:95:50:30:6a:7b:59:e0:11:47:46:cd:4d:dc:f5:0b:
                    b3:df:00:c9:21:f5:4e:ad:57:03:e8:f6:0a:12:2c:98:
                    d7:af:9b:4f:21:db:21:b9:5c:68:90:b3:ea:2f:89:4d:
                    79:21:c5:38:b5:ed:c8:4e:d5:c6:91:7b:30:b9:1a:8e:
                    e8:01:21:17:aa:6f:a3:2f:34:99:f4:b0:39:3f:a8:9e:
                    ab:da:ca:f4:40:07:d1:e6:51:eb:a2:8b:de:89:8f:03:
                    45:22:94:2a:37:66:b0:42:33:e0:05:48:1d:27:44:f2:
                    9f:bd:81:de:54:49:ae:50:e1:d9:38:d7:ee:76:92:26:
                    ec:8d:ac:15:4e:0a:b7:0a:a7:2a:90:ce:a0:50:99:30:
                    3a:a9:fa:63:6a:ac:c1:0b:0b:d0:54:85:7b:7b:91:e2:
                    d4:51:d4:ff:e3:d0:27:62:0a:a9:56:be:68:69:64:a0:
                    b0:1f:df:b2:87:86:ce:a3:c7:92:de:08:e0:88:b2:f2:
                    11:21:fb:6d:7f:48:98:70:f2:5c:51:01:67:8e:6c:5f:
                    5b:42:80:12:08:3c:88:d2:a1:98:27:6c:6b:73:b8:4b:
                    04:bf:4f:f8:0a:04:8b:00:04:89:8f:8c:76:27:45:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:f5:77:19:8a:6e:5f:5c:c1:78:71:38:cc:be:a7:74:
        f4:90:43:d1:a9:17:b2:a1:05:58:ea:56:f5:45:2d:65:
        c1:af:fc:05:e1:ee:7a:97:51:4d:93:a1:39:e4:51:5e:
        5c:26:06:85:fc:dc:50:a0:5d:d3:24:43:a3:90:db:bd:
        c2:2d:87:9b:72:d7:06:db:14:e3:a1:56:80:19:80:3d:
        ac:31:7d:2c:d3:2e:9f:32:51:24:ce:df:d4:d8:de:67:
        cb:13:c1:86:c5:03:53:f3:79:ab:09:2d:1b:a0:8e:0b:
        df:c4:78:cc:19:41:7b:25:d2:25:70:15:dd:c5:3d:67:
        a7:21:20:dc:b8:8b:4d:65:3a:d7:53:d5:8c:6d:0d:30:
        77:5a:73:9b:e3:87:8c:0e:12:dd:bb:27:65:f3:27:8c:
        85:87:74:c4:70:5a:61:35:86:2b:ff:58:ea:d8:e2:cb:
        16:f5:b0:5a:75:b6:ed:7f:70:31:1f:89:c6:20:8d:c4:
        46:20:97:df:23:7f:b3:0b:46:97:e8:5a:8a:57:1a:74:
        81:09:43:b3:13:9f:b1:01:ce:a4:dc:bc:f9:ff:51:0a:
        59:2a:ea:0d:01:6d:ef:cb:3a:9b:c0:eb:ab:43:71:c7:
        31:6a:30:79:b9:7e:8f:52:e1:c7:50:2e:5c:03:5a:60
    Fingerprint (SHA-256):
        99:E2:C7:BA:06:34:FA:B2:74:2C:14:15:AA:CF:06:13:2C:C2:8C:C9:BF:C1:D9:38:78:EA:21:F1:A8:80:BE:F3
    Fingerprint (SHA1):
        67:AC:23:02:E0:AF:54:61:82:85:E0:34:BF:26:F0:82:A5:3D:C1:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12130: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #12131: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #12132: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #12133: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155299 (0x1dee4823)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:55:16 2017
            Not After : Mon May 02 15:55:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:5a:ee:7a:a2:eb:ad:df:b3:9b:c9:48:95:99:e2:25:
                    89:37:1a:ab:00:aa:32:58:76:e0:70:00:52:2c:03:9c:
                    7d:a7:b8:1d:be:16:2c:e0:a0:cb:db:28:8a:07:81:82:
                    08:48:d3:67:55:fb:d1:f2:16:f3:d0:6e:5c:67:42:a1:
                    8e:7d:d3:90:56:2d:36:63:49:e1:6a:8e:28:54:d2:17:
                    eb:1a:1a:e6:54:46:45:d7:a3:92:10:99:0a:0f:af:94:
                    e8:54:51:89:12:30:1e:ea:69:4b:b4:1b:23:7d:65:d8:
                    96:49:59:92:ee:7b:1f:01:8e:75:85:d7:a8:8c:9c:f4:
                    94:ef:25:38:a2:ba:67:89:22:02:10:17:c5:48:b6:02:
                    48:ae:e1:66:5e:2f:41:c8:1c:eb:62:97:49:11:fd:60:
                    12:3e:a8:18:47:88:ae:ab:16:b9:8f:bd:e2:ae:f3:35:
                    75:1e:fe:ba:61:76:33:f3:de:d5:72:41:01:91:91:c2:
                    43:14:02:ed:fe:1d:11:56:89:82:37:95:f9:f3:74:59:
                    2c:40:e8:77:02:32:60:f0:7d:f6:a2:1f:2f:f3:32:7e:
                    b1:10:da:51:d3:d9:e9:61:7f:18:47:6f:eb:f8:df:aa:
                    da:34:d6:3e:57:f4:05:46:c0:65:79:ea:2c:c7:34:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:32:0c:45:30:d3:82:80:cd:10:4a:9b:29:9c:00:5e:
        ef:22:3c:9b:e1:ee:d0:86:95:40:1c:04:9f:23:d0:c0:
        a5:2c:3e:e0:85:e5:fa:62:70:ab:5f:92:cf:e3:cf:f1:
        5d:e0:f0:8d:ec:b4:e2:7c:a1:7f:a6:6a:fd:cd:99:cd:
        2a:71:86:09:ee:49:5f:87:35:ba:29:84:74:f6:05:9d:
        29:9c:50:c3:8c:3f:fe:8c:b8:cd:14:36:e1:77:f8:94:
        60:78:c0:73:42:af:2b:71:a0:7b:b1:e5:b0:33:45:7b:
        a6:8c:9c:87:9b:be:19:da:e3:21:8f:58:e2:a8:bf:6b:
        7f:01:76:ca:7b:34:0e:98:1f:66:cc:2b:66:55:2c:90:
        9d:32:b4:b9:9a:e6:a2:8d:b8:42:cc:29:57:1f:e9:b0:
        f1:6c:e5:a4:50:e9:0e:99:73:61:93:bd:20:18:ea:e8:
        b6:a5:82:0a:86:a2:79:a1:f6:88:82:8e:7d:95:38:d4:
        80:8f:9c:c7:18:e0:64:10:2b:2f:ef:e2:c0:24:47:13:
        bb:fe:f1:f1:45:88:d0:c0:39:30:9a:82:ce:d0:c7:ac:
        a4:ee:46:45:7e:80:b3:1d:7a:90:10:d3:70:b9:b4:b2:
        76:b5:96:e4:11:41:51:39:21:38:dc:79:b9:d1:5e:10
    Fingerprint (SHA-256):
        7A:0A:6A:D6:F9:E0:AA:D5:56:13:53:65:D7:E2:BC:28:27:6C:A3:CA:40:BD:59:1B:3A:D5:0B:89:D8:65:6D:0F
    Fingerprint (SHA1):
        88:84:FA:43:78:C6:48:F0:45:45:2F:8E:F1:56:E4:05:65:7A:13:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12134: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155303 (0x1dee4827)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:55:19 2017
            Not After : Mon May 02 15:55:19 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:9d:f6:dc:7c:e8:db:ac:33:e6:74:48:46:de:46:de:
                    d7:06:06:7c:92:1a:99:ec:48:81:37:b9:f5:14:c9:84:
                    a8:57:02:c9:8c:93:4a:a6:05:42:79:bc:46:e0:b2:67:
                    ea:72:e8:8c:2c:77:a8:e9:44:a9:c1:0c:71:09:5d:ef:
                    90:87:f2:b3:12:fe:cb:57:79:81:3b:f8:d3:f4:63:c1:
                    8f:c9:44:d6:48:d1:f8:ef:9a:5c:94:35:4b:31:c3:a0:
                    36:c0:49:40:4b:46:ee:ce:d0:b6:0d:dd:7f:87:bd:0b:
                    bb:4b:7a:43:5a:8e:f3:70:35:c8:2d:d7:9c:84:d9:b9:
                    22:34:23:32:c6:4e:0f:03:bc:c1:4d:d0:09:45:5b:5f:
                    16:97:46:36:ad:78:23:97:2a:8e:69:c2:d0:c0:85:f8:
                    3e:1d:6f:76:ca:c5:7f:4c:92:c3:ce:b7:17:ab:71:a2:
                    66:f6:5e:14:e5:34:f1:71:68:86:42:b9:5c:35:dc:97:
                    7a:72:13:71:18:3f:67:2f:0e:53:33:89:d9:99:45:08:
                    37:aa:86:e4:88:9a:63:7f:df:62:87:aa:61:d1:e6:93:
                    27:a8:f6:2d:14:7f:33:28:eb:18:43:00:94:b7:86:9c:
                    51:de:3a:0b:44:b6:13:9a:4b:31:d6:47:b6:09:45:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:5f:91:ba:8e:70:08:5b:18:ff:cc:c9:1f:e3:ca:6e:
        e6:19:be:2b:10:58:09:7d:7f:08:ac:52:dd:c4:e9:95:
        12:1c:07:df:c6:fa:77:dd:74:15:f1:ca:17:de:30:38:
        da:11:8d:c4:63:91:ce:07:2b:e2:58:d6:0f:c7:ff:fd:
        dd:c0:95:9f:14:12:7e:6c:94:c4:78:cd:4a:89:d0:43:
        c4:ee:e6:c1:69:2c:cc:97:67:70:e7:cc:a8:c6:ad:45:
        c1:fb:ed:72:44:3a:37:b5:34:ec:1f:f3:2b:a3:0e:04:
        e8:3c:76:d9:02:8f:80:e3:51:71:f7:ea:15:74:95:2d:
        74:10:72:04:87:d8:ed:14:65:a0:e6:d2:7f:a3:17:11:
        57:77:50:37:fd:7f:cd:2a:92:4c:29:7b:8b:0e:c6:5c:
        13:04:4f:c6:60:0a:75:62:32:2c:e0:d8:4f:9f:7e:2c:
        3a:fa:fd:17:5b:a2:5f:10:93:05:66:09:c9:73:a7:f0:
        ce:22:e5:52:a2:0c:78:9c:41:58:68:8d:65:ef:e3:6a:
        b3:2f:c9:22:89:09:72:f2:db:8b:1f:98:4f:ab:78:22:
        2e:5c:c1:95:b7:92:69:ce:8d:d4:ff:cb:5e:69:29:38:
        39:bc:59:28:d8:62:d4:02:62:b1:67:88:d5:de:20:b6
    Fingerprint (SHA-256):
        D7:40:E7:75:3A:D9:E2:9A:BD:8C:23:13:5E:3B:8B:AB:45:6E:0C:C7:51:2B:B9:60:DF:01:22:DA:87:A8:DE:53
    Fingerprint (SHA1):
        4A:4A:B8:71:6C:D3:4E:4C:2D:21:1C:9D:D3:E1:BE:B7:CF:13:CA:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #12135: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155299 (0x1dee4823)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:55:16 2017
            Not After : Mon May 02 15:55:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:5a:ee:7a:a2:eb:ad:df:b3:9b:c9:48:95:99:e2:25:
                    89:37:1a:ab:00:aa:32:58:76:e0:70:00:52:2c:03:9c:
                    7d:a7:b8:1d:be:16:2c:e0:a0:cb:db:28:8a:07:81:82:
                    08:48:d3:67:55:fb:d1:f2:16:f3:d0:6e:5c:67:42:a1:
                    8e:7d:d3:90:56:2d:36:63:49:e1:6a:8e:28:54:d2:17:
                    eb:1a:1a:e6:54:46:45:d7:a3:92:10:99:0a:0f:af:94:
                    e8:54:51:89:12:30:1e:ea:69:4b:b4:1b:23:7d:65:d8:
                    96:49:59:92:ee:7b:1f:01:8e:75:85:d7:a8:8c:9c:f4:
                    94:ef:25:38:a2:ba:67:89:22:02:10:17:c5:48:b6:02:
                    48:ae:e1:66:5e:2f:41:c8:1c:eb:62:97:49:11:fd:60:
                    12:3e:a8:18:47:88:ae:ab:16:b9:8f:bd:e2:ae:f3:35:
                    75:1e:fe:ba:61:76:33:f3:de:d5:72:41:01:91:91:c2:
                    43:14:02:ed:fe:1d:11:56:89:82:37:95:f9:f3:74:59:
                    2c:40:e8:77:02:32:60:f0:7d:f6:a2:1f:2f:f3:32:7e:
                    b1:10:da:51:d3:d9:e9:61:7f:18:47:6f:eb:f8:df:aa:
                    da:34:d6:3e:57:f4:05:46:c0:65:79:ea:2c:c7:34:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:32:0c:45:30:d3:82:80:cd:10:4a:9b:29:9c:00:5e:
        ef:22:3c:9b:e1:ee:d0:86:95:40:1c:04:9f:23:d0:c0:
        a5:2c:3e:e0:85:e5:fa:62:70:ab:5f:92:cf:e3:cf:f1:
        5d:e0:f0:8d:ec:b4:e2:7c:a1:7f:a6:6a:fd:cd:99:cd:
        2a:71:86:09:ee:49:5f:87:35:ba:29:84:74:f6:05:9d:
        29:9c:50:c3:8c:3f:fe:8c:b8:cd:14:36:e1:77:f8:94:
        60:78:c0:73:42:af:2b:71:a0:7b:b1:e5:b0:33:45:7b:
        a6:8c:9c:87:9b:be:19:da:e3:21:8f:58:e2:a8:bf:6b:
        7f:01:76:ca:7b:34:0e:98:1f:66:cc:2b:66:55:2c:90:
        9d:32:b4:b9:9a:e6:a2:8d:b8:42:cc:29:57:1f:e9:b0:
        f1:6c:e5:a4:50:e9:0e:99:73:61:93:bd:20:18:ea:e8:
        b6:a5:82:0a:86:a2:79:a1:f6:88:82:8e:7d:95:38:d4:
        80:8f:9c:c7:18:e0:64:10:2b:2f:ef:e2:c0:24:47:13:
        bb:fe:f1:f1:45:88:d0:c0:39:30:9a:82:ce:d0:c7:ac:
        a4:ee:46:45:7e:80:b3:1d:7a:90:10:d3:70:b9:b4:b2:
        76:b5:96:e4:11:41:51:39:21:38:dc:79:b9:d1:5e:10
    Fingerprint (SHA-256):
        7A:0A:6A:D6:F9:E0:AA:D5:56:13:53:65:D7:E2:BC:28:27:6C:A3:CA:40:BD:59:1B:3A:D5:0B:89:D8:65:6D:0F
    Fingerprint (SHA1):
        88:84:FA:43:78:C6:48:F0:45:45:2F:8E:F1:56:E4:05:65:7A:13:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12136: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #12137: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #12138: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #12139: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #12140: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #12141: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155304 (0x1dee4828)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:55:20 2017
            Not After : Mon May 02 15:55:20 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:86:c9:3f:a6:13:34:1d:35:b7:36:26:8d:52:d7:84:
                    d2:85:e4:22:e5:39:59:01:0e:04:72:8a:bf:a7:0f:99:
                    69:b9:ef:a8:3a:df:8d:9c:67:70:0b:ce:c6:2f:d4:c5:
                    c9:e2:49:e8:10:eb:32:a9:b5:ce:a6:9c:68:df:aa:1f:
                    e5:90:1d:64:75:5f:43:db:42:be:fd:9d:ee:64:66:b2:
                    a1:92:b1:58:cd:c9:94:38:f4:09:cf:00:a7:33:78:cf:
                    43:f2:9b:80:48:67:b9:f3:17:09:bd:a8:9a:cc:dc:79:
                    9d:ae:30:cd:fc:0f:c5:0d:29:1a:90:28:38:33:34:13:
                    7a:b9:73:91:b8:da:c4:89:36:ed:15:74:96:26:aa:86:
                    dc:24:e6:2d:d2:73:58:06:d8:7c:e7:b8:21:b5:87:d5:
                    54:3d:76:59:01:c2:c7:d5:ce:01:58:6e:8c:8b:fc:4d:
                    74:7e:85:34:51:4b:f8:b7:e2:74:e8:e6:8c:bd:62:df:
                    7d:24:56:6f:f9:71:8f:5e:4b:1f:aa:77:71:ed:b7:2a:
                    f1:3c:69:7b:58:40:89:76:01:1f:46:e6:43:e6:c5:b1:
                    38:1f:30:c5:42:af:a7:96:fa:9e:e2:b2:eb:e7:07:00:
                    2a:4f:91:d3:06:71:ae:0c:84:e2:33:6e:b5:e0:1a:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:b6:ea:90:4f:3c:91:45:01:4f:83:72:64:92:c0:3a:
        9a:51:84:a2:52:07:d6:f5:dc:36:10:fd:b1:b3:99:a1:
        77:e2:11:90:5b:8d:5a:d4:1c:64:a2:d8:4d:77:50:31:
        b2:87:2d:a3:19:ff:a6:98:3b:2f:a1:64:e0:b2:9d:9a:
        65:5f:a9:ea:cf:e7:cc:c6:00:fa:e8:b8:dd:06:a7:7e:
        f9:e8:44:e9:ee:e0:25:3c:b1:2a:87:1e:63:83:07:42:
        8b:09:e9:5f:80:65:37:1b:27:11:1b:4a:e4:77:7e:17:
        c4:bd:46:f9:62:0e:19:2d:83:1b:20:a5:54:7b:bb:26:
        8c:ae:a3:12:0d:e8:cf:48:3f:be:6c:61:19:e4:a4:e7:
        db:d7:dd:92:7e:56:5c:6a:d5:81:f4:1c:5d:e8:08:5e:
        4a:c4:3f:eb:61:e0:dc:95:7a:be:c5:c9:06:dd:f8:fe:
        8f:39:64:c1:9d:93:d0:6e:7f:27:39:9f:89:52:c4:3c:
        a7:4f:d8:57:24:de:49:fb:bc:73:cf:25:1e:0b:e4:cf:
        21:d9:b3:0f:29:b8:ba:65:fc:ad:05:00:a8:ec:f6:e9:
        58:16:e1:64:f6:bc:02:60:a6:c3:01:64:0d:ef:2c:d2:
        11:79:3d:02:d8:be:53:ac:28:e3:c1:f4:35:6f:ed:b7
    Fingerprint (SHA-256):
        56:38:08:D9:3A:46:5A:FA:66:83:6B:62:55:CD:A7:48:86:1A:E0:55:6B:A9:AF:C2:D8:41:75:82:18:E7:02:25
    Fingerprint (SHA1):
        F6:EE:5E:07:B3:D1:DC:55:38:42:F8:A3:6A:9F:5C:C2:5A:F1:31:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12142: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #12143: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #12144: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #12145: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #12146: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12147: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12148: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12149: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12150: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12151: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12152: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12153: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12154: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12155: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12156: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12157: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12158: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12159: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12160: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12161: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12162: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12163: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12164: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12165: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 26196 at Tue May  2 15:55:25 UTC 2017
kill -USR1 26196
httpserv: normal termination
httpserv -b -p 9132 2>/dev/null;
httpserv with PID 26196 killed at Tue May  2 15:55:25 UTC 2017
TIMESTAMP chains END: Tue May  2 15:55:25 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:55:25 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:55:25 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #12166: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:55:25 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:55:25 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12167: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12168: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12169: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12170: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #12171: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #12172: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:55:25 UTC 2017
TIMESTAMP ec END: Tue May  2 15:55:25 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:55:25 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (1 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #12173: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #12174: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #12175: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #12176: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #12177: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #12178: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #12179: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #12180: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #12181: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #12182: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #12183: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #12184: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #12185: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #12186: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #12187: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #12188: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #12189: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #12190: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #12191: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:55:25 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:55:25 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #12192: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12193: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12194: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12195: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12196: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12197: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12198: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12199: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12200: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12201: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12202: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12203: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12204: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12205: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12206: create certificate: sign  - PASSED
ssl_gtest.sh: #12207: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:55:29 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             12195
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     12
TinderboxPrint:Unknown: 12
~/build/BUILD/nss-3.29.1
+ popd
+ killall selfserv_9122
selfserv_9122: no process found
+ :
+ '[' x == x ']'
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
okay: test suite detected no failures
test suite completed
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.29.1-2.1.module_7e01f122.i686
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.DwzyG5
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ LICENSEDIR=/builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/licenses/nss
+ export LICENSEDIR
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/licenses/nss
+ cp -pr nss/COPYING /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386/usr/share/licenses/nss
+ exit 0
Provides: config(nss) = 3.29.1-2.1.module_7e01f122 libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.10.2) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.1) libnss3.so(NSS_3.11.2) libnss3.so(NSS_3.11.7) libnss3.so(NSS_3.11.9) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.1) libnss3.so(NSS_3.12.10) libnss3.so(NSS_3.12.3) libnss3.so(NSS_3.12.4) libnss3.so(NSS_3.12.5) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.12.7) libnss3.so(NSS_3.12.9) libnss3.so(NSS_3.13) libnss3.so(NSS_3.13.2) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.1) libnss3.so(NSS_3.14.3) libnss3.so(NSS_3.15) libnss3.so(NSS_3.15.4) libnss3.so(NSS_3.16.1) libnss3.so(NSS_3.16.2) libnss3.so(NSS_3.18) libnss3.so(NSS_3.19) libnss3.so(NSS_3.19.1) libnss3.so(NSS_3.2) libnss3.so(NSS_3.2.1) libnss3.so(NSS_3.21) libnss3.so(NSS_3.22) libnss3.so(NSS_3.3) libnss3.so(NSS_3.3.1) libnss3.so(NSS_3.30) libnss3.so(NSS_3.4) libnss3.so(NSS_3.5) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.7.1) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnss3.so(NSS_3.9.2) libnss3.so(NSS_3.9.3) libnssckbi.so libnssckbi.so(NSS_3.1) libsmime3.so libsmime3.so(NSS_3.10) libsmime3.so(NSS_3.12.10) libsmime3.so(NSS_3.12.2) libsmime3.so(NSS_3.13) libsmime3.so(NSS_3.15) libsmime3.so(NSS_3.16) libsmime3.so(NSS_3.18) libsmime3.so(NSS_3.2) libsmime3.so(NSS_3.2.1) libsmime3.so(NSS_3.3) libsmime3.so(NSS_3.4) libsmime3.so(NSS_3.4.1) libsmime3.so(NSS_3.6) libsmime3.so(NSS_3.7) libsmime3.so(NSS_3.7.2) libsmime3.so(NSS_3.8) libsmime3.so(NSS_3.9) libsmime3.so(NSS_3.9.3) libssl3.so libssl3.so(NSS_3.11.4) libssl3.so(NSS_3.11.8) libssl3.so(NSS_3.12.10) libssl3.so(NSS_3.12.6) libssl3.so(NSS_3.13) libssl3.so(NSS_3.13.2) libssl3.so(NSS_3.14) libssl3.so(NSS_3.15) libssl3.so(NSS_3.15.4) libssl3.so(NSS_3.2) libssl3.so(NSS_3.2.1) libssl3.so(NSS_3.20) libssl3.so(NSS_3.21) libssl3.so(NSS_3.22) libssl3.so(NSS_3.23) libssl3.so(NSS_3.24) libssl3.so(NSS_3.27) libssl3.so(NSS_3.28) libssl3.so(NSS_3.4) libssl3.so(NSS_3.7.4) nss = 3.29.1-2.1.module_7e01f122 nss(x86-32) = 3.29.1-2.1.module_7e01f122
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.3) libc.so.6(GLIBC_2.3.4) libc.so.6(GLIBC_2.4) libdl.so.2 libnspr4.so libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.1) libnss3.so(NSS_3.11.2) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.3) libnss3.so(NSS_3.15) libnss3.so(NSS_3.19.1) libnss3.so(NSS_3.2) libnss3.so(NSS_3.21) libnss3.so(NSS_3.22) libnss3.so(NSS_3.3) libnss3.so(NSS_3.3.1) libnss3.so(NSS_3.4) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.12.3) libnssutil3.so(NSSUTIL_3.12.5) libnssutil3.so(NSSUTIL_3.13) libnssutil3.so(NSSUTIL_3.14) libnssutil3.so(NSSUTIL_3.15) libnssutil3.so(NSSUTIL_3.17.1) libnssutil3.so(NSSUTIL_3.21) libnssutil3.so(NSSUTIL_3.24) libplc4.so libplds4.so libpthread.so.0 libpthread.so.0(GLIBC_2.0) libz.so.1 rtld(GNU_HASH)
Conflicts: firefox < 50.1.0-3 seamonkey < 2.46-2 thunderbird < 45.6.0-5 xulrunner < 44.0-9
Processing files: nss-tools-3.29.1-2.1.module_7e01f122.i686
Provides: nss-tools = 3.29.1-2.1.module_7e01f122 nss-tools(x86-32) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.3) libc.so.6(GLIBC_2.3.4) libc.so.6(GLIBC_2.4) libdl.so.2 libnspr4.so libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.7) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.1) libnss3.so(NSS_3.12.3) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.12.9) libnss3.so(NSS_3.13) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.1) libnss3.so(NSS_3.15) libnss3.so(NSS_3.16.1) libnss3.so(NSS_3.16.2) libnss3.so(NSS_3.18) libnss3.so(NSS_3.2) libnss3.so(NSS_3.3) libnss3.so(NSS_3.30) libnss3.so(NSS_3.4) libnss3.so(NSS_3.5) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnss3.so(NSS_3.9.2) libnss3.so(NSS_3.9.3) libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.12.7) libnssutil3.so(NSSUTIL_3.15) libplc4.so libplds4.so libpthread.so.0 libpthread.so.0(GLIBC_2.0) libsmime3.so libsmime3.so(NSS_3.10) libsmime3.so(NSS_3.2) libsmime3.so(NSS_3.3) libsmime3.so(NSS_3.4) libsmime3.so(NSS_3.6) libsmime3.so(NSS_3.9.3) libsoftokn3.so libssl3.so libssl3.so(NSS_3.12.6) libssl3.so(NSS_3.13.2) libssl3.so(NSS_3.14) libssl3.so(NSS_3.15) libssl3.so(NSS_3.15.4) libssl3.so(NSS_3.2) libssl3.so(NSS_3.20) libssl3.so(NSS_3.22) libssl3.so(NSS_3.24) libssl3.so(NSS_3.27) libssl3.so(NSS_3.4) libssl3.so(NSS_3.7.4) libz.so.1 rtld(GNU_HASH)
Processing files: nss-sysinit-3.29.1-2.1.module_7e01f122.i686
Provides: libnsssysinit.so nss-sysinit = 3.29.1-2.1.module_7e01f122 nss-sysinit(x86-32) = 3.29.1-2.1.module_7e01f122 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.4) libdl.so.2 libnspr4.so libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.14) libplc4.so libplds4.so libpthread.so.0 rtld(GNU_HASH)
Processing files: nss-devel-3.29.1-2.1.module_7e01f122.i686
Provides: nss-devel = 3.29.1-2.1.module_7e01f122 nss-devel(x86-32) = 3.29.1-2.1.module_7e01f122 nss-static = 3.29.1-2.1.module_7e01f122 pkgconfig(nss) = 3.29.1
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.0 pkgconfig(nss-util) >= 3.29.1
Processing files: nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.i686
Provides: nss-pkcs11-devel = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel(x86-32) = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel-static = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.29.1-2.1.module_7e01f122.i686
Provides: nss-debuginfo = 3.29.1-2.1.module_7e01f122 nss-debuginfo(x86-32) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
Wrote: /builddir/build/RPMS/nss-3.29.1-2.1.module_7e01f122.i686.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.29.1-2.1.module_7e01f122.i686.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.29.1-2.1.module_7e01f122.i686.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.29.1-2.1.module_7e01f122.i686.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.i686.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.29.1-2.1.module_7e01f122.i686.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.xh6PkR
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.i386
+ exit 0
Child return code was: 0